Lucene search

K
cvelistMozillaCVELIST:CVE-2015-4493
HistoryAug 16, 2015 - 1:00 a.m.

CVE-2015-4493

2015-08-1601:00:00
mozilla
www.cve.org

9.9 High

AI Score

Confidence

High

0.323 Low

EPSS

Percentile

97.0%

Heap-based buffer overflow in the stagefright::ESDS::parseESDescriptor function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via an invalid size field in an esds chunk in MPEG-4 video data, a related issue to CVE-2015-1539.