source: wwwsecurityfocuscom/bid/1302/info
The programmers of the 'man' command on various HPUX releases have made several fatal mistakes that allow an attacker to trivially set a trap that could result in any arbitrary file being overwritten on the system when root runs the 'man' command
Details:
1) man creates temporary files with pre ...