CVE-2016-2836
published 2016-08-05CVE-2016-2836: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow remote attackers to cause a…
PriorityP336high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
EPSS
2.89%
85.2th percentile
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to Http2Session::Shutdown and SpdySession31::Shutdown, and other vectors.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 48.0-1 (sid) | firefox 48.0-1 (sid) |
| debian | firefox-esr | < firefox 48.0-1 (sid) | firefox 48.0-1 (sid) |
| mozilla | firefox | <= 47.0.1 | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | — | — |
| mozilla | firefox | >= 0 < 48.0+build2-0ubuntu0.14.04.1 | 48.0+build2-0ubuntu0.14.04.1 |
| mozilla | firefox | >= 0 < 48.0+build2-0ubuntu0.16.04.1 | 48.0+build2-0ubuntu0.16.04.1 |
| mozilla | thunderbird | >= 0 < 1:45.3.0+build1-0ubuntu0.14.04.4 | 1:45.3.0+build1-0ubuntu0.14.04.4 |
| mozilla | thunderbird | >= 0 < 1:45.3.0+build1-0ubuntu0.16.04.2 | 1:45.3.0+build1-0ubuntu0.16.04.2 |
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_ubuntu9.8CRITICAL
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2016-09-22·CVSS 8.8
CVE-2016-2836 [HIGH] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Thunderbird could be made to crash or run programs as your login if it
opened a malicious message.
Christian Holler, Carsten Book, Gary Kwong, Jesse Ruderman, Andrew
McCreight, and Phil Ringnalda discovered multiple memory safety issues in
Thunderbird. If a user were tricked in to opening a specially crafted
message, an attacker could potentially exploit these to cause a denial of
service via application crash, or execute arbitrary code. (CVE-2016-2836)
Instructions: After a standard system update you need to restart Thunderbird to make
all the necessary changes.
Ubuntu
Firefox vulnerabilities
vendor_ubuntu·2016-08-05·CVSS 9.8
CVE-2016-0718 [CRITICAL] Firefox vulnerabilities
Title: Firefox vulnerabilities
Summary: Firefox could be made to crash or run programs as your login if it
opened a malicious website.
Gustavo Grieco discovered an out-of-bounds read during XML parsing in
some circumstances. If a user were tricked in to opening a specially
crafted website, an attacker could potentially exploit this to cause a
denial of service via application crash, or obtain sensitive information.
(CVE-2016-0718)
Toni Huttunen discovered that once a favicon is requested from a site,
the remote server can keep the network connection open even after the page
is closed. A remote attacked could potentially exploit this to track
users, resulting in information disclosure. (CVE-2016-2830)
Christian Holler, Tyson Smith, Boris Zbarsky, Byron Campen, Julian Seward,
Carsten Boo
Red Hat
Mozilla: Miscellaneous memory safety hazards (rv:45.3) (MFSA 2016-62)
vendor_redhat·2016-08-02·CVSS 8.8
CVE-2016-2836 [HIGH] Mozilla: Miscellaneous memory safety hazards (rv:45.3) (MFSA 2016-62)
Mozilla: Miscellaneous memory safety hazards (rv:45.3) (MFSA 2016-62)
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to Http2Session::Shutdown and SpdySession31::Shutdown, and other vectors.
Debian
CVE-2016-2836: firefox - Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox be...
vendor_debian·2016·CVSS 8.8
CVE-2016-2836 [HIGH] CVE-2016-2836: firefox - Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox be...
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to Http2Session::Shutdown and SpdySession31::Shutdown, and other vectors.
Scope: local
sid: resolved (fixed in 48.0-1)
GHSA
GHSA-458f-jrrc-3qjf: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48
ghsa_unreviewed·2022-05-17
CVE-2016-2836 [HIGH] CWE-119 GHSA-458f-jrrc-3qjf: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to Http2Session::Shutdown and SpdySession31::Shutdown, and other vectors.
OSV
thunderbird vulnerabilities
osv·2016-09-22·CVSS 8.8
CVE-2016-2836 [HIGH] thunderbird vulnerabilities
thunderbird vulnerabilities
Christian Holler, Carsten Book, Gary Kwong, Jesse Ruderman, Andrew
McCreight, and Phil Ringnalda discovered multiple memory safety issues in
Thunderbird. If a user were tricked in to opening a specially crafted
message, an attacker could potentially exploit these to cause a denial of
service via application crash, or execute arbitrary code. (CVE-2016-2836)
OSV
CVE-2016-2836: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48
osv·2016-08-05·CVSS 8.8
CVE-2016-2836 [HIGH] CVE-2016-2836: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to Http2Session::Shutdown and SpdySession31::Shutdown, and other vectors.
OSV
firefox vulnerabilities
osv·2016-08-05·CVSS 9.8
CVE-2016-0718 [CRITICAL] firefox vulnerabilities
firefox vulnerabilities
Gustavo Grieco discovered an out-of-bounds read during XML parsing in
some circumstances. If a user were tricked in to opening a specially
crafted website, an attacker could potentially exploit this to cause a
denial of service via application crash, or obtain sensitive information.
(CVE-2016-0718)
Toni Huttunen discovered that once a favicon is requested from a site,
the remote server can keep the network connection open even after the page
is closed. A remote attacked could potentially exploit this to track
users, resulting in information disclosure. (CVE-2016-2830)
Christian Holler, Tyson Smith, Boris Zbarsky, Byron Campen, Julian Seward,
Carsten Book, Gary Kwong, Jesse Ruderman, Andrew McCreight, and Phil
Ringnalda discovered multiple memory safety issues in
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00004.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-08/msg00029.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1551.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1809.htmlhttp://www.debian.org/security/2016/dsa-3640http://www.mozilla.org/security/announce/2016/mfsa2016-62.htmlhttp://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.htmlhttp://www.securityfocus.com/bid/92261http://www.securitytracker.com/id/1036508http://www.ubuntu.com/usn/USN-3044-1https://bugzilla.mozilla.org/show_bug.cgi?id=1154923https://bugzilla.mozilla.org/show_bug.cgi?id=1249578https://bugzilla.mozilla.org/show_bug.cgi?id=1257765https://bugzilla.mozilla.org/show_bug.cgi?id=1258079https://bugzilla.mozilla.org/show_bug.cgi?id=1268626https://bugzilla.mozilla.org/show_bug.cgi?id=1282502https://bugzilla.mozilla.org/show_bug.cgi?id=1283823https://bugzilla.mozilla.org/show_bug.cgi?id=822081https://security.gentoo.org/glsa/201701-15http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00004.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-08/msg00029.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1551.htmlhttp://rhn.redhat.com/errata/RHSA-2016-1809.htmlhttp://www.debian.org/security/2016/dsa-3640http://www.mozilla.org/security/announce/2016/mfsa2016-62.htmlhttp://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.htmlhttp://www.securityfocus.com/bid/92261http://www.securitytracker.com/id/1036508http://www.ubuntu.com/usn/USN-3044-1https://bugzilla.mozilla.org/show_bug.cgi?id=1154923https://bugzilla.mozilla.org/show_bug.cgi?id=1249578https://bugzilla.mozilla.org/show_bug.cgi?id=1257765https://bugzilla.mozilla.org/show_bug.cgi?id=1258079https://bugzilla.mozilla.org/show_bug.cgi?id=1268626https://bugzilla.mozilla.org/show_bug.cgi?id=1282502https://bugzilla.mozilla.org/show_bug.cgi?id=1283823https://bugzilla.mozilla.org/show_bug.cgi?id=822081https://security.gentoo.org/glsa/201701-15
2016-08-05
Published