HTTP: Mozilla Firefox CVE-2017-5375 Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Mozilla Firefox. A successful attack can lead to arbitrary code execution.

Extended Description

Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string parser in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) by leveraging mishandling of end tags, as demonstrated by incorrect SVG processing, aka ZDI-CAN-3545.

Affected Products

Mozilla firefox

References

BugTraq: 95757

CVE: CVE-2016-1960

Short Name
HTTP:STC:CVE-2017-5375-RCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2016-1960 CVE-2017-5375 Code Execution Firefox Mozilla Remote bid:95757
Release Date
02/21/2019
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3752
False Positive
Unknown
Vendors

Opensuse

Oracle

Mozilla

Suse

CVSS Score

7.5

6.8

Found a potential security threat?