PT-2019-1341 · Mozilla+2 · Firefox+2

Nils

Published

2019-01-29

Updated

2024-12-12

CVE-2018-18503

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 65

Description The issue is related to a compartment mismatch that may occur when JavaScript is used to create and manipulate an audio buffer, potentially leading to a crash. It is also associated with resource release errors in the Audio Buffer component. An attacker could exploit this issue by using a specially crafted web page to cause a denial of service.

Recommendations For versions prior to 65, update to version 65 or later to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2019-1173

ALT-PU-2019-2324

ALT-PU-2019-2486

BDU:2019-00679

CVE-2018-18503

OPENSUSE-SU-2024:10600-1

OPENSUSE-SU-2024:14572-1

USN-3874-1

Affected Products

Alt Linux

Firefox

Ubuntu

PT-2019-1341 · Mozilla+2 · Firefox+2

CVE-2018-18503

Weakness Enumeration

Related Identifiers

Affected Products

References · 1883