CVE-2019-11736Race Condition in Mozilla Firefox

CWE-362Race ConditionCWE-59Link Following7 documents6 sources
Severity
7.0HIGHNVD
EPSS
0.1%
top 82.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Mozilla FirefoxMozilla Firefox ESRDebian Firefox+1 more
Timeline
PublishedSep 27
Latest updateMay 24

Description

The Mozilla Maintenance Service does not guard against files being hardlinked to another file in the updates directory, allowing for the replacement of local files, including the Maintenance Service executable, which is run with privileged access. Additionally, there was a race condition during checks for junctions and symbolic links by the Maintenance Service, allowing for potential local file and directory manipulation to be undetected in some circumstances. This allows for potential privilege

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages6 packages

CVEListV5mozilla/firefoxunspecified69
NVDmozilla/firefox< 69.0
CVEListV5mozilla/firefox_esrunspecified68.1
NVDmozilla/firefox_esr< 68.1.0

🔴Vulnerability Details

2
GHSA
GHSA-g4fc-6wpg-63m2: The Mozilla Maintenance Service does not guard against files being hardlinked to another file in the updates directory, allowing for the replacement o2022-05-24
OSV
CVE-2019-11736: The Mozilla Maintenance Service does not guard against files being hardlinked to another file in the updates directory, allowing for the replacement o2019-09-27

📋Vendor Advisories

2
Red Hat
Mozilla: File manipulation and privilege escalation in Mozilla Maintenance Service2019-09-03
Debian
CVE-2019-11736: firefox - The Mozilla Maintenance Service does not guard against files being hardlinked to...2019

💬Community

2
Bugzilla
CVE-2019-11736 Mozilla: File manipulation and privilege escalation in Mozilla Maintenance Service2019-09-04
Bugzilla
Firefox 69.0 is available2019-09-03