Vulnerability CVE-2016-5199

Vulnerability Name:

CVE-2016-5199 (CCN-118752)

Assigned:

2016-11-09

Published:

2016-11-09

Updated:

2018-01-05

Summary:

An off by one error resulting in an allocation of zero size in FFmpeg in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted video file.

CVSS v3 Severity:

8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

6.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)
5.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

6.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2016-5199

Source: CCN
Type: RHSA-2016-2718
Important: chromium-browser security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:2718

Source: BID
Type: UNKNOWN
94196

Source: CCN
Type: BID-94196
Google Chrome Multiple Security Vulnerabilities

Source: SECTRACK
Type: UNKNOWN
1037273

Source: CONFIRM
Type: UNKNOWN
https://chromereleases.googleblog.com/2016/11/stable-channel-update-for-desktop_9.html

Source: CONFIRM
Type: UNKNOWN
https://crbug.com/643948

Source: XF
Type: UNKNOWN
google-chrome-cve20165199-code-exec(118752)

Source: CCN
Type: Google Chrome Releases Web site
Stable Channel Update for Desktop

Source: GENTOO
Type: UNKNOWN
GLSA-201611-16

Vulnerable Configuration:

Configuration 1:

cpe:/a:google:chrome:*:*:*:*:*:*:*:* (Version <= 54.0.2840.87)

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20165199	V	CVE-2016-5199	2022-06-30
oval:org.opensuse.security:def:112065	P	chromedriver-55.0.2883.75-3.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:105614	P	chromedriver-55.0.2883.75-3.1 on GA media (Moderate)	2021-10-01
oval:org.cisecurity:def:1667	P	DSA-3731-1 -- chromium-browser -- security update	2017-01-27
oval:com.ubuntu.bionic:def:201651990000000	V	CVE-2016-5199 on Ubuntu 18.04 LTS (bionic) - medium.	2017-01-19
oval:com.ubuntu.artful:def:20165199000	V	CVE-2016-5199 on Ubuntu 17.10 (artful) - medium.	2017-01-19
oval:com.ubuntu.xenial:def:20165199000	V	CVE-2016-5199 on Ubuntu 16.04 LTS (xenial) - medium.	2017-01-19
oval:com.ubuntu.xenial:def:201651990000000	V	CVE-2016-5199 on Ubuntu 16.04 LTS (xenial) - medium.	2017-01-19
oval:com.ubuntu.bionic:def:20165199000	V	CVE-2016-5199 on Ubuntu 18.04 LTS (bionic) - medium.	2017-01-19
oval:com.ubuntu.precise:def:20165199000	V	CVE-2016-5199 on Ubuntu 12.04 LTS (precise) - medium.	2017-01-19
oval:com.ubuntu.trusty:def:20165199000	V	CVE-2016-5199 on Ubuntu 14.04 LTS (trusty) - medium.	2017-01-19

BACK