CVE-2019-11931— Facebook WhatsApp 缓冲区错误漏洞

N/A

A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions prior to 2.19.274, iOS versions prior to 2.19.100, Enterprise Client versions prior to 2.25.3, Business for Android versions prior to 2.19.104 and Business for iOS versions prior to 2.19.100.

N/A

栈缓冲区溢出

Facebook WhatsApp 缓冲区错误漏洞

Facebook WhatsApp是美国Facebook公司的一套利用网络传送短信的移动应用程序。该应用程序通过智能手机中的联络人信息，查找使用该软件的联络人传送文字、图片等。 Facebook WhatsApp中存在缓冲区错误漏洞，该漏洞源于程序解析基本数据流元数据时没有正确验证边界。远程攻击者可借助特制文件利用该漏洞执行任意代码，或导致拒绝服务。以下产品及版本受到影响：基于Android平台的Facebook WhatsApp 2.19.274之前版本，基于iOS平台的WhatsApp 2.19.10

N/A

N/A