Name of the Vulnerable Software and Affected Versions PyInstaller versions prior to 3.6

Description A local privilege escalation issue is present in PyInstaller on Windows when used in "onefile" mode. This occurs when a privileged user launches the software and their TempPath resolves to a world-writable directory, such as C:WindowsTemp. The software must be restarted after an attacker launches an exploit program for the issue to be exploitable.

Recommendations For versions prior to 3.6, consider restricting the use of the "onefile" mode or ensuring that the TempPath does not resolve to a world-writable directory to minimize the risk of exploitation. Additionally, avoid running software using PyInstaller as a service or scheduled task with a system account, as this increases the risk of exploitation.