Integer overflow in the WebSocketChannel class in the WebSockets subsystem in Mozilla Firefox before 48.0 and Firefox ESR < 45.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted packets that trigger incorrect buffer-resize operations during buffering.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mozilla
Published: 2016-08-05T01:00:00
Updated: 2018-06-11T20:57:01
Reserved: 2016-06-03T00:00:00
Link: CVE-2016-5261
JSON object: View
NVD Information
Status : Modified
Published: 2016-08-05T01:59:17.237
Modified: 2018-06-12T01:29:00.673
Link: CVE-2016-5261
JSON object: View
Redhat Information
No data.
CWE