Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2016-9079

Source

Mozilla Foundation Security Advisory 2016-92

Firefox SVG Animation Remote Code Execution

Announced

November 30, 2016

Impact

critical

Products

Firefox, Firefox ESR, Thunderbird

Fixed in

Firefox 50.0.2
Firefox ESR 45.5.1
Thunderbird 45.5.1

#CVE-2016-9079: Use-after-free in SVG Animation

Reporter: Obscured Team
Impact: critical

Description

A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this vulnerability has been discovered in the wild targeting Firefox and Tor Browser users on Windows.

References

Iterator invalidation in nsSMILTimeContainer::NotifyTimeChange()

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Firefox SVG Animation Remote Code Execution

Firefox SVG Animation Remote Code Execution

#CVE-2016-9079: Use-after-free in SVG Animation

Description

References

Vulmon Search

About

Products

Connect