Описание
Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox before 36.0 allows remote attackers to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during playback.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 36.0+build2-0ubuntu4 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [36.0+build2-0ubuntu0.14.04.4]] |
| lucid | ignored | end of life |
| precise | released | 36.0+build2-0ubuntu0.12.04.5 |
| trusty | released | 36.0+build2-0ubuntu0.14.04.4 |
| trusty/esm | DNE | trusty was released [36.0+build2-0ubuntu0.14.04.4] |
| upstream | released | 36 |
| utopic | released | 36.0+build2-0ubuntu0.14.10.4 |
Показывать по
4.3 Medium
CVSS2
Связанные уязвимости
Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox before 36.0 allows remote attackers to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during playback.
Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox before 36.0 allows remote attackers to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during playback.
Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuff ...
Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox before 36.0 allows remote attackers to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during playback.
4.3 Medium
CVSS2