CVE-2015-0829Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Firefox

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents7 sources
Severity
6.8MEDIUMNVD
OSV4.3
EPSS
2.2%
top 15.62%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Mozilla FirefoxCanonical Ubuntu LinuxOpensuse+1 more
Timeline
PublishedFeb 25
Latest updateMay 14

Description

Buffer overflow in libstagefright in Mozilla Firefox before 36.0 allows remote attackers to execute arbitrary code via a crafted MP4 video that is improperly handled during playback.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages4 packages

Ubuntumozilla/firefox< 36.0+build2-0ubuntu0.14.04.4+1
NVDmozilla/firefox35.0.1+214
NVDoracle/solaris11.3
NVDopensuse/opensuse13.1, 13.2+1

Also affects: Ubuntu Linux 12.04, 14.04, 14.10

🔴Vulnerability Details

5
GHSA
GHSA-xx45-rh3m-ccvq: Buffer overflow in libstagefright in Mozilla Firefox before 362022-05-14
OSV
firefox regression2015-03-09
CVEList
CVE-2015-0829: Buffer overflow in libstagefright in Mozilla Firefox before 362015-02-25
OSV
firefox vulnerabilities2015-02-25
OSV
CVE-2015-0829: Buffer overflow in libstagefright in Mozilla Firefox before 362015-02-25

📋Vendor Advisories

3
Ubuntu
Firefox regression2015-03-09
Ubuntu
Firefox vulnerabilities2015-02-25
Red Hat
Mozilla: Buffer overflow in libstagefright during MP4 video playback (MFSA 2015-17)2015-02-24

💬Community

1
Bugzilla
CVE-2015-0829 Mozilla: Buffer overflow in libstagefright during MP4 video playback (MFSA 2015-17)2015-02-24
CVE-2015-0829 — Mozilla Firefox vulnerability | cvebase