Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-j6jh-yqyy-qkbb
Summary
Security researcher Holger Fuhrmannek reported that if the
Updater opens a MAR
format file with a specially crafted name, an out-of-bounds write will occur.
This can lead to a potentially exploitable crash but requires that the malicious
MAR format file be present on the local system and the Updater to be
run to use it.
Aliases
0
alias CVE-2015-4482
Fixed_packages
0
url pkg:mozilla/Firefox@40.0.0
purl pkg:mozilla/Firefox@40.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@40.0.0
1
url pkg:mozilla/Firefox%20ESR@38.2.0
purl pkg:mozilla/Firefox%20ESR@38.2.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@38.2.0
2
url pkg:mozilla/Firefox%20OS@2.5.0
purl pkg:mozilla/Firefox%20OS@2.5.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520OS@2.5.0
3
url pkg:mozilla/SeaMonkey@2.35.0
purl pkg:mozilla/SeaMonkey@2.35.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.35.0
4
url pkg:mozilla/Thunderbird@38.2.0
purl pkg:mozilla/Thunderbird@38.2.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@38.2.0
Affected_packages
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4482
reference_id CVE-2015-4482
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4482
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2015-85
reference_id mfsa2015-85
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2015-85
Weaknesses
Exploits
Severity_range_score7.0 - 8.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-j6jh-yqyy-qkbb