Уязвимость CVE-2016-1966

Пакет	Статус	Версия исправления	Тип
iceweasel	removed		package
firefox-esr	fixed	45.0esr-1	package
firefox	fixed	45.0-1	package
icedove	fixed	38.7.0-1	package

CVE-2016-1966

CVSS3: 8.8

ubuntu

больше 9 лет назад

The nsNPObjWrapper::GetNewOrUsed function in dom/plugins/base/nsJSNPRuntime.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference and memory corruption) via a crafted NPAPI plugin.

CVE-2016-1966

redhat

больше 9 лет назад

The nsNPObjWrapper::GetNewOrUsed function in dom/plugins/base/nsJSNPRuntime.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference and memory corruption) via a crafted NPAPI plugin.

CVE-2016-1966

CVSS3: 8.8

nvd

больше 9 лет назад

The nsNPObjWrapper::GetNewOrUsed function in dom/plugins/base/nsJSNPRuntime.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference and memory corruption) via a crafted NPAPI plugin.

GHSA-m8wx-7rr9-rfp5

CVSS3: 8.8

github

больше 3 лет назад

The nsNPObjWrapper::GetNewOrUsed function in dom/plugins/base/nsJSNPRuntime.cpp in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference and memory corruption) via a crafted NPAPI plugin.

BDU:2016-00752

fstec

больше 9 лет назад

Уязвимость почтового клиента Thunderbird, браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

exploitDog

CVE-2016-1966

Описание

Пакеты

Примечания

Связанные уязвимости