SecuritySpace - CVE-2023-5173

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2023-5173

Description: In a non-standard configuration of Firefox, an integer overflow could have occurred based on network traffic (possibly under influence of a local unprivileged webpage), leading to an out-of-bounds write to privileged process memory. *This bug only affects Firefox if a non- standard preference allowing non-HTTPS Alternate Services (`network.http.altsvc.oe`) is enabled.* This vulnerability affects Firefox < 118.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2023-5173
https://security.gentoo.org/glsa/202401-10
https://bugzilla.mozilla.org/show_bug.cgi?id=1823172
https://bugzilla.mozilla.org/show_bug.cgi?id=1823172
https://www.mozilla.org/security/advisories/mfsa2023-41/
https://www.mozilla.org/security/advisories/mfsa2023-41/

CVE ID:	CVE-2023-5173
Description:	In a non-standard configuration of Firefox, an integer overflow could have occurred based on network traffic (possibly under influence of a local unprivileged webpage), leading to an out-of-bounds write to privileged process memory. This bug only affects Firefox if a non- standard preference allowing non-HTTPS Alternate Services (`network.http.altsvc.oe`) is enabled. This vulnerability affects Firefox < 118.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2023-5173 https://security.gentoo.org/glsa/202401-10 https://bugzilla.mozilla.org/show_bug.cgi?id=1823172 https://bugzilla.mozilla.org/show_bug.cgi?id=1823172 https://www.mozilla.org/security/advisories/mfsa2023-41/ https://www.mozilla.org/security/advisories/mfsa2023-41/