14 Aoû 2015
Vulnerability Details : CVE-2015-4475
The mozilla::AudioSink function in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 mishandles inconsistent sample formats within MP3 audio data, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a malformed file.
Publish Date : 2015-08-15 Last Update Date : 2015-08-15
- CVSS Scores & Vulnerability Types
- Related OVAL Definitions
OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify a vulnerability or a missing patch. Check out the OVAL definitions if you want to learn what you should do to verify a vulnerability.
- Products Affected By CVE-2015-4475
- References For CVE-2015-4475
- Metasploit Modules Related To CVE-2015-4475
There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information)