Integer overflow vulnerability in WebSocketChannel in Mozilla Firefox ESRDeprecated |
ID: oval:org.secpod.oval:def:37281 | Date: (C)2016-09-21 (M)2023-12-20 |
Class: VULNERABILITY | Family: windows |
The host is installed with Mozilla Firefox ESR before 45.4 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to properly handle an error in WebSockets during data buffering on incoming packets. Successful exploitation allows remote attackers to execute arbitrary code.
Platform: |
Microsoft Windows Server 2008 |
Microsoft Windows Vista |
Microsoft Windows 7 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows 10 |
Product: |
Mozilla Firefox ESR |