Vulnerability Database

315,294

Total vulnerabilities in the database

CVE-2015-4496

Multiple integer overflows in libstagefright in Mozilla Firefox before 38.0 allow remote attackers to execute arbitrary code via crafted sample metadata in an MPEG-4 video file, a related issue to CVE-2015-1538.

Published: Aug 16, 2015
Updated: Nov 9, 2025
CVE: CVE-2015-4496
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-189

Affected Software
References

Software	From	Fixed in
oracle / solaris	11.3	11.3.x
mozilla / firefox	-	37.0.2.x

http://www.mozilla.org/security/announce/2015/mfsa2015-93.html
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
https://bugzilla.mozilla.org/show_bug.cgi?id=1149605
https://hg.mozilla.org/mozilla-central/rev/87277085561a

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo