CVE-2016-5278Improper Restriction of Operations within the Bounds of a Memory Buffer in Firefox

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents7 sources
Severity
8.8HIGHNVD
OSV6.5OSV4.3
EPSS
1.5%
top 18.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Mozilla FirefoxMozilla ThunderbirdDebian Firefox+1 more
Timeline
PublishedSep 22
Latest updateMay 14

Description

Heap-based buffer overflow in the nsBMPEncoder::AddImageFrame function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 allows remote attackers to execute arbitrary code via a crafted image data that is mishandled during the encoding of an image frame to an image.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages5 packages

Ubuntumozilla/firefox< 49.0+build4-0ubuntu0.14.04.1+1
NVDmozilla/firefox48.0.2+4
debiandebian/firefox< firefox 49.0-1 (sid)
debiandebian/firefox-esr< firefox 49.0-1 (sid)
Ubuntumozilla/thunderbird< 1:45.4.0+build1-0ubuntu0.14.04.1+1

🔴Vulnerability Details

4
GHSA
GHSA-jf8q-fmcm-x642: Heap-based buffer overflow in the nsBMPEncoder::AddImageFrame function in Mozilla Firefox before 492022-05-14
OSV
thunderbird vulnerabilities2016-10-27
OSV
CVE-2016-5278: Heap-based buffer overflow in the nsBMPEncoder::AddImageFrame function in Mozilla Firefox before 492016-09-22
OSV
firefox vulnerabilities2016-09-22

📋Vendor Advisories

4
Ubuntu
Thunderbird vulnerabilities2016-10-27
Ubuntu
Firefox vulnerabilities2016-09-22
Red Hat
Mozilla: Heap-buffer-overflow in nsBMPEncoder::AddImageFrame (MFSA 2016-85, MFSA 2016-86)2016-09-20
Debian
CVE-2016-5278: firefox - Heap-based buffer overflow in the nsBMPEncoder::AddImageFrame function in Mozill...2016

💬Community

1
Bugzilla
CVE-2016-5278 Mozilla: Heap-buffer-overflow in nsBMPEncoder::AddImageFrame (MFSA 2016-85, MFSA 2016-86)2016-09-20