CVE-2015-7213

Integer overflow in the MPEG4Extractor::readMetaData function in MPEG4Extractor.cpp in libstagefright in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 on 64-bit platforms allows remote attackers to execute arbitrary code via a crafted MP4 video file that triggers a buffer overflow.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:mozilla:firefox_esr:38.0:*:*:*:*:*:x64:*
cpe:2.3:a:mozilla:firefox_esr:38.0.1:*:*:*:*:*:x64:*
cpe:2.3:a:mozilla:firefox_esr:38.4.0:*:*:*:*:*:x64:*
cpe:2.3:a:mozilla:firefox_esr:38.1.1:*:*:*:*:*:x64:*
cpe:2.3:a:mozilla:firefox_esr:38.2.0:*:*:*:*:*:x64:*
cpe:2.3:a:mozilla:firefox_esr:38.2.1:*:*:*:*:*:x64:*
cpe:2.3:a:mozilla:firefox_esr:38.3.0:*:*:*:*:*:x64:*
cpe:2.3:a:mozilla:firefox_esr:38.0.5:*:*:*:*:*:x64:*
cpe:2.3:a:mozilla:firefox_esr:38.1.0:*:*:*:*:*:x64:*

Configuration 4 (hide)

cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:x64:*

Information

Published : 2015-12-16 03:59

Updated : 2018-10-30 09:27


NVD link : CVE-2015-7213

Mitre link : CVE-2015-7213


JSON object : View

CWE
CWE-189

Numeric Errors

Advertisement

dedicated server usa

Products Affected

mozilla

  • firefox_esr
  • firefox

fedoraproject

  • fedora

opensuse

  • leap
  • opensuse