CVE-2016-5281
CRITICALFirefox < 48.0.2 - Remote Code Execution via DOMSVGLength Use-After-Free
Title source: llmDescription
Use-after-free vulnerability in the DOMSVGLength class in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 allows remote attackers to execute arbitrary code by leveraging improper interaction between JavaScript code and an SVG document.
References (11)
Core 11
Core References
Issue Tracking, Third Party Advisory, VDB Entry x_refsource_confirm
https://bugzilla.mozilla.org/show_bug.cgi?id=1284690
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html
Release Notes, Vendor Advisory x_refsource_confirm
http://www.mozilla.org/security/announce/2016/mfsa2016-85.html
Vendor Advisory x_refsource_confirm
https://www.mozilla.org/security/advisories/mfsa2016-86/
Not Applicable x_refsource_misc
http://www.geeknik.net/7gr1u98b9
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2016/dsa-3674
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201701-15
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-1912.html
Vendor Advisory x_refsource_confirm
https://www.mozilla.org/security/advisories/mfsa2016-88/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/93049
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1036852
Scores
CVSS v3
9.8
EPSS
0.0255
EPSS Percentile
85.7%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-416
Status
published
Products (7)
mozilla/firefox
45.0
mozilla/firefox
45.0.1
mozilla/firefox
45.0.2
mozilla/firefox
45.1.1
mozilla/firefox
45.2.0
mozilla/firefox
45.3.0
mozilla/firefox
< 48.0.2
Published
Sep 22, 2016
Tracked Since
Feb 18, 2026