CVE-2016-1930Improper Restriction of Operations within the Bounds of a Memory Buffer in Mozilla Firefox

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents7 sources
Severity
9.8CRITICALNVD
EPSS
1.9%
top 16.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Mozilla FirefoxMozilla ThunderbirdOpensuse Leap+2 more
Timeline
PublishedJan 31
Latest updateMay 13

Description

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 44.0 and Firefox ESR 38.x before 38.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages6 packages

Ubuntumozilla/firefox< 44.0+build3-0ubuntu0.14.04.1
NVDmozilla/firefox43.0.4+6
Ubuntumozilla/thunderbird< 1:38.6.0+build1-0ubuntu0.14.04.1
NVDoracle/linux5.0, 6, 7+2
NVDopensuse/leap42.1

🔴Vulnerability Details

5
GHSA
GHSA-g5qr-g927-wr2c: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 442022-05-13
OSV
firefox regression2016-02-08
CVEList
CVE-2016-1930: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 442016-01-31
OSV
firefox vulnerabilities2016-01-27
OSV
CVE-2016-1930: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 442016-01-26

📋Vendor Advisories

3
Ubuntu
Thunderbird vulnerabilities2016-03-08
Ubuntu
Firefox vulnerabilities2016-01-27
Red Hat
Mozilla: Miscellaneous memory safety hazards (rv:38.6) (MFSA 2016-01)2016-01-26

💬Community

1
Bugzilla
CVE-2016-1930 Mozilla: Miscellaneous memory safety hazards (rv:38.6) (MFSA 2016-01)2016-01-26
CVE-2016-1930 — Mozilla Firefox vulnerability | cvebase