CVE-2016-5261
CVSS v3.0
8.8 (High)
CVSS v2.0
7.5 (High)
EPSS
1.90 % (89th)
Affected Products
1
Advisories
10
Integer overflow in the WebSocketChannel class in the WebSockets subsystem in Mozilla Firefox before 48.0 and Firefox ESR < 45.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted packets that trigger incorrect buffer-resize operations during buffering.
Weaknesses
- CWE-190
- Integer Overflow or Wraparound
- CVE Status
- PUBLISHED
- CNA
- Mozilla Corporation
- Published Date
-
2016-08-05 01:59:17
(8 years ago) - Updated Date
-
2018-06-12 01:29:00
(6 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...