Security Advisory

CVE-2016-5261

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-08-05 01:00:00

Last updated 2024-08-06 00:53:48

Assigner mozilla

State PUBLISHED

Description

Integer overflow in the WebSocketChannel class in the WebSockets subsystem in Mozilla Firefox before 48.0 and Firefox ESR < 45.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted packets that trigger incorrect buffer-resize operations during buffering.

← Browse all CVEs View on cve.org ↗