![]() ![]() ![]() ![]() User must have sent or received a GIF file in WeChat.Once the user opens any chat messages that contain an emoji, WeChat will instantly crash. WeChat for Android - Up to latest version (7.0.3) Affected Component:įunction vcodec2_hls_filter in libvoipCodec_v7a.so Attack Type:Īn malware app can crafts a malicious emoji file and overwrites the emoji files under /sdcard/tencent/MicroMsg//emoji/. wxgf file.Ĭrash-log is provided in poc.zip file at Vulnerability Type: Vcodec2_hls_filter in libvoipCodec_v7a.so in WeChat application for Android results in a DoS by replacing an emoji file (under the /sdcard/tencent/MicroMsg directory) with a crafted. The Common Vulnerabilities and Exposures (CVE) Program has assigned the ID CVE-2019-11419 to this issue. This DoS bug was reported to Tencent, but they decided not to fix because it’s not critical. ![]()
0 Comments
Leave a Reply. |