CVE-2016-2805

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Mozilla Firefox ESR versions 38.x through 38.7

Description The issue is caused by a buffer overflow in the browser engine, which can be exploited by a remote attacker to cause a denial of service, such as memory corruption and application crash, or possibly execute arbitrary code.

Recommendations For Mozilla Firefox ESR versions 38.x through 38.7, update to version 38.8 or later to resolve the issue.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2015-1539

ALT-PU-2015-2189

ALT-PU-2016-1454

BDU:2016-01159

CESA-2016_0695

CESA-2016_1041

CVE-2016-2805

DLA-472-1

DSA-3559-1

DSA-3576-1

MGASA-2016-0158

MGASA-2016-0254

RHSA-2016:0695

RHSA-2016:1041

RHSA-2016_0695

RHSA-2016_1041

SUSE-SU-2016:1258-1

SUSE-SU-2016:1342-1

SUSE-SU-2016:1374-1

SUSE-SU-2016_1258-1

SUSE-SU-2016_1342-1

SUSE-SU-2016_1352-1

SUSE-SU-2016_1374-1

USN-2973-1

Affected Products

Alt Linux

Centos

Firefox Esr

Red Hat

Suse

Ubuntu

CVE-2016-2805

Weakness Enumeration

Related Identifiers

Affected Products

References · 61