SB2016110412 - Fedora 24 update for firefox
Published: November 4, 2016 Updated: April 24, 2025
Security Bulletin ID
SB2016110412
CSH Severity
High
Patch available
YES
Number of vulnerabilities
2
Exploitation vector
Remote access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 vulnerabilities.
1) Arbitrary code execution (CVE-ID: CVE-2016-5287)
CWE-ID: CWE-416 - Use After Free
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
The vulnerability allows a remote unauthenticated user to execute arbitrary code on the target system.
The weakness is due to insufficient input validation. By tricking the victim to download a specially crafted content, attackers can trigger a use-after-free memory error in nsTArray_base::SwapArrayElements() and execute arbitrary code.
Successful exploitation of the vulnerability results in arbitrary code execution on the vulnerable system.
2) Information disclosure (CVE-ID: CVE-2016-5288)
CWE-ID: CWE-416 - Use After Free
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows a remote unauthenticated user to access potentially sensitive information on the target system.
The weakness is due to insufficient input validation. By tricking the victim to download a specially crafted content, attackers can view potentially sensitive URL and page content from the HTTP cache.
Successful exploitation of the vulnerability results in disclosure of important data on the vulnerable system.
Remediation
Install update from vendor's website.