CVE-2023-29539

Summary

When handling the filename directive in the Content-Disposition header, the filename would be truncated if the filename contained a NULL character. This could have led to reflected file download attacks potentially tricking users to install malware. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10.

Affected Software

VendorProductVersion RangeStatus
MozillaFirefoxunspecified < 112affected
MozillaFocus for Androidunspecified < 112affected
MozillaFirefox ESRunspecified < 102.10affected
MozillaFirefox for Androidunspecified < 112affected
MozillaThunderbirdunspecified < 102.10affected

Weaknesses

  • Content-Disposition filename truncation leads to Reflected File Download

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References