⚠ Actively exploited

Added to CISA KEV on 2023-06-22. Federal agencies required to patch by 2023-07-13. Required action: Apply updates per vendor instructions..

CVE-2016-9079 — Use After Free in Mozilla Firefox

CWE-416 — Use After Free18 documents13 sources

Severity

7.5HIGHNVD

OSV9.8OSV8.8

EPSS

84.8%

top 0.65%

CISA KEV

KEV

Added 2023-06-22

Due 2023-07-13

Exploit

Exploited in wild

Active exploitation observed

Affected products

Mozilla Firefox Mozilla Firefox ESR Mozilla Thunderbird +7 more

Timeline

PublishedJun 11

KEV addedJun 22

KEV dueJul 13

CISA Required Action: Apply updates per vendor instructions.

Description

A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this vulnerability has been discovered in the wild targeting Firefox and Tor Browser users on Windows. This vulnerability affects Firefox < 50.0.2, Firefox ESR < 45.5.1, and Thunderbird < 45.5.1.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages10 packages

▶CVEListV5mozilla/firefoxunspecified — 50.0.2

▶NVDmozilla/firefox< 50.0.2+1

▶CVEListV5mozilla/firefox_esrunspecified — 45.5.1

▶Ubuntumozilla/firefox< 50.0.2+build1-0ubuntu0.14.04.1+1

▶CVEListV5mozilla/thunderbirdunspecified — 45.5.1

Also affects: Debian Linux 9.0, Enterprise Linux 5.0, 6.0, 7.0, 7.3, 7.4, 7.5

🔴Vulnerability Details

GHSA

GHSA-cmgc-v5fc-wx68: A use-after-free vulnerability in SVG Animation has been discovered↗2022-05-14

▶

CVEList

CVE-2016-9079: A use-after-free vulnerability in SVG Animation has been discovered↗2018-06-11

▶

OSV

CVE-2016-9079: A use-after-free vulnerability in SVG Animation has been discovered↗2018-06-11

▶

Project0

The Great DOM Fuzz-off of 2017 - Project Zero↗2017-09-01

▶

OSV

thunderbird vulnerabilities↗2016-12-01

▶

💥Exploits & PoCs

Exploit-DB

Firefox 50.0.1 - ASM.JS JIT-Spray Remote Code Execution↗2017-07-14

▶

Exploit-DB

Mozilla Firefox < 50.0.2 - 'nsSMILTimeContainer::NotifyTimeChange()' Remote Code Execution (Metasploit)↗2017-01-24

▶

Metasploit

Firefox nsSMILTimeContainer::NotifyTimeChange() RCE↗

▶

📋Vendor Advisories

CISA

Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free Vulnerability↗2023-06-22

▶

Ubuntu

Thunderbird vulnerabilities↗2016-12-01

▶

Red Hat

Mozilla: Firefox SVG Animation Remote Code Execution (MFSA 2016-92)↗2016-12-01

▶

Ubuntu

Firefox vulnerabilities↗2016-11-30

▶

Debian

CVE-2016-9079: firefox - A use-after-free vulnerability in SVG Animation has been discovered. An exploit ...↗2016

▶

💬Community

Bugzilla

lack of executable-code quota allows full bypass of ASLR and DEP↗2016-12-21

▶

Bugzilla

CVE-2016-9079 Mozilla: Firefox SVG Animation Remote Code Execution (MFSA 2016-92)↗2016-12-01

▶