Описание
Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4Extractor.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 on 64-bit platforms allows remote attackers to execute arbitrary code via a crafted MP4 video file that triggers a buffer overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 43.0+build1-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [43.0+build1-0ubuntu0.14.04.1]] |
| precise | released | 43.0+build1-0ubuntu0.12.04.1 |
| trusty | released | 43.0+build1-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [43.0+build1-0ubuntu0.14.04.1] |
| upstream | released | 43.0 |
| vivid | released | 43.0+build1-0ubuntu0.15.04.1 |
| wily | released | 43.0+build1-0ubuntu0.15.10.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1:38.5.1+build2-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1:38.5.1+build2-0ubuntu0.14.04.1]] |
| precise | released | 1:38.5.1+build2-0ubuntu0.12.04.1 |
| trusty | released | 1:38.5.1+build2-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1:38.5.1+build2-0ubuntu0.14.04.1] |
| upstream | released | 38.5.1 |
| vivid | released | 1:38.5.1+build2-0ubuntu0.15.04.1 |
| wily | released | 1:38.5.1+build2-0ubuntu0.15.10.1 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4Extractor.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 on 64-bit platforms allows remote attackers to execute arbitrary code via a crafted MP4 video file that triggers a buffer overflow.
Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4Extractor.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 on 64-bit platforms allows remote attackers to execute arbitrary code via a crafted MP4 video file that triggers a buffer overflow.
Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4 ...
Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4Extractor.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 on 64-bit platforms allows remote attackers to execute arbitrary code via a crafted MP4 video file that triggers a buffer overflow.
Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю выполнить произвольный код
EPSS
6.8 Medium
CVSS2