DIESER SERVICE KANN ÜBERSETZUNGEN VON GOOGLE ENTHALTEN. GOOGLE ÜBERNIMMT KEINERLEI VERANTWORTUNG FÜR DIE ÜBERSETZUNGEN. DARUNTER FÄLLT JEGLICHE VERANTWORTUNG IN BEZUG AUF RICHTIGKEIT UND ZUVERLÄSSIGKEIT SOWIE JEGLICHE STILLSCHWEIGENDEN GEWÄHRLEISTUNGEN DER MARKTGÄNGIGKEIT, NICHT-VERLETZUNG VON RECHTEN DRITTER ODER DER EIGNUNG FÜR EINEN BESTIMMTEN ZWECK. Die Website von Kaspersky Lab wurde für Ihre Bequemlichkeit mithilfe einer Übersetzungssoftware von Google Translate übersetzt. Es wurden angemessene Bemühungen für die Bereitstellung einer akkuraten Übersetzung unternommen. Bitte beachten Sie, dass automatisierte Übersetzungen nicht perfekt sind und menschliche Übersetzer in keinem Fall ersetzen sollen. Übersetzungen werden den Nutzern der Kaspersky-Lab-Website als Service und "wie sie sind" zur Verfügung gestellt. Die Richtigkeit, Zuverlässigkeit oder Korrektheit jeglicher Übersetzungen aus dem Englischen in eine andere Sprache wird weder ausdrücklich noch stillschweigend garantiert. Einige Inhalte (z. B. Bilder, Videos, Flash, usw.) können aufgrund der Einschränkungen der Übersetzungssoftware möglicherweise nicht inhaltsgetreu übersetzt werden.
Kaspersky ID:
KLA11004
Erkennungsdatum:
04/19/2017
Aktualisiert:
03/29/2019

Beschreibung

Multiple serious vulnerabilities have been found in Mozilla Firefox and Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause a denial of service, spoof user interface, obtain sensitive information, execute arbitrary code, perform cross-site scripting attacks, bypass security restrictions, gain privileges and read/write local files.

Below is a complete list of vulnerabilities:

  1. A use-after-free vulnerability in SMIL can be exploited remotely to cause denial of service;
  2. A use-after-free vulnerability which occurs during transaction processing in the editor can be exploited remotely to cause a denial of service;
  3. An out-of-bounds write vulnerability in the Graphite 2 library can be exploited remotely to cause a denial of service;
  4. An out-of-bounds write vulnerability in BASE64 encoding in NSS can be exploited remotely to cause a denial of service;
  5. A buffer overflow vulnerability in WebGL can be exploited remotely to cause denial of service;
  6. A use-after-free vulnerability in focus handling can be exploited remotely to cause denial of service;
  7. A use-after-free vulnerability in text input selection can be exploited remotely to cause denial of service;
  8. A use-after-free vulnerability in frame selection can be exploited remotely to cause denial of service;
  9. A use-after-free vulnerability in nsAutoPtr and nsTArrayLength() during XSLT processing can be exploited remotely to cause denial of service;
  10. A use-after-free vulnerability in txExecutionState destructor related to XSLT processing can be exploited remotely to cause denial of service;
  11. A use-after-free vulnerability related to holding a selection during scroll events can be exploited remotely to cause denial of service;
  12. A use-after-free vulnerability related to style changes when manipulating DOM elements can be exploited remotely to cause denial of service;
  13. A memory corruption vulnerability related to DOM manipulations of the accessibility tree can be exploited remotely to cause denial of service;
  14. An out-of-bounds write vulnerability in BinHex decoding can be exploited remotely to cause denial of service;
  15. A buffer overflow vulnerability in application/http-index-format content can be exploited remotely to allow out-of-bounds reading of data from memory;
  16. An out-of-bounds read vulnerability related to HTTP/2 DATA frames are sent with incorrect data content can be exploited remotely to cause a denial of service;
  17. An out-of-bounds read vulnerability related to glyph processing can be exploited remotely to cause denial of service;
  18. An out-of-bounds read vulnerability in ConvolvePixel can be exploited remotely to cause denial of service;
  19. An out-of-bounds write vulnerability in ClearKeyDecryptor can be exploited remotely to cause denial of service;
  20. Multiple out-of-bounds read vulnerabilities in the Libevent library can be exploited remotely to cause denial of service;
  21. A potential buffer overflow vulnerability in flex-generated code can be exploited remotely to cause denial of service;
  22. A reading of uninitialized memory vulnerability in application/http-index-format content can be exploited remotely to read uninitialized memory;
  23. An improper DRBG number generation in NSS (Network Security Services) library can be exploited remotely possibly to cause a denial of service or execute arbitrary code;
  24. Multiple memory corruption vulnerabilities, which occur because of memory safety bugs, can be exploited remotely to execute arbitrary code
  25. Origin confusion vulnerability related to reloading isolated data:text/html URL can be exploited remotely to execute a cross-site scripting (XSS) attack;
  26. An improper sandbox escape handling can be exploited remotely through file picker via relative paths to bypass security restrictions and gain privileges (get read only access to the local file system);
  27. An incorrect handling of the internal feed reader APIs which crossed the sandbox barrier can be exploited remotely to gain privileges and possibly to execute arbitrary code inside the sandboxed process;
  28. An improper work of file system request constructor in the sandbox can be exploited remotely via a specially designed IPC message to bypass security restrictions, read and write files in the local system;
  29. A potential vulnerability related to layout and manipulation of bidirectional unicode text in concert with CSS animations can be exploited remotely to cause denial of service;
  30. An addressbar spoofing vulnerability in onblur event can be exploited remotely to make the loaded site appear to be different from the one actually loaded within the addressbar;
  31. A potential memory corruption occurring while drawing Skia content outside the bounds of a clipping region can be exploited remotely possibly to cause a denial of service;
  32. An incorrect handling of escape characters sent as URL parameters for a feed’s title element while injecting static HTML into the RSS reader preview page can be exploited remotely to spoof user interface;
  33. An improper handling of drag and drop of a javascript: URL into the adressbar can be exploited remotely to perform an XSS (cross-site scripting) attack on themselves;
  34. An issue with improper ownership model of privateBrowsing information (which is exposed through deleveloper tools) can be exploited remotely while debugging to cause a denial of service.

