Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2015-6783

The FindStartOffsetOfFileInZipFile function in crazy_linker_zip.cpp in crazy_linker (aka Crazy Linker) in Android 5.x and 6.x, as used in Google Chrome before 47.0.2526.73, improperly searches for an EOCD record, which allows attackers to bypass a signature-validation requirement via a crafted ZIP archive.

  • Published: Dec 6, 2015
  • Updated: Apr 13, 2023
  • CVE: CVE-2015-6783
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

Software From Fixed in
google / android 5.0 5.0.x
google / android 6.0 6.0.x