Instagram App - Local Stack Buffer Overflow (DOS)

CVE Category Price Severity
N/A CWE-119 Unknown High
Author Risk Exploitation Type Date
Unknown High Local 2023-06-14
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 0.05719 0.5

CVSS vector description

Our sensors found this exploit at:

Below is a copy:

Instagram App - Local Stack Buffer Overflow (DOS)
# Exploit Title: Instagram App - Local Stack Buffer Overflow (Dos)
# Date: 2023-06-13
# Exploit Author: Aryan Chehreghani
# Vendor Homepage:
# Version:
# Tested on: Android 12

#Stack Trace:
Package name:
Package version: 368407140
Process name:
Caused by: Illegal character
in scheme name at index 0:
at X.BI5.A00(:1361229)
at X.BpQ.DMb(:73)
at X.6FI.DMd(:7)
at X.6Fn.A03(:10)
at X.110.DMe(:11)
at X.1ly.A03(:25)
at X.1lo.DMe(:11)
at X.11LAOW(:7)
at X.115.A03(:37)
at X.115.A02(:2)
at X.B90.A05(:1350672)
at X.BR2.onClick(:562)
at android.view.View.performClick(
Exception class name:
Source file: URI java
Source class:
Source method: fail
Line number: 2893

# [ About App ]

#Instagram is a photo and video sharing social networking service owned by American company Meta Platforms,
#The app allows users to upload media that can be edited with filters and organized by hashtags and geographical tagging,
#Posts can be shared publicly or with preapproved followers. Users can browse other users' #content by tag and location,
#view trending content, like photos, and follow other users to add their content to a personal feed.

# [ Description ]

#Instagram is sensitive to illegal character, that's why Instagram closes after sending a message.

# [ POC ]

# 1.Enter the Instagram app
# 2.In the messages section, select a user to send a message
# 3.Enter illegal characters "" in the message field
# 4.Click "Send"
# 5.Instagram Stopped :)

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.