PT-2023-4186 · Mozilla+2 · Firefox Esr+4

Ycdxsb

·

Published

2023-08-01

·

Updated

2024-12-12

·

CVE-2023-4052

CVSS v3.1

6.5

Medium

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 116 Firefox ESR versions prior to 115.1 Thunderbird versions prior to 115.1
Description The Firefox updater created a directory writable by non-privileged users. When uninstalling Firefox, any files in that directory would be recursively deleted with the permissions of the uninstalling user account. This could be combined with creation of a junction (a form of symbolic link) to allow arbitrary file deletion controlled by the non-privileged user. This bug only affects Firefox on Windows, and other operating systems are unaffected.
Recommendations For Firefox versions prior to 116, update to version 116 or later to resolve the issue. For Firefox ESR versions prior to 115.1, update to version 115.1 or later to resolve the issue. For Thunderbird versions prior to 115.1, update to version 115.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the directory created by the Firefox updater to minimize the risk of exploitation.

Fix

Link Following

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-59CWE-275CWE-276

Related Identifiers

ALT-PU-2023-5754
ALT-PU-2023-5836
ALT-PU-2023-6436
ALT-PU-2024-13898
ALT-PU-2024-14035
ALT-PU-2024-3614
ALT-PU-2024-3860
ALT-PU-2024-4241
ALT-PU-2024-4748
BDU:2023-04499
CVE-2023-4052
OPENSUSE-SU-2023_3162-1
OPENSUSE-SU-2023_3228-1
OPENSUSE-SU-2024:13124-1
OPENSUSE-SU-2024:13202-1
OPENSUSE-SU-2024:14572-1
SUSE-SU-2023:3161-1
SUSE-SU-2023:3162-1
SUSE-SU-2023:3163-1
SUSE-SU-2023:3228-1
SUSE-SU-2023_3161-1
SUSE-SU-2023_3162-1
SUSE-SU-2023_3163-1

Affected Products

Alt Linux
Firefox
Firefox Esr
Suse
Thunderbird