CVE-2015-4504
CVSS v2.0
6.4 (Medium)
EPSS
5.41 % (93th)
Affected Products
1
Advisories
2
The lut_inverse_interp16 function in the QCMS library in Mozilla Firefox before 41.0 allows remote attackers to obtain sensitive information or cause a denial of service (buffer over-read and application crash) via crafted attributes in the ICC 4 profile of an image.
Weaknesses
- CWE-119
- Improper Restriction of Operations within the Bounds of a Memory Buffer
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2015-09-24 04:59:07
(9 years ago) - Updated Date
-
2016-12-22 02:59:55
(7 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...