Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2018-5146

Published: 11/06/2018 Updated: 11/03/2019
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Enterprise Linux Server Tus

Vulnerability Summary

An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. This vulnerability affects Firefox < 59.0.1, Firefox ESR < 52.7.2, and Thunderbird < 52.7.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

redhat enterprise linux server tus 7.4

redhat enterprise linux server tus 7.6

redhat enterprise linux server 6.0

redhat enterprise linux server eus 7.4

redhat enterprise linux server eus 7.6

redhat enterprise linux workstation 6.0

redhat enterprise linux desktop 7.0

redhat enterprise linux server 7.0

redhat enterprise linux workstation 7.0

redhat enterprise linux server aus 7.4

redhat enterprise linux desktop 6.0

redhat enterprise linux server aus 7.6

redhat enterprise linux server eus 7.5

debian debian linux 9.0

debian debian linux 8.0

debian debian linux 7.0

canonical ubuntu linux 16.04

canonical ubuntu linux 14.04

canonical ubuntu linux 17.10

mozilla firefox esr

mozilla firefox

mozilla thunderbird

Vendor Advisories

Red Hat: Important: libvorbis security update
Synopsis Important: libvorbis security update Type/Severity Security Advisory: Important Topic An update for libvorbis is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base sc ...
Red Hat: Important: thunderbird security update
Synopsis Important: thunderbird security update Type/Severity Security Advisory: Important Topic An update for thunderbird is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) bas ...
Red Hat: Critical: firefox security update
Synopsis Critical: firefox security update Type/Severity Security Advisory: Critical Topic An update for firefox is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Critical A Common Vulnerability Scori ...
Red Hat: Important: thunderbird security update
Synopsis Important: thunderbird security update Type/Severity Security Advisory: Important Topic An update for thunderbird is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) bas ...
Red Hat: Important: libvorbis security update
Synopsis Important: libvorbis security update Type/Severity Security Advisory: Important Topic An update for libvorbis is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base sc ...
Debian CVElist Bug Report Logs: libvorbis: CVE-2018-5146: out-of-bounds memory write
Debian Bug report logs - #893130 libvorbis: CVE-2018-5146: out-of-bounds memory write Package: src:libvorbis; Maintainer for src:libvorbis is Debian Multimedia Maintainers &lt;debian-multimedia@listsdebianorg&gt;; Reported by: Salvatore Bonaccorso &lt;carnil@debianorg&gt; Date: Fri, 16 Mar 2018 18:30:02 UTC Severity: grave Ta ...
Debian CVElist Bug Report Logs: libvorbis: CVE-2017-11333 OOM via crafted WAV file
Debian Bug report logs - #870341 libvorbis: CVE-2017-11333 OOM via crafted WAV file Package: src:libvorbis; Maintainer for src:libvorbis is Debian Multimedia Maintainers &lt;debian-multimedia@listsdebianorg&gt;; Reported by: Salvatore Bonaccorso &lt;carnil@debianorg&gt; Date: Tue, 1 Aug 2017 09:06:01 UTC Severity: important ...
Ubuntu Security Notice: thunderbird vulnerabilities
Several security issues were fixed in Thunderbird ...
Ubuntu Security Notice: libvorbis vulnerability
libvorbis could be made to crash or run programs as your login if it opened a specially crafted file ...
Ubuntu Security Notice: firefox vulnerability
Firefox could be made to crash or run programs as your login if it opened a malicious website ...
Amazon Linux AMI: ALAS-2018-981
Vorbis audio processing out of bounds write:An out of bounds write flaw was found in the processing of vorbis audio data A maliciously crafted file or audio stream could cause the application to crash or, potentially, execute arbitrary code (CVE-2018-5146) ...
Amazon Linux 2: ALAS2-2018-981
Vorbis audio processing out of bounds write (MFSA 2018-08):An out of bounds write flaw was found in the processing of vorbis audio data A maliciously crafted file or audio stream could cause the application to crash or, potentially, execute arbitrary code (CVE-2018-5146) ...
Debian Security Advisories: DSA-4155-1 thunderbird -- security update
Multiple security issues have been found in Thunderbird, which may lead to the execution of arbitrary code, denial of service or information disclosure For the oldstable distribution (jessie), these problems have been fixed in version 1:5270-1~deb8u1 For the stable distribution (stretch), these problems have been fixed in version 1:5270-1~deb ...
Debian Security Advisories: DSA-4143-1 firefox-esr -- security update
Richard Zhu and Huzaifa Sidhpurwala discovered that an out-of-bounds memory write when playing Vorbis media files could result in the execution of arbitrary code For the oldstable distribution (jessie), these problems have been fixed in version 5272esr-1~deb8u1 For the stable distribution (stretch), these problems have been fixed in version 52 ...
Debian Security Advisories: DSA-4140-1 libvorbis -- security update
Richard Zhu discovered that an out-of-bounds memory write in the codebook parsing code of the Libvorbis multimedia library could result in the execution of arbitrary code if a malformed Vorbis file is opened For the oldstable distribution (jessie), this problem has been fixed in version 134-2+deb8u1 For the stable distribution (stretch), this p ...
Red Hat: CVE-2018-5146
An out of bounds write flaw was found in the processing of vorbis audio data A maliciously crafted file or audio stream could cause the application to crash or, potentially, execute arbitrary code ...
Mozilla: Out of bounds memory write while processing Vorbis audio data
Mozilla Foundation Security Advisory 2018-08 Out of bounds memory write while processing Vorbis audio data Announced March 16, 2018 Impact critical Products Firefox, Firefox ESR Fixed in Firefox 5901 ...
Mozilla: Security vulnerabilities fixed in Thunderbird 52.7
Mozilla Foundation Security Advisory 2018-09 Security vulnerabilities fixed in Thunderbird 527 Announced March 23, 2018 Impact critical Products Thunderbird Fixed in Thunderbird 527 ...
Arch Linux Issues:
An out of bounds memory write vulnerability has been discovered in libvorbis before 136 while processing Vorbis audio data related to codebooks that are not an exact divisor of the partition size ...

Github Repositories

https://github.com/f01965/CVE-2018-5146

CVE-2018-5146 的exp 和 poc pocogg :自己构造的poc文件 cve-test2html :exploit文件 crctestexe:计算ogg文件的 crc32

References

CWE-787https://www.mozilla.org/security/advisories/mfsa2018-09/https://www.mozilla.org/security/advisories/mfsa2018-08/https://bugzilla.mozilla.org/show_bug.cgi?id=1446062https://www.debian.org/security/2018/dsa-4155https://www.debian.org/security/2018/dsa-4143https://www.debian.org/security/2018/dsa-4140https://usn.ubuntu.com/3604-1/https://usn.ubuntu.com/3599-1/https://usn.ubuntu.com/3545-1/https://lists.debian.org/debian-lts-announce/2018/04/msg00033.htmlhttps://lists.debian.org/debian-lts-announce/2018/03/msg00029.htmlhttps://lists.debian.org/debian-lts-announce/2018/03/msg00022.htmlhttps://access.redhat.com/errata/RHSA-2018:1058https://access.redhat.com/errata/RHSA-2018:0649https://access.redhat.com/errata/RHSA-2018:0648https://access.redhat.com/errata/RHSA-2018:0647https://access.redhat.com/errata/RHSA-2018:0549http://www.securitytracker.com/id/1040544http://www.securityfocus.com/bid/103432https://security.gentoo.org/glsa/201811-13https://nvd.nist.govhttps://access.redhat.com/errata/RHSA-2018:0649https://usn.ubuntu.com/3545-1/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook