Linked by Thom Holwerda on Mon 1st Jun 2009 11:04 UTC, submitted by Rahul
.NET (dotGNU too) Microsoft is really making it hard not to distrust them, aren't they? We already talked about Mono and Moonlight this weekend, and now we're notified of something else. Apparently, the Microsoft .NET Framework 3.5 Service Pack 1, released earlier this year, installs a Firefox extension which could not be uninstalled easily (registry hacking was needed). To make matters worse, this extension came with a pretty big security hole (at least, that's what everyone says). A newer version of this extension has been pushed out in May, which can be uninstalled the proper way. As it turns out, Firefox apparently has a limitation in that extensions installed at the machine level (instead of the user level) cannot be uninstalled from within the extensions GUI.
Permalink for comment 366469
To read all comments associated with this story, please click here.
Member since:

Ehh... the way I see it this has to do with file ownership and account privileges. Installing NET requires admin rights and as such any Firefox extensions installed by that NET package will be created by the admin account and thus the resulting files will be owned by the admin and not removeable by Firefox when running under a limited account. which case Firefox should notify you of this, and offer an elevation prompt - which it doesn't. Hence, a limitation in Firefox.

Reply Parent Score: 2