Buffer overflow in Apple Iphone_os
CVE-2016-1950
Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and 3.20.x and 3.21.x before 3.21.1, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrar…
Vulnerability class: Buffer Overflow
EPSS: 0.019 (83.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.8 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.
Affected products
- Apple Iphone_os
- Apple Mac_os_x
- Apple Tvos
- Apple Watchos
- Mozilla Firefox — versions 38.0, 38.0.1, 38.0.5
- Mozilla Network_security_services — versions 3.19.2, 3.20, 3.20.1
- Oracle Glassfish_server — versions 2.1.1
- Oracle Iplanet_web_proxy_server — versions 4.0
- Oracle Iplanet_web_server — versions 7.0
- Oracle Linux — versions 5.0, 6, 7
Weakness classification (CWE)
Public proof-of-concept exploits
References
- security@mozilla.org (x_refsource_CONFIRM, Third Party Advisory)
- security@mozilla.org (x_refsource_CONFIRM)
- DSA-3688 (vendor-advisory, x_refsource_DEBIAN)
- openSUSE-SU-2016:1557 (vendor-advisory, Third Party Advisory, x_refsource_SUSE)
- APPLE-SA-2016-03-21-5 (vendor-advisory, x_refsource_APPLE, Mailing List)
- security@mozilla.org (x_refsource_CONFIRM, Vendor Advisory)
- security@mozilla.org (x_refsource_CONFIRM, Third Party Advisory)
- security@mozilla.org (x_refsource_CONFIRM, Third Party Advisory)
- 84223 (vdb-entry, x_refsource_BID)
- SUSE-SU-2016:0820 (vendor-advisory, x_refsource_SUSE)
Frequently asked questions
- What is CVE-2016-1950?
- CVE-2016-1950 is a high-severity vulnerability in Apple Iphone_os, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 8.8/10. Published 2016-03-13.
- How severe is CVE-2016-1950?
- High severity. CVSS v3 base score is 8.8 out of 10.
- Is CVE-2016-1950 known to be exploited?
- 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.