Android's® Stagefright engine contains seven different vulnerabilities, including several integer overflows, allowing a remote attacker to access files or possibly execute code on the device. This vulnerability appears to affect all versions of Android® from 2.2 (Froyo) and to at least Android® 5.1.1_r5 (Lollipop).
- Keep software updated
- Block messages from unknown senders
- Turn off “Auto Retrieve” for multimedia messages (MMS)