CVE-2016-2837

MEDIUM

Firefox < 48.0 - Remote Code Execution via ClearKey CDM Heap Overflow

Title source: llm
STIX 2.1

Description

Heap-based buffer overflow in the ClearKey Content Decryption Module (CDM) in the Encrypted Media Extensions (EME) API in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 might allow remote attackers to execute arbitrary code by providing a malformed video and leveraging a Gecko Media Plugin (GMP) sandbox bypass.

References (12)

Core 12
Core References
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3640
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/92258
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-1551.html
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201701-15
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1036508
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-3044-1
Issue Tracking, Permissions Required x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=1274637
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-16-673

Scores

CVSS v3 6.3
EPSS 0.0040
EPSS Percentile 60.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Details

CWE
CWE-119
Status published
Products (8)
mozilla/firefox 45.1.0
mozilla/firefox 45.1.1
mozilla/firefox 45.2.0
mozilla/firefox 45.3.0
mozilla/firefox < 47.0.1
oracle/linux 5.0
oracle/linux 6
oracle/linux 7
Published Aug 05, 2016
Tracked Since Feb 18, 2026