Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2015-7217
HistoryDec 16, 2015 - 11:59 a.m.

CVE-2015-7217

2015-12-1611:59:15
CWE-119
[email protected]
web.nvd.nist.gov
39
cve-2015-7217
gdk-pixbuf
mozilla firefox
linux
gnome
denial of service
buffer overflow
truevision tga
nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.031 Low

EPSS

Percentile

91.0%

JSON

The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux GNOME platforms incorrectly enables the TGA decoder, which allows remote attackers to cause a denial of service (heap-based buffer overflow) via a crafted Truevision TGA image.

Affected configurations

NVD
Node
mozillafirefoxRange42.0
AND
gnomegnomeMatch-linux
Node
opensuseleapMatch42.1
OR
opensuseopensuseMatch13.1
OR
opensuseopensuseMatch13.2
Node
fedoraprojectfedoraMatch22
OR
fedoraprojectfedoraMatch23
CPENameOperatorVersion
mozilla:firefoxmozilla firefoxle42.0

Related

nvd 1
ubuntucve 1
prion 1
cvelist 1
mozilla 1
openvas 4
nessus 9
freebsd 1
ubuntu 1
archlinux 1
kaspersky 1
mageia 1
gentoo 1
nvd
nvd
CVE-2015-7217
2015-12-16 11:59:15
ubuntucve
ubuntucve
CVE-2015-7217
2015-12-15 00:00:00
prion
prion
Heap overflow
2015-12-16 11:59:00
cvelist
cvelist
CVE-2015-7217
2015-12-16 11:00:00
mozilla
mozilla
Linux file chooser crashes on malformed images due to flaws in Jasper library — Mozilla
2015-12-15 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2015-143) - Linux
2021-11-11 00:00:00
Mageia: Security Advisory (MGASA-2016-0124)
2016-03-31 00:00:00
Ubuntu: Security Advisory (USN-2833-1)
2015-12-16 00:00:00
nessus
nessus
openSUSE Security Update : MozillaFirefox (openSUSE-2015-942)
2015-12-29 00:00:00
Ubuntu 14.04 LTS : Firefox vulnerabilities (USN-2833-1)
2015-12-16 00:00:00
Fedora 23 : firefox-43.0-1.fc23 (2015-51b1105902)
2016-03-04 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2015-12-15 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2015-12-15 00:00:00
archlinux
archlinux
firefox: multiple issues
2015-12-15 00:00:00
kaspersky
kaspersky
KLA10723 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2015-12-15 00:00:00
mageia
mageia
Updated iceape packages fix security vulnerability
2016-03-25 09:38:37
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2015-12-30 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

AI Score

Confidence

High

0.031 Low

EPSS

Percentile

91.0%

JSON
Related for CVE-2015-7217
nvd1ubuntucve1prion1cvelist1mozilla1openvas4nessus9freebsd1ubuntu1archlinux1kaspersky1mageia1gentoo1