CVE-2016-1930

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 44.0 and Firefox ESR 38.x before 38.6 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Severity
CRITICAL
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Atk. Vector
NETWORK
Atk. Complexity
LOW
Priv. Required
NONE
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
mozillafirefox
𝑥
≤ 43.0.4
oraclelinux
5.0
mozillafirefox
38.0
mozillafirefox
38.1.0
mozillafirefox
38.2.0
mozillafirefox
38.3.0
mozillafirefox
38.4.0
mozillafirefox
38.5.0
opensuseleap
42.1
opensuseopensuse
13.1
opensuseopensuse
13.2
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
firefox
wily
Fixed 44.0+build3-0ubuntu0.15.10.1
released
vivid
Fixed 44.0+build3-0ubuntu0.15.04.1
released
trusty
Fixed 44.0+build3-0ubuntu0.14.04.1
released
precise
Fixed 44.0+build3-0ubuntu0.12.04.1
released
mozjs38
zesty
Fixed 38.8.0~repack1-0ubuntu0.1
released
yakkety
dne
xenial
dne
trusty
dne
precise
dne
thunderbird
wily
Fixed 1:38.6.0+build1-0ubuntu0.15.10.1
released
vivid
ignored
trusty
Fixed 1:38.6.0+build1-0ubuntu0.14.04.1
released
precise
Fixed 1:38.6.0+build1-0ubuntu0.12.04.1
released
References