CVE-2016-2805

CVSS v3.0 8.8 (High)

CVSS v2.0 10 (High)

EPSS 3.16 % (91^th)

Affected Products 1

Advisories 12

Unspecified vulnerability in the browser engine in Mozilla Firefox ESR 38.x before 38.8 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

Weaknesses

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CVE Status: PUBLISHED
CNA: Mozilla Corporation
Published Date: 2016-04-30 17:59:01
(8 years ago)
Updated Date: 2017-07-01 01:29:40
(7 years ago)

Affected Products

Mozilla

Firefox Esr

Configuration #1

		CPE23	From	Up To
	Mozilla Firefox Esr 38.0	cpe:2.3:a:mozilla:firefox_esr:38.0
	Mozilla Firefox Esr 38.0.1	cpe:2.3:a:mozilla:firefox_esr:38.0.1
	Mozilla Firefox Esr 38.0.5	cpe:2.3:a:mozilla:firefox_esr:38.0.5
	Mozilla Firefox Esr 38.1.0	cpe:2.3:a:mozilla:firefox_esr:38.1.0
	Mozilla Firefox Esr 38.1.1	cpe:2.3:a:mozilla:firefox_esr:38.1.1
	Mozilla Firefox Esr 38.2.0	cpe:2.3:a:mozilla:firefox_esr:38.2.0
	Mozilla Firefox Esr 38.2.1	cpe:2.3:a:mozilla:firefox_esr:38.2.1
	Mozilla Firefox Esr 38.3.0	cpe:2.3:a:mozilla:firefox_esr:38.3.0
	Mozilla Firefox Esr 38.4.0	cpe:2.3:a:mozilla:firefox_esr:38.4.0
	Mozilla Firefox Esr 38.5.0	cpe:2.3:a:mozilla:firefox_esr:38.5.0
	Mozilla Firefox Esr 38.5.1	cpe:2.3:a:mozilla:firefox_esr:38.5.1
	Mozilla Firefox Esr 38.6.0	cpe:2.3:a:mozilla:firefox_esr:38.6.0
	Mozilla Firefox Esr 38.6.1	cpe:2.3:a:mozilla:firefox_esr:38.6.1
	Mozilla Firefox Esr 38.7.0	cpe:2.3:a:mozilla:firefox_esr:38.7.0
	Mozilla Firefox Esr 38.7.1	cpe:2.3:a:mozilla:firefox_esr:38.7.1