Multiple Vulnerabilities in Mozilla Firefox Browser Engine
CVE-2015-4474

Currently unrated

Key Information:

Vendor: Canonical
Status: Ubuntu Linux; Opensuse
Vendor: CVE Published:; 16 August 2015

What is CVE-2015-4474?

Mozilla Firefox prior to version 40.0 is susceptible to multiple vulnerabilities within its browser engine. These weaknesses allow remote attackers to potentially cause a denial of service through memory corruption, leading to application crashes. Additionally, exploitation of these vulnerabilities might allow attackers to execute arbitrary code, posing significant risks to user data and system integrity. Users are encouraged to update their browser to the latest version to mitigate these risks.

References

http://lists.opensuse.org/opensuse-security-announce/2015...

vendor-advisoryx_refsource_SUSE

http://www.mozilla.org/security/announce/2015/mfsa2015-79...

x_refsource_CONFIRM

http://www.ubuntu.com/usn/USN-2702-3

vendor-advisoryx_refsource_UBUNTU

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 16, 2015
Vulnerability Reserved
Jun 10, 2015

Canonical

What is CVE-2015-4474?

References

Timeline