Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-2808

Опубликовано: 26 апр. 2016
Источник: redhat
CVSS2: 5.1
EPSS Низкий

Описание

The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code or cause a denial of service (generation-count overflow, out-of-bounds HashMap write access, and application crash) via a crafted web site.

Ссылки на источники

Дополнительная информация

Статус:

Important
https://bugzilla.redhat.com/show_bug.cgi?id=1330286Mozilla: Write to invalid HashMap entry through JavaScript.watch() (MFSA 2016-47)

EPSS

Процентиль: 71%
0.00681
Низкий

5.1 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-2808

CVSS3: 7.5
ubuntu
больше 9 лет назад

The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code or cause a denial of service (generation-count overflow, out-of-bounds HashMap write access, and application crash) via a crafted web site.

nvd логотип

CVE-2016-2808

CVSS3: 7.5
nvd
больше 9 лет назад

The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code or cause a denial of service (generation-count overflow, out-of-bounds HashMap write access, and application crash) via a crafted web site.

debian логотип

CVE-2016-2808

CVSS3: 7.5
debian
больше 9 лет назад

The watch implementation in the JavaScript engine in Mozilla Firefox b ...

github логотип

GHSA-v2jp-3gq5-h2jm

CVSS3: 7.5
github
больше 3 лет назад

The watch implementation in the JavaScript engine in Mozilla Firefox before 46.0, Firefox ESR 38.x before 38.8, and Firefox ESR 45.x before 45.1 allows remote attackers to execute arbitrary code or cause a denial of service (generation-count overflow, out-of-bounds HashMap write access, and application crash) via a crafted web site.

fstec логотип

BDU:2016-01156

fstec
больше 9 лет назад

Уязвимость браузеров Firefox и Firefox ESR, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

EPSS

Процентиль: 71%
0.00681
Низкий

5.1 Medium

CVSS2