{"id":"CVE-2016-5274","details":"Use-after-free vulnerability in the nsFrameManager::CaptureFrameState function in Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and Thunderbird \u003c 45.4 allows remote attackers to execute arbitrary code by leveraging improper interaction between restyling and the Web Animations model implementation.","modified":"2026-03-12T22:21:06.160404Z","published":"2016-09-22T22:59:07.817Z","related":["MGASA-2016-0329","MGASA-2017-0059","SUSE-SU-2016:2431-1","SUSE-SU-2016:2434-1","SUSE-SU-2016:2513-1","openSUSE-SU-2024:10071-1","openSUSE-SU-2024:14572-1"],"references":[{"type":"WEB","url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/93049"},{"type":"WEB","url":"http://www.securitytracker.com/id/1036852"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2016-1912.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3674"},{"type":"ADVISORY","url":"http://www.mozilla.org/security/announce/2016/mfsa2016-85.html"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2016-88/"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201701-15"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2016-86/"},{"type":"REPORT","url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1282076"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"48.0.2"}]},{"events":[{"introduced":"0"},{"last_affected":"45.1.0"}]},{"events":[{"introduced":"0"},{"last_affected":"45.1.1"}]},{"events":[{"introduced":"0"},{"last_affected":"45.2.0"}]},{"events":[{"introduced":"0"},{"last_affected":"45.3.0"}]}],"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-5274.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}