xbru in BRU Workstation 17.0 allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the xbru_dscheck.dd temporary file.
source: wwwsecurityfocuscom/bid/5708/info
BRU is a backup and restore utility distributed by The Tolis Group This problem affects the utility on the Linux platform
xbru does not properly check for the existence of temporary files prior to execution Because of this, it is possible for a local user to create symbolic links to other file ...