Lucene search
PRIOn knowledge basePRION:CVE-2016-5278HistorySep 22, 2016 - 10:59 p.m.
Heap overflow
2016-09-2222:59:00
PRIOn knowledge base
www.prio-n.com
3
Heap-based buffer overflow in the nsBMPEncoder::AddImageFrame function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 allows remote attackers to execute arbitrary code via a crafted image data that is mishandled during the encoding of an image frame to an image.
| CPE | Name | Operator | Version |
|---|---|---|---|
| firefox | le | 48.0.2 | |
| firefox_esr | eq | 45.1.1 | |
| firefox_esr | eq | 45.1.0 | |
| firefox_esr | eq | 45.2.0 | |
| firefox_esr | eq | 45.3.0 |
References
rhn.redhat.com/errata/RHSA-2016-1912.html
www.debian.org/security/2016/dsa-3674
www.mozilla.org/security/announce/2016/mfsa2016-85.html
www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html
www.securityfocus.com/bid/93049
www.securitytracker.com/id/1036852
bugzilla.mozilla.org/show_bug.cgi?id=1294677
security.gentoo.org/glsa/201701-15
www.mozilla.org/security/advisories/mfsa2016-86/
www.mozilla.org/security/advisories/mfsa2016-88/
Related
redhatcve
redhatcve
CVE-2016-5278
2016-09-20 17:49:30
debiancve
debiancve
CVE-2016-5278
2016-09-22 22:59:12
cve
cve
CVE-2016-5278
2016-09-22 22:59:12
ubuntucve
ubuntucve
CVE-2016-5278
2016-09-22 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:49:53
nvd
nvd
CVE-2016-5278
2016-09-22 22:59:12
cvelist
cvelist
CVE-2016-5278
2016-09-22 22:00:00
debian
debian
[SECURITY] [DLA 658-1] icedove security update
2016-10-16 17:20:00
[SECURITY] [DLA 636-1] firefox-esr security update
2016-09-27 12:05:24
[SECURITY] [DSA 3674-1] firefox-esr security update
2016-09-22 19:55:24
ibm
ibm
nessus
nessus
Debian DLA-658-1 : icedove security update
2016-10-17 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : Thunderbird vulnerabilities (USN-3112-1)
2016-10-28 00:00:00
Mozilla Firefox ESR 45.x < 45.4 Multiple Vulnerabilities
2016-09-22 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3112-1)
2016-11-08 00:00:00
Mozilla Thunderbird Security Advisories (MFSA2016-88, MFSA2016-88) - Windows
2016-10-21 00:00:00
mozilla
mozilla
Security vulnerabilities fixed in Thunderbird 45.4 — Mozilla
2016-10-03 00:00:00
Security vulnerabilities fixed in Firefox ESR 45.4 — Mozilla
2016-09-20 00:00:00
Security vulnerabilities fixed in Firefox 49 — Mozilla
2016-09-20 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2016-10-27 00:00:00
Firefox vulnerabilities
2016-09-22 00:00:00
kaspersky
kaspersky
KLA10889 Multiple vulnerabilities in Mozilla Thunderbird
2016-10-20 00:00:00
KLA10876 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2016-09-13 00:00:00
redhat
redhat
(RHSA-2016:1912) Critical: firefox security update
2016-09-21 06:56:38
centos
centos
firefox security update
2016-09-22 13:23:33
suse
suse
Security update for MozillaFirefox (important)
2016-10-04 13:10:47
Security update for MozillaFirefox (important)
2016-10-04 13:09:46
Security update for MozillaFirefox (important)
2016-10-12 20:08:55
mageia
mageia
Updated iceape packages fix security vulnerability
2017-02-20 16:24:57
Updated firefox/rootcerts/nss packages fix security vulnerability
2016-09-28 08:59:24
oraclelinux
oraclelinux
firefox security update
2016-09-21 00:00:00
archlinux
archlinux
[ASA-201609-22] firefox: multiple issues
2016-09-22 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2016-09-13 00:00:00
gentoo
gentoo
Mozilla Firefox, Thunderbird: Multiple vulnerabilities
2017-01-03 00:00:00