CVE-2016-1946

The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox before 44.0 does not limit the size of read operations, which might allow remote attackers to cause a denial of service (integer overflow and buffer overflow) or possibly have unspecified other impact via crafted metadata.
Severity
CRITICAL
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Atk. Vector
NETWORK
Atk. Complexity
LOW
Priv. Required
NONE
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
VendorProductVersion
opensuseleap
42.1
opensuseopensuse
13.1
opensuseopensuse
13.2
mozillafirefox
𝑥
≤ 43.0.4
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
firefox
wily
Fixed 44.0+build3-0ubuntu0.15.10.1
released
vivid
Fixed 44.0+build3-0ubuntu0.15.04.1
released
trusty
Fixed 44.0+build3-0ubuntu0.14.04.1
released
precise
Fixed 44.0+build3-0ubuntu0.12.04.1
released
thunderbird
wily
not-affected
vivid
ignored
trusty
dne
precise
not-affected