CVE-2015-7178
Description
Missing bounds check in ANGLE's ProgramBinary::linkAttributes allows memory corruption and arbitrary code execution via crafted WebGL content.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Missing bounds check in ANGLE's ProgramBinary::linkAttributes allows memory corruption and arbitrary code execution via crafted WebGL content.
Vulnerability
The vulnerability resides in the ProgramBinary::linkAttributes function of the ANGLE library's libGLES component, which is used by Mozilla Firefox (before 41.0) and Firefox ESR 38.x (before 38.3) on Windows for rendering OpenGL and WebGL content [1]. A missing bounds check when handling shader attributes leads to memory safety errors, allowing writing to unowned memory [2]. This issue is specific to Windows systems and does not affect Linux or OS X [1].
Exploitation
An attacker can exploit this flaw by delivering crafted OpenGL or WebGL content to a vulnerable Firefox or Thunderbird installation on Windows [1]. The attack requires no special authentication or user interaction beyond normal browsing. In Thunderbird, scripting is disabled by default, making exploitation through email less likely, but it is still a risk in browser or browser-like contexts [1]. The missing bounds check can be triggered during shader attribute linking, leading to a buffer overflow condition [2].
Impact
Successful exploitation can result in memory corruption and a potentially exploitable crash, allowing the attacker to execute arbitrary code or cause a denial of service [1]. The impact is rated critical, and the attacker could gain full control over the affected system.
Mitigation
The vulnerability is fixed in Firefox 41 and Firefox ESR 38.3, released on September 22, 2015 [1]. Users should update to these versions or later. Thunderbird and SeaMonkey users who use the affected Windows builds should also upgrade to the fixed versions (Thunderbird 38.3, SeaMonkey 2.38) [1]. No workarounds are available for unpatched versions.
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
14cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*range: <=40.0.3
- cpe:2.3:a:mozilla:firefox:38.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:38.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:38.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:38.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:38.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:38.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:38.2.1:*:*:*:*:*:*:*
- (no CPE)range: < 38.3
- (no CPE)range: < 41.0
- osv-coords3 versionspkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Tumbleweed
< 128.5.1-1.1+ 2 more
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 50.1.0-1.1
- (no CPE)range: < 45.5.1-1.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- www.mozilla.org/security/announce/2015/mfsa2015-113.htmlnvdVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2015-10/msg00000.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-10/msg00003.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2015-10/msg00005.htmlnvd
- www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlnvd
- www.securityfocus.com/bid/76816nvd
- www.securitytracker.com/id/1033640nvd
- bugzilla.mozilla.org/show_bug.cginvd
News mentions
0No linked articles in our index yet.