Arbitrary Code Execution Vulnerability in Mozilla Firefox 49.0

Arbitrary Code Execution Vulnerability in Mozilla Firefox 49.0

CVE-2016-5275 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Buffer overflow in the mozilla::gfx::FilterSupport::ComputeSourceNeededRegions function in Mozilla Firefox before 49.0 allows remote attackers to execute arbitrary code by leveraging improper interaction between empty filters and CANVAS element rendering.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.