Heap-based buffer overflow in nsWaveReader::DecodeAudioData function in Mozilla Firefox and Thunderbird before 16.0 allows remote code execution

Heap-based buffer overflow in nsWaveReader::DecodeAudioData function in Mozilla Firefox and Thunderbird before 16.0 allows remote code execution

CVE-2012-4186 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Heap-based buffer overflow in the nsWaveReader::DecodeAudioData function in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 allows remote attackers to execute arbitrary code via unspecified vectors.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.