CVE-2016-9072: High severity firefox vulnerability
Published Nov 15, 2016
·Updated
When a new Firefox profile is created on 64-bit Windows installations, the sandbox for 64-bit NPAPI plugins is not enabled by default. Note: This issue only affects 64-bit Windows. 32-bit Windows and other operating systems are unaffected.
Affected Software
3 affected componentsFixes available
Mozilla Firefox<50
50
Mozilla Firefox<50.0
Microsoft Windows
Event History
Nov 15, 2016
CVE Published
12:00 AM
Jun 11, 2018
CVE Published
via MITRE·09:00 PM
Data Sourced
via MITRE·09:00 PM
DescriptionWeakness
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2016-5296
- CVE-2016-5292
- CVE-2016-5293
- CVE-2016-5294
- CVE-2016-5297
- CVE-2016-9064
- CVE-2016-9065
- CVE-2016-9066
- CVE-2016-9067
- CVE-2016-9068
- CVE-2016-9072
- CVE-2016-9075
- CVE-2016-9077
- CVE-2016-5291
- CVE-2016-5295
- CVE-2016-5298
- CVE-2016-5299
- CVE-2016-9061
- CVE-2016-9062
- CVE-2016-9070
- CVE-2016-9073
- CVE-2016-9074
- CVE-2016-9076
- CVE-2016-9063
- CVE-2016-9071
- CVE-2016-5289
- CVE-2016-5290
Frequently Asked Questions
1
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2016-9072.
2
What is the severity of CVE-2016-9072?
CVE-2016-9072 has a severity level of high.
3
Which software is affected by CVE-2016-9072?
Firefox versions prior to 50 on 64-bit Windows installations are affected by CVE-2016-9072.
4
How can I fix the vulnerability CVE-2016-9072?
To fix the vulnerability CVE-2016-9072, update your Firefox installation to version 50 or higher.
5
Are 32-bit Windows installations affected by CVE-2016-9072?
No, 32-bit Windows installations are unaffected by CVE-2016-9072.