CVE-2015-0836Out-of-bounds Write in Mozilla Firefox

11 documents6 sources
Severity
7.5HIGHNVD
OSV4.3
EPSS
1.5%
top 18.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mozilla FirefoxMozilla ThunderbirdMozilla Firefox ESR
Timeline
PublishedFeb 25
Latest updateMay 17

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages5 packages

Ubuntumozilla/firefox< 36.0+build2-0ubuntu0.14.04.4+1
NVDmozilla/firefox35.0.1+215
NVDmozilla/firefox_esr5 versions+4
Ubuntumozilla/thunderbird< 1:31.5.0+build1-0ubuntu0.14.04.1

🔴Vulnerability Details

5
GHSA
GHSA-85qc-hrqp-73q5: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 362022-05-17
OSV
firefox regression2015-03-09
OSV
thunderbird vulnerabilities2015-03-03
OSV
CVE-2015-0836: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 362015-02-25
OSV
firefox vulnerabilities2015-02-25

📋Vendor Advisories

4
Ubuntu
Firefox regression2015-03-09
Ubuntu
Thunderbird vulnerabilities2015-03-03
Ubuntu
Firefox vulnerabilities2015-02-25
Red Hat
Mozilla: Miscellaneous memory safety hazards (rv:31.5) (MFSA 2015-11)2015-02-24

💬Community

1
Bugzilla
CVE-2015-0836 Mozilla: Miscellaneous memory safety hazards (rv:31.5) (MFSA 2015-11)2015-02-24