Дата обнаружения
|
13/12/2016 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code, possibly cause denial of service, gain priveleges or make code injections. Below is a complete list of vulnerabilities:
Technical details Vulnerability (8) does not affect users, who have enabled e10s. NB: This vulnerability have no public CVSS rating so rating can be changed by the time. NB: At this moment Mozilla just reserved CVE numbers for these vulnerabilities. Information can be changed soon. |
Пораженные продукты
|
Mozilla Firefox ESR 45.5.1 |
Решение
|
Update to the latest version |
Первичный источник обнаружения
|
Mozilla Foundation Security Advisory 2016-95 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
DoS
[?]
CI
[?]
SB
[?]
PE
[?]
XSS/CSS
[?]
SUI
[?]
|
Связанные продукты
|
Mozilla Firefox Mozilla Firefox ESR |
CVE-IDS
|
CVE-2016-98997.5Critical
CVE-2016-98954.3Warning CVE-2016-98975.0Critical CVE-2016-98987.5Critical CVE-2016-99005.0Critical CVE-2016-99045.0Critical CVE-2016-99056.8High CVE-2016-98937.5Critical CVE-2016-99017.5Critical CVE-2016-99025.0Critical |
Эксплуатация
|
Public exploits exist for this vulnerability. |
Узнай статистику распространения уязвимостей в твоем регионе |