High severity8.8NVD Advisory· Published Jun 13, 2016· Updated Jun 17, 2026
CVE-2016-2831
CVE-2016-2831
Description
Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 do not ensure that the user approves the fullscreen and pointerlock settings, which allows remote attackers to cause a denial of service (UI outage), or conduct clickjacking or spoofing attacks, via a crafted web site.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
94cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*range: <=46.0.1
- cpe:2.3:a:mozilla:firefox:45.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:firefox:45.1.1:*:*:*:*:*:*:*
- (no CPE)range: < 45.2
- (no CPE)range: < 47.0
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
- osv-coords81 versionspkg:rpm/opensuse/firefox-esr&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/MozillaFirefox&distro=openSUSE%20Tumbleweedpkg:rpm/suse/firefox-fontconfig&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/firefox-fontconfig&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/firefox-fontconfig&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/firefox-fontconfig&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/firefox-fontconfig&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/firefox-fontconfig&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/firefox-fontconfig&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/firefox-fontconfig&distro=SUSE%20Manager%202.1pkg:rpm/suse/firefox-fontconfig&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/firefox-fontconfig&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/MozillaFirefox-branding-SLED&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/MozillaFirefox-branding-SLED&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/MozillaFirefox-branding-SLED&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/MozillaFirefox-branding-SLED&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/MozillaFirefox-branding-SLED&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/MozillaFirefox-branding-SLED&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/MozillaFirefox-branding-SLED&distro=SUSE%20Manager%202.1pkg:rpm/suse/MozillaFirefox-branding-SLED&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/MozillaFirefox-branding-SLED&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/MozillaFirefox-branding-SLE&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Manager%202.1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/MozillaFirefox&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Manager%202.1pkg:rpm/suse/mozilla-nspr&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/mozilla-nspr&distro=SUSE%20OpenStack%20Cloud%205pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP2-LTSSpkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATApkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Server%2012pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012pkg:rpm/suse/mozilla-nss&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP1pkg:rpm/suse/mozilla-nss&distro=SUSE%20Manager%202.1pkg:rpm/suse/mozilla-nss&distro=SUSE%20Manager%20Proxy%202.1pkg:rpm/suse/mozilla-nss&distro=SUSE%20OpenStack%20Cloud%205
< 128.5.1-1.1+ 80 more
- (no CPE)range: < 128.5.1-1.1
- (no CPE)range: < 50.1.0-1.1
- (no CPE)range: < 2.11.0-2.1
- (no CPE)range: < 2.11.0-4.2
- (no CPE)range: < 2.11.0-2.1
- (no CPE)range: < 2.11.0-2.1
- (no CPE)range: < 2.11.0-2.1
- (no CPE)range: < 2.11.0-2.1
- (no CPE)range: < 2.11.0-2.1
- (no CPE)range: < 2.11.0-2.1
- (no CPE)range: < 2.11.0-2.1
- (no CPE)range: < 2.11.0-2.1
- (no CPE)range: < 45.0-23.10
- (no CPE)range: < 45.0-20.38
- (no CPE)range: < 45.0-23.10
- (no CPE)range: < 45.0-23.10
- (no CPE)range: < 45.0-23.10
- (no CPE)range: < 45.0-23.10
- (no CPE)range: < 45.0-23.10
- (no CPE)range: < 45.0-23.10
- (no CPE)range: < 45.0-23.10
- (no CPE)range: < 45.0-28.2
- (no CPE)range: < 45.0-28.2
- (no CPE)range: < 45.0-28.2
- (no CPE)range: < 45.0-28.2
- (no CPE)range: < 45.0-28.2
- (no CPE)range: < 45.0-28.2
- (no CPE)range: < 45.2.0esr-75.2
- (no CPE)range: < 45.2.0esr-75.2
- (no CPE)range: < 45.2.0esr-45.2
- (no CPE)range: < 45.3.0esr-48.1
- (no CPE)range: < 45.2.0esr-45.2
- (no CPE)range: < 45.2.0esr-45.2
- (no CPE)range: < 45.2.0esr-45.2
- (no CPE)range: < 45.2.0esr-75.2
- (no CPE)range: < 45.2.0esr-75.2
- (no CPE)range: < 45.2.0esr-45.2
- (no CPE)range: < 45.2.0esr-75.2
- (no CPE)range: < 45.2.0esr-75.2
- (no CPE)range: < 45.2.0esr-45.2
- (no CPE)range: < 45.2.0esr-75.2
- (no CPE)range: < 45.2.0esr-75.2
- (no CPE)range: < 45.2.0esr-45.2
- (no CPE)range: < 45.2.0esr-45.2
- (no CPE)range: < 45.2.0esr-45.2
- (no CPE)range: < 4.12-15.2
- (no CPE)range: < 4.12-15.2
- (no CPE)range: < 4.12-29.1
- (no CPE)range: < 4.12-25.2
- (no CPE)range: < 4.12-29.1
- (no CPE)range: < 4.12-29.1
- (no CPE)range: < 4.12-29.1
- (no CPE)range: < 4.12-15.2
- (no CPE)range: < 4.12-15.2
- (no CPE)range: < 4.12-29.1
- (no CPE)range: < 4.12-15.2
- (no CPE)range: < 4.12-15.2
- (no CPE)range: < 4.12-29.1
- (no CPE)range: < 4.12-15.2
- (no CPE)range: < 4.12-15.2
- (no CPE)range: < 4.12-29.1
- (no CPE)range: < 4.12-29.1
- (no CPE)range: < 4.12-29.1
- (no CPE)range: < 3.21.1-46.2
- (no CPE)range: < 3.21.1-46.2
- (no CPE)range: < 3.21.1-35.1
- (no CPE)range: < 3.21.1-26.2
- (no CPE)range: < 3.21.1-35.1
- (no CPE)range: < 3.21.1-35.1
- (no CPE)range: < 3.21.1-35.1
- (no CPE)range: < 3.21.1-46.2
- (no CPE)range: < 3.21.1-46.2
- (no CPE)range: < 3.21.1-35.1
- (no CPE)range: < 3.21.1-46.2
- (no CPE)range: < 3.21.1-46.2
- (no CPE)range: < 3.21.1-35.1
- (no CPE)range: < 3.21.1-46.2
- (no CPE)range: < 3.21.1-46.2
- (no CPE)range: < 3.21.1-35.1
- (no CPE)range: < 3.21.1-35.1
- (no CPE)range: < 3.21.1-35.1
Patches
Vulnerability mechanics
References
11- lists.opensuse.org/opensuse-security-announce/2016-06/msg00014.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-06/msg00016.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-security-announce/2016-06/msg00055.htmlnvdMailing ListThird Party Advisory
- www.debian.org/security/2016/dsa-3600nvdThird Party Advisory
- www.mozilla.org/security/announce/2016/mfsa2016-58.htmlnvdVendor Advisory
- www.securitytracker.com/id/1036057nvdThird Party Advisory
- www.ubuntu.com/usn/USN-2993-1nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2016:1217nvdThird Party Advisory
- bugzilla.mozilla.org/show_bug.cginvdIssue TrackingPermissions Required
- www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.htmlnvd
- www.securityfocus.com/bid/91075nvd
News mentions
0No linked articles in our index yet.