source: wwwsecurityfocuscom/bid/157/info
A vulnerability exists in HP's JetAdmin Rev D0109 software Due to its failure to check if it is following a symbolic link, it is possible for an attacker to create a link from /tmp/jetadminlog to anywhere on the filesystem, with permissions for reading and writing by everyone on the system Th ...