JSON View XML View

Key Value
MTID M115355
Title Mozilla Firefox DOMSVGLength Remote Code Execution
Description A vulnerability in some versions of Mozilla Firefox could lead to remote code execution.
Observation A vulnerability in some versions of Mozilla Firefox could lead to remote code execution.

The flaw occurs in the DOMSVGLength class. Successful exploitation by a remote attacker could result in the execution of arbitrary code.
Recommendation The vendor has released an update to address the issue:

https://www.mozilla.org/en-US/security/advisories/mfsa2016-85/






Vendor Mozilla
Attack Vector Malicious remote network traffic
Importance 9
Impact 6.44297671875
Threat Score 7.48
Labels
References
CVECVE-2016-5281
DISA IAVA2016-A-0252
MTIDM115355
CPEs
cpe:/a:mozilla:firefox_esr:45.3.0
cpe:/a:mozilla:firefox:48.0.2
Created At 2016-09-20 00:00:00 UTC
Updated At 2016-11-19 11:00:59 UTC

Back