CVE-2016-2780
published 2016-04-13CVE-2016-2780: Untrusted search path vulnerability in Huawei UTPS before UTPS-V200R003B015D15SP00C983 allows local users to execute arbitrary code and conduct DLL hijacking…
PriorityP429high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
EPSS
0.34%
25.7th percentile
Untrusted search path vulnerability in Huawei UTPS before UTPS-V200R003B015D15SP00C983 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL in an unspecified directory.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | utps_firmware | — | — |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2016-5291 Mozilla: Same-origin policy violation using local HTML file and saved shortcut file (MFSA 2016-89, MFSA 2016-90)
bugzilla·2016-11-15·CVSS 5.5
CVE-2016-5291 [MEDIUM] CVE-2016-5291 Mozilla: Same-origin policy violation using local HTML file and saved shortcut file (MFSA 2016-89, MFSA 2016-90)
CVE-2016-5291 Mozilla: Same-origin policy violation using local HTML file and saved shortcut file (MFSA 2016-89, MFSA 2016-90)
A same-origin policy bypass with local shortcut files to load arbitrary local content from disk.
External Reference:
https://www.mozilla.org/security/announce/2016/mfsa2016-89.html
Acknowledgements:
Name: the Mozilla project
Upstream: Yuyang Zhou
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Via RHSA-2016:2780 https://rhn.redhat.com/errata/RHSA-2016-2780.html
Bugzilla
CVE-2016-5297 Mozilla: Incorrect argument length checking in Javascript (MFSA 2016-89, MFSA 2016-90)
bugzilla·2016-11-15·CVSS 9.8
CVE-2016-5297 [CRITICAL] CVE-2016-5297 Mozilla: Incorrect argument length checking in Javascript (MFSA 2016-89, MFSA 2016-90)
CVE-2016-5297 Mozilla: Incorrect argument length checking in Javascript (MFSA 2016-89, MFSA 2016-90)
An error in argument length checking in JavaScript, leading to potential integer overflows or other bounds checking issues.
External Reference:
https://www.mozilla.org/security/announce/2016/mfsa2016-89.html
Acknowledgements:
Name: the Mozilla project
Upstream: André Bargull
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Via RHSA-2016:2780 https://rhn.redhat.com/errata/RHSA-2016-2780.html
Bugzilla
CVE-2016-9066 Mozilla: Integer overflow leading to a buffer overflow in nsScriptLoadHandler (MFSA 2016-89, MFSA 2016-90)
bugzilla·2016-11-15·CVSS 7.5
CVE-2016-9066 [HIGH] CVE-2016-9066 Mozilla: Integer overflow leading to a buffer overflow in nsScriptLoadHandler (MFSA 2016-89, MFSA 2016-90)
CVE-2016-9066 Mozilla: Integer overflow leading to a buffer overflow in nsScriptLoadHandler (MFSA 2016-89, MFSA 2016-90)
A buffer overflow resulting in a potentially exploitable crash due to memory allocation issues when handling large amounts of incoming data.
External Reference:
https://www.mozilla.org/security/announce/2016/mfsa2016-89.html
Acknowledgements:
Name: the Mozilla project
Upstream: Samuel Groß
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Via RHSA-2016:2780 https://rhn.redhat.com/errata/RHSA-2016-2780.html
Bugzilla
CVE-2016-5296 Mozilla: Heap-buffer-overflow WRITE in rasterize_edges_1 (MFSA 2016-89, MFSA 2016-90)
bugzilla·2016-11-15·CVSS 7.5
CVE-2016-5296 [HIGH] CVE-2016-5296 Mozilla: Heap-buffer-overflow WRITE in rasterize_edges_1 (MFSA 2016-89, MFSA 2016-90)
CVE-2016-5296 Mozilla: Heap-buffer-overflow WRITE in rasterize_edges_1 (MFSA 2016-89, MFSA 2016-90)
A heap-buffer-overflow in the Cairo when processing SVG content caused by compiler optimization, resulting in a potentially expoitable crash.
External Reference:
https://www.mozilla.org/security/announce/2016/mfsa2016-89.html
Acknowledgements:
Name: the Mozilla project
Upstream: Abhishek Arya
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Via RHSA-2016:2780 https://rhn.redhat.com/errata/RHSA-2016-2780.html
Bugzilla
CVE-2016-9064 Mozilla: Addons update must verify IDs match between current and new versions (MFSA 2016-89, MFSA 2016-90)
bugzilla·2016-11-15·CVSS 5.9
CVE-2016-9064 [MEDIUM] CVE-2016-9064 Mozilla: Addons update must verify IDs match between current and new versions (MFSA 2016-89, MFSA 2016-90)
CVE-2016-9064 Mozilla: Addons update must verify IDs match between current and new versions (MFSA 2016-89, MFSA 2016-90)
Addon updates failed to verify that the add-on ID inside the signed package matched the ID of the add-on being updated. An attacker who could perform a man-in-the-middle attack on the user's connection to the update server and defeat the certificate pinning protection could provide a malicious signed add-on instead of a valid update.
External Reference:
https://www.mozilla.org/security/announce/2016/mfsa2016-89.html
Acknowledgements:
Name: the Mozilla project
Discussion:
This issue has been addressed in the following products:
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Via RHSA-2016:2780 https://rhn.redhat.com/errata/RHSA-
2016-04-13
Published