Published: 31/01/2016 Updated: 30/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

The Buffer11::NativeBuffer11::map function in ANGLE, as used in Mozilla Firefox prior to 44.0, might allow remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mozilla firefox 43.0.4
opensuse leap 42.1
opensuse opensuse 13.2
opensuse opensuse 13.1

USN-2880-1 introduced a regression in Firefox ...

Firefox could be made to crash or run programs as your login if it opened a malicious website ...

Mozilla Foundation Security Advisory 2016-10 Unsafe memory manipulation found through code inspection Announced January 26, 2016 Reporter Ronald Crane Impact Critical Products Firefox Fixed in ...

The Buffer11::NativeBuffer11::map function in ANGLE, as used in Mozilla Firefox before 440, might allow remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors ...

CWE-119 https://bugzilla.mozilla.org/show_bug.cgi?id=1186621 http://www.mozilla.org/security/announce/2016/mfsa2016-10.html http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00001.html http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00002.html http://www.securityfocus.com/bid/81950 https://security.gentoo.org/glsa/201605-06 http://www.ubuntu.com/usn/USN-2880-1 http://www.ubuntu.com/usn/USN-2880-2 http://www.securitytracker.com/id/1034825 https://usn.ubuntu.com/2880-2/https://nvd.nist.gov

CVE-2016-1944

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect