Arbitrary Code Execution and Denial of Service Vulnerability in libvpx

Arbitrary Code Execution and Denial of Service Vulnerability in libvpx

CVE-2015-4486 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The decrease_ref_count function in libvpx in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via malformed WebM video data.

Learn more about our Web App Pen Testing.