Mozilla Firefox MP3FrameParser Stack-based Buffer Underflow Vulnerability

Mozilla Firefox MP3FrameParser Stack-based Buffer Underflow Vulnerability

CVE-2015-0825 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Stack-based buffer underflow in the mozilla::MP3FrameParser::ParseBuffer function in Mozilla Firefox before 36.0 allows remote attackers to obtain sensitive information from process memory via a malformed MP3 file that improperly interacts with memory allocation during playback.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.