CVE-2016-2804

CVSS v3.0 8.8 (High)

CVSS v2.0 10 (High)

EPSS 3.20 % (91^th)

Affected Products 2

Advisories 3

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 46.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Weaknesses

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2016-04-30 17:59:00
(8 years ago)
Updated Date: 2017-07-01 01:29:40
(7 years ago)

Affected Products

Mozilla

Configuration #1

	CPE23	Up To
Mozilla Firefox 45.0.2 and prior versions	cpe:2.3:a:mozilla:firefox	<= 45.0.2
Mozilla Firefox Esr 38.0	cpe:2.3:a:mozilla:firefox_esr:38.0
Mozilla Firefox Esr 38.0.1	cpe:2.3:a:mozilla:firefox_esr:38.0.1
Mozilla Firefox Esr 38.0.5	cpe:2.3:a:mozilla:firefox_esr:38.0.5
Mozilla Firefox Esr 38.1.0	cpe:2.3:a:mozilla:firefox_esr:38.1.0
Mozilla Firefox Esr 38.1.1	cpe:2.3:a:mozilla:firefox_esr:38.1.1
Mozilla Firefox Esr 38.2.0	cpe:2.3:a:mozilla:firefox_esr:38.2.0
Mozilla Firefox Esr 38.2.1	cpe:2.3:a:mozilla:firefox_esr:38.2.1
Mozilla Firefox Esr 38.3.0	cpe:2.3:a:mozilla:firefox_esr:38.3.0
Mozilla Firefox Esr 38.4.0	cpe:2.3:a:mozilla:firefox_esr:38.4.0
Mozilla Firefox Esr 38.5.0	cpe:2.3:a:mozilla:firefox_esr:38.5.0
Mozilla Firefox Esr 38.5.1	cpe:2.3:a:mozilla:firefox_esr:38.5.1
Mozilla Firefox Esr 38.5.2	cpe:2.3:a:mozilla:firefox_esr:38.5.2
Mozilla Firefox Esr 38.6.0	cpe:2.3:a:mozilla:firefox_esr:38.6.0
Mozilla Firefox Esr 38.6.1	cpe:2.3:a:mozilla:firefox_esr:38.6.1
Mozilla Firefox Esr 38.7.0	cpe:2.3:a:mozilla:firefox_esr:38.7.0
Mozilla Firefox Esr 38.7.1	cpe:2.3:a:mozilla:firefox_esr:38.7.1