Lucene search
PRIOn knowledge basePRION:CVE-2016-1947HistoryJan 31, 2016 - 6:59 p.m.
Code injection
2016-01-3118:59:00
PRIOn knowledge base
www.prio-n.com
1
Mozilla Firefox 43.x mishandles attempts to connect to the Application Reputation service, which makes it easier for remote attackers to trigger an unintended download by leveraging the absence of reputation data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 12.04 | |
| ubuntu_linux | eq | 15.10 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 15.04 | |
| firefox | eq | 43.0.2 | |
| firefox | eq | 43.0.1 | |
| firefox | eq | 43.0.4 | |
| firefox | eq | 43.0 | |
| firefox | eq | 43.0.3 | |
| leap | eq | 42.1 |
References
lists.opensuse.org/opensuse-security-announce/2016-02/msg00001.html
lists.opensuse.org/opensuse-security-announce/2016-02/msg00002.html
www.mozilla.org/security/announce/2016/mfsa2016-11.html
www.securityfocus.com/bid/81949
www.securitytracker.com/id/1034825
www.ubuntu.com/usn/USN-2880-1
www.ubuntu.com/usn/USN-2880-2
bugzilla.mozilla.org/show_bug.cgi?id=1237103
security.gentoo.org/glsa/201605-06
Related
cve
cve
CVE-2016-1947
2016-01-31 18:59:13
mozilla
mozilla
Application Reputation service disabled in Firefox 43 — Mozilla
2016-01-26 00:00:00
cvelist
cvelist
CVE-2016-1947
2016-01-31 18:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2016-11) - Linux
2021-11-08 00:00:00
ubuntucve
ubuntucve
CVE-2016-1947
2016-01-26 00:00:00
nvd
nvd
CVE-2016-1947
2016-01-31 18:59:13
nessus
nessus
Ubuntu 14.04 LTS : Firefox vulnerabilities (USN-2880-1)
2016-01-28 00:00:00
Ubuntu 14.04 LTS : Firefox regression (USN-2880-2)
2016-02-09 00:00:00
Mozilla Firefox < 44.0 Multiple Vulnerabilities
2016-02-19 00:00:00
ubuntu
ubuntu
Firefox regression
2016-02-08 00:00:00
Firefox vulnerabilities
2016-01-27 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2016-01-26 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2016-02-02 02:11:37
kaspersky
kaspersky
KLA10748 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2016-01-26 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2016-05-31 00:00:00