Endpoint Vulnerability

Crash during WAV audio file decoding

Description

Security researcher Aki Helin from OUSPG used the Address Sanitizer tool to discover a crash during the decoding of WAV format audio files in some instances. This crash is not exploitable but could be used for a denial of service (DOS) attack by malicious parties.

Affected Products

Firefox

References

CVE-2013-1708,