Mozilla Firefox 'app_tmp' Directory Insecure Permissions Vulnerability

Bugtraq ID:	58829
Class:	Design Error
CVE:	CVE-2013-0798
Remote:	Yes
Local:	No
Published:	Apr 02 2013 12:00AM
Updated:	Mar 19 2015 09:28AM
Credit:	Shuichiro Suzuki of the Fourteenforty Research Institute
Vulnerable:	SuSE SUSE Linux Enterprise Server for VMware 11 SP2 + Linux kernel 2.6.5 SuSE SUSE Linux Enterprise Server 11 SP2 + Linux kernel 2.6.5 SuSE SUSE Linux Enterprise Server 10 SP4 + Linux kernel 2.6.5 SuSE SUSE Linux Enterprise SDK 11 SP2 SuSE SUSE Linux Enterprise SDK 10 SP4 SuSE SUSE Linux Enterprise Desktop 11 SP2 + Linux kernel 2.6.5 SuSE SUSE Linux Enterprise Desktop 10 SP4 + Linux kernel 2.6.5 Slackware Linux x86_64 -current Slackware Linux 13.37 x86_64 Slackware Linux 13.37 Slackware Linux -current Oracle Enterprise Linux 6.2 Oracle Enterprise Linux 6 Mozilla Firefox 13.0 Mozilla Firefox 12.0 Mozilla Firefox 11.0 Mozilla Firefox 10.0.2 Mozilla Firefox 10.0.1 Mozilla Firefox 10.0
Not Vulnerable:

Mozilla Firefox 'app_tmp' Directory Insecure Permissions Vulnerability

Mozilla Firefox for Android is prone to an insecure directory permissions vulnerability.

An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks.

Note: This issue was previously discussed in BID 58818 (Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2013-30 through -40 Multiple Vulnerabilities), but has been moved to its own record to better document it.

This issue is fixed in Firefox 20.0.

Mozilla Firefox 'app_tmp' Directory Insecure Permissions Vulnerability

References:

• Cisco NX-OS Software TACACS+ Command Authorization Vulnerability (Cisco)
  
• MFSA 2013-33 World read and write access to app_tmp directory on Android (Mozilla)