JSON View XML View

Key Value
MTID M114811
Title Mozilla Firefox WebSockets Integer Overflow Remote Code Execution
Description A vulnerability in some versions of Mozilla Firefox could lead to remote code execution.
Observation A vulnerability in some versions of Mozilla Firefox could lead to remote code execution.

The flaw occurs in WebSockets during data buffering on incoming packets when an allocated buffer is resized incorrectly. Successful exploitation by a remote attacker could result in the execution of arbitrary code.
Recommendation The vendor has released an update to address the issue:

https://www.mozilla.org/en-US/security/advisories/mfsa2016-75/



Vendor Mozilla
Attack Vector Malicious remote network traffic
Importance 9
Impact 6.44297671875
Threat Score 7.48
Labels
References
CVECVE-2016-5261
DISA IAVA2016-A-0252
MTIDM114811
CPEs
cpe:/a:mozilla:firefox:47.0.1
Created At 2016-08-02 00:00:00 UTC
Updated At 2016-11-19 10:32:13 UTC

Back