CVE-2015-4488 : Use-after-free vulnerability in the StyleAnimationValue class in Mozilla Firefox before 40.0, Firefox ESR 38.x before 38

Use-after-free vulnerability in the StyleAnimationValue class in Mozilla Firefox before 40.0, Firefox ESR 38.x before 38.2, and Firefox OS before 2.2 allows remote attackers to have an unspecified impact by leveraging a StyleAnimationValue::operator self assignment.

Published 2015-08-16 01:59:16

Updated 2018-10-30 16:27:36

Source Mozilla Corporation

View at NVD, CVE.org

Vulnerability category: Memory Corruption

Exploit prediction scoring system (EPSS) score for CVE-2015-4488

Probability of exploitation activity in the next 30 days: 1.60%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 86 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2015-4488

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2015-4488

http://www.ubuntu.com/usn/USN-2712-1

USN-2712-1: Thunderbird vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://www.debian.org/security/2015/dsa-3333

Debian -- Security Information -- DSA-3333-1 iceweasel

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2015-08/msg00031.html

openSUSE-SU-2015:1454-1: moderate: Security update for MozillaThunderbir

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00021.html

[security-announce] SUSE-SU-2015:1449-1: important: Security update for

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00015.html

[security-announce] openSUSE-SU-2015:1390-1: important: Security update
Third Party Advisory

CVEs referencing this url
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

Oracle Solaris Bulletin - April 2016
Third Party Advisory

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2015-1586.html

RHSA-2015:1586 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
http://www.debian.org/security/2015/dsa-3410

Debian -- Security Information -- DSA-3410-1 icedove

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00014.html

[security-announce] openSUSE-SU-2015:1389-1: important: Security update
Third Party Advisory

CVEs referencing this url
https://bugzilla.mozilla.org/show_bug.cgi?id=1176270

1176270 - (CVE-2015-4488) StyleAnimationValue::operator= uses objects after delete on self-assignment
Issue Tracking
https://security.gentoo.org/glsa/201605-06

Mozilla Products: Multiple vulnerabilities (GLSA 201605-06) — Gentoo security

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2702-1

USN-2702-1: Firefox vulnerabilities | Ubuntu security notices
Third Party Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-updates/2015-08/msg00030.html

openSUSE-SU-2015:1453-1: moderate: Security update for MozillaThunderbir

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00016.html

[security-announce] SUSE-SU-2015:1528-1: important: Security update for

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00025.html

[security-announce] SUSE-SU-2015:2081-1: important: Security update for

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2702-3

USN-2702-3: Firefox regression | Ubuntu security notices

CVEs referencing this url
http://www.securitytracker.com/id/1033247

Mozilla Firefox Multiple Flaws Let Remote Users Execute Arbitrary Code, Obtain Potentially Sensitive Information, Bypass Security Restrictions, and Conduct Cross-Site Scripting Attacks - SecurityTrack

CVEs referencing this url
http://www.securitytracker.com/id/1033372

Mozilla Thunderbird Multiple Flaws Let Remote Users Execute Arbitrary Code and Local Users Gain Elevated Privileges - SecurityTracker

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2702-2

USN-2702-2: Ubufox update | Ubuntu security notices
Third Party Advisory

CVEs referencing this url
http://rhn.redhat.com/errata/RHSA-2015-1682.html

RHSA-2015:1682 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
http://www.mozilla.org/security/announce/2015/mfsa2015-90.html

Vulnerabilities found through code inspection — Mozilla
Vendor Advisory

CVEs referencing this url

Products affected by CVE-2015-4488

Oracle » Solaris » Version: 11.3
cpe:2.3:o:oracle:solaris:11.3:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox
Versions up to, including, (<=) 39.0.3
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Esr » Version: 38.0
cpe:2.3:a:mozilla:firefox_esr:38.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Esr » Version: 38.0.1
cpe:2.3:a:mozilla:firefox_esr:38.0.1:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Esr » Version: 38.0.5
cpe:2.3:a:mozilla:firefox_esr:38.0.5:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Esr » Version: 38.1.0
cpe:2.3:a:mozilla:firefox_esr:38.1.0:*:*:*:*:*:*:*
Matching versions
Mozilla » Firefox Os » Version: 2.1.0
cpe:2.3:o:mozilla:firefox_os:2.1.0:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 15.04
cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 12.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
Matching versions
Canonical » Ubuntu Linux » Version: 14.04 LTS Edition
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.2
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.1
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2015-4488

Exploit prediction scoring system (EPSS) score for CVE-2015-4488

CVSS scores for CVE-2015-4488

References for CVE-2015-4488

Products affected by CVE-2015-4488