CVE-2016-5271 in Firefoxinformation

Résumé

par MITRE

The PropertyProvider::GetSpacingInternal function in Mozilla Firefox before 49.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via text runs in conjunction with a "display: contents" Cascading Style Sheets (CSS) property.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

03/06/2016

Divulgation

22/09/2016

Modérer

accepté

Entrée

VDB-91871

CPE

prêt

CWE

CWE-125 (confirmé)

CVSS

6.5 (NVD)

EPSS

0.01416

KEV

non

Activités

très faible

Secteur

Industry, Hostingprovider, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-5271
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-5271
CVE Details	https://www.cvedetails.com/cve/CVE-2016-5271/

◂ Précédent Aperçu Suivant ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!