CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Tenable Nessus•added 2016/08/26 12:0 a.m.•20 views

Mozilla Firefox ESR < 45.3 Multiple Vulnerabilities

Binary data 9485.prm...

9.8CVSS8.2AI score0.01541EPSS

Exploits2References20

BDU FSTEC•added 2016/08/16 12:0 a.m.•1 views

Vulnerability of Firefox and Firefox ESR browsers, allowing attackers to execute arbitrary code

The vulnerability of WebRTC sockets in Firefox and Firefox ESR browsers relates to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by using incorrect free operations on DTLS objects during the termination of a WebRTC session...

6.8CVSS8.2AI score0.01101EPSS

Exploits1References3Affected Software2

Prion•added 2016/08/05 1:59 a.m.•17 views

Design/Logic Flaw

Use-after-free vulnerability in the WebRTC socket thread in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allows remote attackers to execute arbitrary code by leveraging incorrect free operations on DTLS objects during the shutdown of a WebRTC session...

6.8CVSS8AI score0.01101EPSS

Exploits1References11Affected Software3

CVE•added 2016/08/05 1:0 a.m.•129 views

CVE-2016-5258

CVE-2016-5258 is a use-after-free vulnerability in Firefox’s WebRTC DTLS handling, specifically a memory misreference in the WebRTC socket thread during shutdown of a WebRTC session. Public sources consistently describe it as allowing remote code execution due to incorrect free operations on DTLS...

8.8CVSS9.3AI score0.01101EPSS

Exploits1References11Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by