CVE-2016-1946Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Firefox

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-1899 documents6 sources
Severity
9.8CRITICALNVD
EPSS
3.5%
top 12.31%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mozilla FirefoxOpensuse LeapOpensuse
Timeline
PublishedJan 31
Latest updateMay 14

Description

The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox before 44.0 does not limit the size of read operations, which might allow remote attackers to cause a denial of service (integer overflow and buffer overflow) or possibly have unspecified other impact via crafted metadata.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

Ubuntumozilla/firefox< 44.0+build3-0ubuntu0.14.04.1+1
NVDmozilla/firefox43.0.4
NVDopensuse/leap42.1
NVDopensuse/opensuse13.1, 13.2+1

🔴Vulnerability Details

4
GHSA
GHSA-985w-c5f5-7374: The MoofParser::Metadata function in binding/MoofParser2022-05-14
OSV
firefox regression2016-02-08
OSV
firefox vulnerabilities2016-01-27
OSV
CVE-2016-1946: The MoofParser::Metadata function in binding/MoofParser2016-01-26

📋Vendor Advisories

3
Ubuntu
Firefox regression2016-02-08
Ubuntu
Firefox vulnerabilities2016-01-27
Red Hat
Mozilla: Unsafe memory manipulation found through code inspection (MFSA 2016-10)2016-01-26

💬Community

1
Bugzilla
CVE-2016-1944 CVE-2016-1945 CVE-2016-1946 Mozilla: Unsafe memory manipulation found through code inspection (MFSA 2016-10)2016-01-26
CVE-2016-1946 — Mozilla Firefox vulnerability | cvebase