CVE-2018-5130

Published: Jun 11, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

When packets with a mismatched RTP payload type are sent in WebRTC connections, in some circumstances a potentially exploitable crash is triggered. This vulnerability affects Firefox ESR < 52.7 and Firefox < 59.

Vendor	Product	Versions
Mozilla	Firefox ESR	affected `unspecified - < 52.7`
Mozilla	Firefox	affected `unspecified - < 59`

References

DSA-4139

vendor-advisory

x_refsource_DEBIAN

GLSA-201810-01

vendor-advisory

x_refsource_GENTOO

103388

vdb-entry

x_refsource_BID

RHSA-2018:0527

vendor-advisory

x_refsource_REDHAT

[debian-lts-announce] 20180315 [SECURITY] [DLA 1308-1] firefox-esr security update

mailing-list

x_refsource_MLIST

https://www.mozilla.org/security/advisories/mfsa2018-07/

x_refsource_CONFIRM

RHSA-2018:0526

vendor-advisory

x_refsource_REDHAT

https://bugzilla.mozilla.org/show_bug.cgi?id=1433005

x_refsource_CONFIRM

1040514

vdb-entry

x_refsource_SECTRACK

USN-3596-1

vendor-advisory

x_refsource_UBUNTU

https://www.mozilla.org/security/advisories/mfsa2018-06/

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-5130

Description

Affected Products

References