Integer overflow vulnerability in WebSocketChannel in Mozilla Firefox ESR (MAC OS X)Deprecated |
ID: oval:org.secpod.oval:def:37303 | Date: (C)2016-09-22 (M)2023-12-20 |
Class: VULNERABILITY | Family: macos |
The host is installed with Mozilla Firefox ESR before 45.4 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to properly handle an error in WebSockets during data buffering on incoming packets. Successful exploitation allows remote attackers to execute arbitrary code.
Platform: |
Apple Mac OS 12 |
Apple Mac OS 11 |
Apple Mac OS X 10.15 |
Apple Mac OS X 10.14 |
Apple Mac OS X 10.13 |
Apple Mac OS X 10.9 |
Apple Mac OS X 10.10 |
Apple Mac OS X 10.11 |
Apple Mac OS X 10.12 |
Apple Mac OS X Server 10.12 |
Apple Mac OS X Server 10.9 |
Apple Mac OS X Server 10.10 |
Apple Mac OS X Server 10.11 |
Product: |
Mozilla Firefox ESR |