Android Mediaserver Bug Can Render Devices Unresponsive: Trend Micro

Advertisement
By Ketan Pratap | Updated: 30 July 2015 16:39 IST
Soon after Google announced a security update for the Stagefright vulnerability (a critical security bug) for its Nexus devices, a new bug has been reported that security researchers claim leaves Android device "dead."

Trend Micro's Wish Wu, a mobile threat response engineer, has detailed the newly discovered vulnerability in the Android mobile operating system. According to the report, the vulnerability renders the Android device unresponsive - "silent, unable to make calls, with a lifeless screen."

The vulnerability is said to be present from Android 4.3 Jelly Bean to the current version, Android 5.1.1 Lollipop. It's worth noting that majority of Android devices, almost 90 percent, are currently running these versions, according to the Google's Android distribution numbers.

Wu explains the process, "The vulnerability lies in the mediaserver service, which is used by Android to index media files that are located on the Android device. This service cannot correctly process a malformed video file using the Matroska container (usually with the .mkv extension). When the process opens a malformed MKV file, the service may crash (and with it, the rest of the operating system)."

Advertisement

Further explaining, Trend Micro notes that the vulnerability can be exploited in two ways either via an installed malicious app on the device or through a specially-crafted website.

"The first technique can cause long-term effects to the device: an app with an embedded MKV file that registers itself to auto-start whenever the device boots would case the OS to crash every time it is turned on," notes the report.

Some of the implication of the vulnerability is said to be unresponsive UI and even claims that if the phone is locked, it cannot be unlocked. Trend Micro speculates some of the potential threat scenarios where it claims attackers can use it for ransomware. However, it's worth noting that once the device is unresponsive; how the attackers will ask for ransom from affected Android users.

Advertisement

Trend Micro notes that the vulnerability was privately reported to Google in May. The company acknowledged the report however marked the issue as a low priority vulnerability. A Google spokesperson told Engadget that the "future version of Android" would patch the vulnerability while stressed that there has been "no evidence of actual exploitation."

 
Post your comments

Catch the latest from the Consumer Electronics Show on Gadgets 360, at our CES 2026 hub.

Further reading: Android, Apps, Google, Malware, Trend Micro
Sebi on Alert for Cyber-Attacks; Warns of Stern Action for Algorithm Misuse
Toyota Robot Can Pick Up After People, Help the Sick
Advertisement

Related Stories

Google Is Reportedly Adding More Verification Layers in Play Store to Curb Sideloading Apps
19 January 2026
Android 17 May Redesign Notifications and Quick Settings With Split Layout
15 January 2026
CERT-In Urges Android Users to Update Smartphones After Google Patches Critical Dolby Vulnerability
14 January 2026
Google Play Store Could Soon Let Users Try Out Paid Games Before Purchasing Them: Report
8 January 2026
Samsung to Double Galaxy AI Mobile Devices to 800 Million Units This Year
5 January 2026
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Here's When the Realme P4 Power 5G Will Launch in India
  2. Motorola Edge 70 Fusion Leak Reveals Full Specifications Ahead of Launch
  3. Oppo A6 5G Launched in India With 7,000mAh Battery at This Price
  4. Google Pixel 10a Leak Suggests No Price Hike Over Pixel 9a
  5. Red Magic 11 Air Launched With Snapdragon 8 Elite, 7,000mAh Battery
  6. Redmi Note 15 Pro Series Might Launch in India With These Storage Options
  7. Sony to Cede Control of Bravia TVs to China's TCL Electronics
  8. Vivo X200T With Zeiss Cameras to Launch in India on This Date
  9. OpenAI Offer: ChatGPT Plus Is Now Free for One Month
  10. Deals on Double Door Refrigerators During Amazon Great Republic Day Sale
#Latest Stories
  1. SpaceX Adds 29 More Starlink Satellites in Rapid Falcon 9 Launch From Florida
  2. Sony to Cede Control of Bravia TVs to China’s TCL Electronics
  3. Adobe Premiere Integrated With AI-Powered Firefly Platform; New After Effects Features Rolling Out
  4. Samsung Upgrades Bixby With Perplexity-Powered AI Features, Takes Page Out of Apple’s Playbook
  5. Google Reportedly Working On New Live Features and Agentic Mode for Gemini Assistant
  6. Redmi Note 15 Pro+, Redmi Note 15 Pro RAM and Storage Options, Key Specifications Leaked Ahead of India Launch
  7. Eddington Arrives on OTT: What You Need to Know About Joaquin Phoenix and Pedro Pascal Starrer Thriller
  8. Red Magic 11 Air Launched With Snapdragon 8 Elite, RedCore R4 Gaming Chip and 7,000mAh Battery
  9. Nikosh Chhaya Season 2 OTT Release Date Revealed: Know When and Where to Watch This Bengali Horror Series
  10. Oppo A6 5G Launched in India With 7,000mAh Battery, 50-Megapixel Camera: Price, Specifications
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.