Endpoint Vulnerability

Memory corruption in libjar through zip files

Description

Security researcher Gustavo Grieco reported a buffer underflow in libjar triggered through a maliciously crafted ZIP format file. This results in a potentially exploitable crash.

Affected Products

Thunderbird

References

CVE-2015-7194,