CVE-2016-5276
CVE Information
CVE ID
CVE-2016-5276
Severity
CRITICAL
CVSS 9.8
Publish Date
2016-09-22
Description
Use-after-free vulnerability in the mozilla::a11y::DocAccessible::ProcessInvalidationList function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird < 45.4 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via an aria-owns attribute.
Collection Date
2026-01-13
Impact Summary
Affected Hosts
1
Related Incidents
0
Related Alerts
0
Affected Hosts (1)
| Hostname | OS Type | Severity | Total CVEs |
|---|---|---|---|
| inbridge-ubt-24 | LINUX | CRITICAL | 2364 |