CVE-2016-5281 in Firefoxالمعلومات

الملخص

بحسب MITRE

Use-after-free vulnerability in the DOMSVGLength class in Mozilla Firefox before 49.0 and Firefox ESR 45.x before 45.4 allows remote attackers to execute arbitrary code by leveraging improper interaction between JavaScript code and an SVG document.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

03/06/2016

إفشاء

22/09/2016

الاعتدال

تمت الموافقة

إدخال

VDB-91881

CPE

جاهز

CWE

CWE-416 (مؤكد)

CVSS

9.8 (NVD)

EPSS

0.04942

KEV

لا

النشاطات

منخفض جدًا

القطاع

Chemical, Homeoffice, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-5281
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-5281
CVE Details	https://www.cvedetails.com/cve/CVE-2016-5281/

التالي ▸نظرة عامة ◂ السابق

Interested in the pricing of exploits?

See the underground prices here!