CVE-2020-16044
published 2021-02-09CVE-2020-16044: Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.
PriorityP344high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
EPSS
1.28%
66.5th percentile
Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | firefox | < firefox 84.0.2-1 (sid) | firefox 84.0.2-1 (sid) |
| debian | firefox-esr | < firefox 84.0.2-1 (sid) | firefox 84.0.2-1 (sid) |
| debian | thunderbird | < firefox 84.0.2-1 (sid) | firefox 84.0.2-1 (sid) |
| chrome | < 88.0.4324.96 | 88.0.4324.96 | |
| chrome | >= unspecified < 88.0.4324.96 | 88.0.4324.96 | |
| chrome_chrome | — | — | |
| mozilla | firefox | — | — |
| mozilla | thunderbird | >= 0 < 1:78.6.1-1 | 1:78.6.1-1 |
| mozilla | thunderbird | >= 0 < 1:78.6.1-1 | 1:78.6.1-1 |
| mozilla | thunderbird | >= 0 < 1:78.6.1-1 | 1:78.6.1-1 |
| mozilla | thunderbird | >= 0 < 1:78.6.1-1 | 1:78.6.1-1 |
| msrc | microsoft_edge | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.8HIGH
vendor_debian8.8HIGH
vendor_msrc8.8HIGH
vendor_redhat8.8HIGH
vendor_ubuntu6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3gx6-9g98-g4w5: Use after free in WebRTC in Google Chrome prior to 88
ghsa_unreviewed·2022-05-24
CVE-2020-16044 [HIGH] CWE-416 GHSA-3gx6-9g98-g4w5: Use after free in WebRTC in Google Chrome prior to 88
Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.
OSV
CVE-2020-16044: Use after free in WebRTC in Google Chrome prior to 88
osv·2021-02-09·CVSS 8.8
CVE-2020-16044 [HIGH] CVE-2020-16044: Use after free in WebRTC in Google Chrome prior to 88
Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.
Ubuntu
Thunderbird vulnerabilities
vendor_ubuntu·2021-01-20·CVSS 6.5
CVE-2020-16042 [MEDIUM] Thunderbird vulnerabilities
Title: Thunderbird vulnerabilities
Summary: Several security issues were fixed in Thunderbird.
Multiple security issues were discovered in Thunderbird. If a user were
tricked in to opening a specially crafted website in a browsing context,
an attacker could potentially exploit these to cause a denial of service,
obtain sensitive information, bypass the CSS sanitizer, or execute
arbitrary code. (CVE-2020-16042, CVE-2020-16044, CVE-2020-26971,
CVE-2020-26973, CVE-2020-26974, CVE-2020-26978, CVE-2020-35113)
It was discovered that the proxy.onRequest API did not catch
view-source URLs. If a user were tricked in to installing an
extension with the proxy permission and opening View Source, an
attacker could potentially exploit this to obtain sensitive
information. (CVE-2020-35111)
A stack ov
Chrome
Stable Channel Update for Desktop: CVE-2020-16044
vendor_chrome·2021-01-19·CVSS 8.8
CVE-2020-16044 [HIGH] Stable Channel Update for Desktop: CVE-2020-16044
Stable Channel Update for Desktop
CVE-2020-16044: Use after free in WebRTC. Reported by Ned Williamson of Project Zero on 2021-01-05 [$3000][ 1108126 ] Medium CVE-2021-21126: Insufficient policy enforcement in extensions
Reported by David Erceg on 2020-07-22 [$3000][ 1115590 ] Medium CVE-2021-21127: Insufficient policy enforcement in extensions
Severity: high
Microsoft
Chromium CVE-2020-16044: Use after free in WebRTC
vendor_msrc·2021-01-12·CVSS 8.8
CVE-2020-16044 [HIGH] Chromium CVE-2020-16044: Use after free in WebRTC
Chromium CVE-2020-16044: Use after free in WebRTC
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable.
How can I see the version of the browser?
In your Microsoft Edge browser, click on the 3 dots (...) on the very right-hand side of the window
Click on Help and Feedback
Click on About Microsoft Edge
FAQ: Wha
Ubuntu
Firefox vulnerability
vendor_ubuntu·2021-01-08
CVE-2020-16044 Firefox vulnerability
Title: Firefox vulnerability
Summary: Firefox could be made to crash or run programs as your login if it
opened a malicious website.
A use-after-free was discovered in Firefox when handling SCTP packets.
An attacker could potentially exploit this to cause a denial of service,
or execute arbitrary code.
Instructions: After a standard system update you need to restart Firefox to make
all the necessary changes.
Red Hat
Mozilla: Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk
vendor_redhat·2021-01-06·CVSS 8.8
CVE-2020-16044 [HIGH] CWE-416 Mozilla: Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk
Mozilla: Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk
Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.
Statement: Regarding Thunderbird: in general this flaw cannot be exploited through email in Thunderbird because scripting is disabled when reading mail, but it is potentially a risk in browser or browser-like contexts.
Package: firefox (Red Hat Enterprise Linux 6) - Out of support scope
Package: thunderbird (Red Hat Enterprise Linux 6) - Out of support scope
Debian
CVE-2020-16044: firefox - Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote...
vendor_debian·2020·CVSS 8.8
CVE-2020-16044 [HIGH] CVE-2020-16044: firefox - Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote...
Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet.
Scope: local
sid: resolved (fixed in 84.0.2-1)
Mozilla
Mozilla Foundation Security Advisory 2021-01: CVE-2020-16044
vendor_mozilla·CVSS 8.8
CVE-2020-16044 [HIGH] Mozilla Foundation Security Advisory 2021-01: CVE-2020-16044
Mozilla Foundation Security Advisory 2021-01
CVE: CVE-2020-16044
Product: Firefox, Firefox ESR, Firefox for Android
Impact: critical
Fixed in: Firefox 84.0.2
Firefox ESR 78.6.1
Firefox for Android 84.1.3
Mozilla
Mozilla Foundation Security Advisory 2021-02: CVE-2020-16044
vendor_mozilla·CVSS 8.8
CVE-2020-16044 [HIGH] Mozilla Foundation Security Advisory 2021-02: CVE-2020-16044
Mozilla Foundation Security Advisory 2021-02
CVE: CVE-2020-16044
Product: Thunderbird
Impact: critical
Fixed in: Thunderbird 78.6.1
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2021-02-09
Published