CVE-2015-1206

MEDIUM

Google Chrome <M40 - Buffer Overflow

Title source: llm
STIX 2.1

Description

Heap-based buffer overflow in Google Chrome before M40 allows remote attackers to cause a denial of service (unpaged memory write and process crash) via a crafted MP4 file.

References (3)

Core 3
Core References

Scores

CVSS v3 5.5
EPSS 0.0072
EPSS Percentile 49.3%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Details

CWE
CWE-119
Status published
Products (1)
google/chrome < 41.0.2251.0
Published Oct 06, 2017
Tracked Since Feb 18, 2026