252 matches found
Mozilla Firefox and Firefox ESR 'nestegg_track_codec_data' heap buffer overflow vulnerability
Mozilla Firefox is an open source web browser. A buffer overflow vulnerability exists in Mozilla Firefox 'nesteggtrackcodecdata', which allows remote attackers to exploit specially crafted headers in WebM videos to crash an application or execute arbitrary code...
CVE-2015-4511
Heap-based buffer overflow in the nesteggtrackcodecdata function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via a crafted header in a WebM video...
Heap overflow
Heap-based buffer overflow in the nesteggtrackcodecdata function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via a crafted header in a WebM video...
CVE-2015-4511
CVE-2015-4511 is a heap-based buffer overflow in Firefox’s nestegg_track_codec_data used when decoding WebM headers. A crafted header in a WebM video could allow remote code execution. Affected products/versions: Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3. Remediation: upgrade t...
CVE-2015-4511
Heap-based buffer overflow in the nesteggtrackcodecdata function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via a crafted header in a WebM video...
CVE-2015-4511
Heap-based buffer overflow in the nesteggtrackcodecdata function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via a crafted header in a WebM video...
firefox: multiple issues
CVE-2015-4500 Memory safety bugs fixed in Firefox ESR 38.3 and Firefox 41: Andrew Osmond, Olli Pettay, Andrew Sutherland, Christian Holler, David Major, Andrew McCreight and Cameron McCormack reported memory safety problems and crashes that affect Firefox ESR 38.2 and Firefox 40. Some of these...
UBUNTU-CVE-2015-4511
Heap-based buffer overflow in the nesteggtrackcodecdata function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via a crafted header in a WebM video...
Mozilla: Buffer overflow while decoding WebM video (MFSA 2015-105)
Heap-based buffer overflow in the nesteggtrackcodecdata function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allows remote attackers to execute arbitrary code via a crafted header in a WebM video...
Buffer overflow while decoding WebM video — Mozilla
Using the Address Sanitizer tool, security researcher Atte Kettunen discovered a buffer overflow in the nestegg library when decoding a WebM format video with maliciously formatted headers. This leads to a potentially exploitable crash...
mozilla -- multiple vulnerabilities
The Mozilla Project reports: MFSA 2015-96 Miscellaneous memory safety hazards rv:41.0 / rv:38.3 MFSA 2015-97 Memory leak in mozTCPSocket to servers MFSA 2015-98 Out of bounds read in QCMS library with ICC V4 profile attributes MFSA 2015-99 Site attribute spoofing on Android by pasting URL with...
Mozilla Firefox WebM Video Processing Buffer Overflow Vulnerability (CNVD-2015-05433)
Mozilla Firefox is an open source WEB browser. Mozilla Firefox handles WebM video with a Libvpx stock in buffer overflow vulnerability that allows remote attackers to construct malicious WEB pages and trick users into parsing them, which can crash the application or execute arbitrary code...
Mozilla Firefox WebM Video Processing Buffer Overflow Vulnerability (CNVD-2015-05432)
Mozilla Firefox is an open source WEB browser. Mozilla Firefox handles WebM video with a Libvpx stock in buffer overflow vulnerability that allows remote attackers to construct malicious WEB pages and trick users into parsing them, which can crash the application or execute arbitrary code...
CVE-2015-4486
The decreaserefcount function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds read via malformed WebM video data...
DEBIAN-CVE-2015-4486
The decreaserefcount function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds read via malformed WebM video data...
CVE-2015-4485
Heap-based buffer overflow in the resizecontextbuffers function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via malformed WebM video data...
DEBIAN-CVE-2015-4485
Heap-based buffer overflow in the resizecontextbuffers function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via malformed WebM video data...
Out-of-bounds
The decreaserefcount function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds read via malformed WebM video data...
Heap overflow
Heap-based buffer overflow in the resizecontextbuffers function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via malformed WebM video data...
CVE-2015-4485
Heap-based buffer overflow in the resizecontextbuffers function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via malformed WebM video data...