PT-2016-1825 · Mozilla+5 · Firefox+5

Boris Zbarsky

Published

2016-04-26

Updated

2024-06-15

CVE-2016-2806

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 46.0 Firefox ESR versions 45.x prior to 45.1

Description The issue is caused by buffer overflow vulnerabilities in the browser engine, which can be exploited by a remote attacker to cause a denial of service, such as memory corruption and application crash, or possibly execute arbitrary code.

Recommendations For Firefox versions prior to 46.0, update to version 46.0 or later. For Firefox ESR versions 45.x prior to 45.1, update to version 45.1 or later.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2016-1433

ALT-PU-2016-1454

BDU:2016-01158

CESA-2016_0695

CVE-2016-2806

DLA-519-1

DSA-3601-1

MGASA-2016-0158

OPENSUSE-SU-2016:1769-1

OPENSUSE-SU-2016:1778-1

OPENSUSE-SU-2016_1211-1

OPENSUSE-SU-2016_1767-1

OPENSUSE-SU-2016_1778-1

OPENSUSE-SU-2024:10071-1

OPENSUSE-SU-2024:10230-1

RHSA-2016:0695

RHSA-2016_0695

USN-2936-1

USN-2936-3

Affected Products

Alt Linux

Centos

Firefox

Red Hat

Suse

Ubuntu

PT-2016-1825 · Mozilla+5 · Firefox+5

CVE-2016-2806

Weakness Enumeration

Related Identifiers

Affected Products

References · 996