Описание
Integer overflow in the stagefright::SampleTable::isValid function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via crafted MPEG-4 video data with H.264 encoding.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 40.0+build4-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [40.0+build4-0ubuntu0.14.04.1]] |
| precise | released | 40.0+build4-0ubuntu0.12.04.1 |
| trusty | released | 40.0+build4-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [40.0+build4-0ubuntu0.14.04.1] |
| upstream | released | 40.0 |
| vivid | released | 40.0+build4-0ubuntu0.15.04.1 |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Integer overflow in the stagefright::SampleTable::isValid function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via crafted MPEG-4 video data with H.264 encoding.
Integer overflow in the stagefright::SampleTable::isValid function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via crafted MPEG-4 video data with H.264 encoding.
Integer overflow in the stagefright::SampleTable::isValid function in ...
Integer overflow in the stagefright::SampleTable::isValid function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via crafted MPEG-4 video data with H.264 encoding.
Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код
EPSS
9.3 Critical
CVSS2