Technical details

Vulnerability (23) can affect displayed text so that the loaded site will look different from the one which is to be loaded within the adressbar.

Vulnerability (29) occurs because unitialized values are used to create an array.

Vulnerability (31) occurs because in the NSS library the internal state V does not correctly carry bits over.

Vulnerabilities 1-24 are related for Mozilla Firefox ESR before 45.9

Vulnerabilities 1-31 are related for Mozilla Firefox ESR before 52.1

All vulnerabilities are related for Mozilla Firefox.

NB: This vulnerability have no public CVSS rating so rating can be changed by the time.

NB: At this moment Mozilla just reserved CVE numbers for this vulnerabilities. Information can be changed soon.

Ursprüngliche Informationshinweise

CVE Liste

  • CVE-2016-10197
    critical
  • CVE-2017-5461
    critical
  • CVE-2016-6354
    critical
  • CVE-2017-5433
    critical
  • CVE-2017-5435
    critical
  • CVE-2017-5436
    critical
  • CVE-2017-5459
    critical
  • CVE-2017-5466
    critical
  • CVE-2017-5434
    critical
  • CVE-2017-5432
    critical
  • CVE-2017-5460
    critical
  • CVE-2017-5438
    critical
  • CVE-2017-5439
    critical
  • CVE-2017-5440
    critical
  • CVE-2017-5441
    critical
  • CVE-2017-5442
    critical
  • CVE-2017-5464
    critical
  • CVE-2017-5443
    critical
  • CVE-2017-5444
    critical
  • CVE-2017-5446
    critical
  • CVE-2017-5447
    critical
  • CVE-2017-5465
    critical
  • CVE-2017-5454
    critical
  • CVE-2017-5469
    critical
  • CVE-2017-5445
    critical
  • CVE-2017-5449
    critical
  • CVE-2017-5451
    critical
  • CVE-2017-5462
    critical
  • CVE-2017-5467
    critical
  • CVE-2017-5430
    critical
  • CVE-2017-5429
    critical
  • CVE-2016-10195
    critical
  • CVE-2016-10196
    critical
  • CVE-2017-5448
    critical
  • CVE-2017-5455
    critical
  • CVE-2017-5456
    critical
  • CVE-2017-5450
    critical
  • CVE-2017-5463
    critical
  • CVE-2017-5452
    critical
  • CVE-2017-5453
    critical
  • CVE-2017-5458
    critical
  • CVE-2017-5468
    critical

Mehr erfahren

Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com

Sie haben einen Fehler in der Beschreibung der Schwachstelle gefunden? Mitteilen!
Kaspersky Next
Let´s go Next: Cybersicherheit neu gedacht
Erfahren Sie mehr
Neu: Kaspersky!
Dein digitales Leben verdient umfassenden Schutz!
Erfahren Sie mehr
Confirm changes?
Your message has been sent successfully.