Security researcher Gustavo Grieco reported a buffer underflow in libjar triggered through a maliciously crafted ZIP format file. This results in a potentially exploitable crash.

CPENameOperatorVersion
firefoxlt42
firefox esrlt38.4
thunderbirdlt38.4

Name	Operator	Version
firefox	lt	42
firefox esr	lt	38.4
thunderbird	lt	38.4

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7194

bugzilla.mozilla.org/show_bug.cgi?id=1211262

prion 1

cve 1

openvas 27

ubuntucve 1

veracode 9

nessus 25

oraclelinux 1

redhat 1

centos 1

mageia 2

ubuntu 2

suse 5

debian 2

archlinux 1

kaspersky 1

freebsd 1

ibm 2

gentoo 1

prion

Buffer overflow

2015-11-05 05:59:00

cve

CVE-2015-7194

2015-11-05 05:59:00

openvas

Mozilla Firefox Security Advisory (MFSA2015-128) - Linux

2021-11-11 00:00:00

CentOS Update for firefox CESA-2015:1982 centos7

2015-11-05 00:00:00

CentOS Update for firefox CESA-2015:1982 centos5

2015-11-05 00:00:00

ubuntucve

CVE-2015-7194

2015-11-04 00:00:00

veracode

Authentication Bypass

2019-05-02 05:43:38

Buffer Overflow

2019-05-02 05:43:39

Arbitrary Code Execution

2019-05-02 05:43:39

nessus

Scientific Linux Security Update : firefox on SL5.x, SL6.x, SL7.x i386/x86_64 (20151104)

2015-11-05 00:00:00

Oracle Linux 5 / 6 / 7 : firefox (ELSA-2015-1982)

2015-11-05 00:00:00

RHEL 5 / 6 / 7 : firefox (RHSA-2015:1982)

2015-11-05 00:00:00

oraclelinux

firefox security update

2015-11-04 00:00:00

redhat

(RHSA-2015:1982) Critical: firefox security update

2015-11-04 00:00:00

centos

firefox security update

2015-11-04 15:58:03

mageia

Updated firefox, nspr, nss packages fix security vulnerability

2015-11-04 21:03:05

Updated iceape packages fix security vulnerabilities

2015-11-17 00:36:58

ubuntu

Thunderbird vulnerabilities

2015-12-01 00:00:00

Firefox vulnerabilities

2015-11-04 00:00:00

suse

Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)

2015-11-12 20:10:40

Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)

2015-11-06 17:11:17

Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (important)

2015-11-12 17:11:49

debian

[SECURITY] [DSA 3393-1] iceweasel security update

2015-11-04 18:42:15

[SECURITY] [DSA 3410-1] icedove security update

2015-12-01 22:21:29

archlinux

firefox: multiple issues

2015-11-04 00:00:00

kaspersky

KLA10689 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

2015-11-03 00:00:00

freebsd

mozilla -- multiple vulnerabilities

2015-11-03 00:00:00

ibm

Security Bulletin: Multiple Vulnerabilities in Firefox affect IBM SmartCloud Provisioning for IBM Software Virtual Appliance

2018-06-17 22:32:49

Security Bulletin: Vulnerability in libxml, openssh, PAM, Firefox, affects IBM SmartCloud Provisioning for IBM Software Virtual Appliance

2018-06-17 22:30:14

gentoo

Mozilla Products: Multiple vulnerabilities

2015-12-30 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
OpenSource

@2024 Vulners Inc

0.084 Low

EPSS

Percentile

94.4%

JSON

Related for MFSA2015-128