CVE-2016-1968

2016-03-13 19:59:17 2016-12-03 04:23:51

Integer underflow in Brotli, as used in Mozilla Firefox before 45.0, allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via crafted data with brotli compression.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Mozilla Firefox 44.0.2 (not an official CPE)

Mozilla - Firefox

Advisory	Patch	Confirmed	Link
			http://www.mozilla.org/security/announce/2016/mfsa2016-3...
			openSUSE-SU-2016:0733
			openSUSE-SU-2016:0731
			1035215
			USN-2917-1
			USN-2917-2
			USN-2917-3
			https://bugzilla.mozilla.org/show_bug.cgi?id=1246742
			GLSA-201605-06

CVE-2016-1968

2016-03-13 19:59:17 2016-12-03 04:23:51

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)