Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2016-2819Improper Restriction of Operations within the Bounds of a Memory Buffer in Firefox

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents8 sources
Severity
8.8HIGHNVD
EPSS
65.0%
top 1.51%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
7
Mozilla FirefoxDebian FirefoxDebian Firefox-esr+4 more
Timeline
PublishedJun 13
Latest updateMay 14

Description

Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via foreign-context HTML5 fragments, as demonstrated by fragments within an SVG element.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages6 packages

Ubuntumozilla/firefox< 47.0+build3-0ubuntu0.14.04.1+1
NVDmozilla/firefox46.0.1+2
debiandebian/firefox< firefox 47.0-1 (sid)
debiandebian/firefox-esr< firefox 47.0-1 (sid)
NVDopensuse/leap42.1

Also affects: Debian Linux 8.0, Ubuntu Linux 12.04, 14.04, 15.10, 16.04

🔴Vulnerability Details

3
GHSA
GHSA-w5jf-q8p2-qgmx: Heap-based buffer overflow in Mozilla Firefox before 472022-05-14
OSV
CVE-2016-2819: Heap-based buffer overflow in Mozilla Firefox before 472016-06-13
OSV
firefox vulnerabilities2016-06-09

💥Exploits & PoCs

1
Exploit-DB
Firefox 46.0.1 - ASM.JS JIT-Spray Remote Code Execution2018-03-16

📋Vendor Advisories

3
Ubuntu
Firefox vulnerabilities2016-06-09
Red Hat
Mozilla: Buffer overflow parsing HTML5 fragments (MFSA 2016-50)2016-06-08
Debian
CVE-2016-2819: firefox - Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ESR 45.x b...2016

💬Community

2
Bugzilla
lack of executable-code quota allows full bypass of ASLR and DEP2016-12-21
Bugzilla
CVE-2016-2819 Mozilla: Buffer overflow parsing HTML5 fragments (MFSA 2016-50)2016-06-06
CVE-2016-2819 — Debian Firefox vulnerability | cvebase