The (1) fixps (aka fixps.in) and (2) psmandup (aka psmandup.in) scripts in a2ps prior to 4.13 allow local users to overwrite arbitrary files via a symlink attack on temporary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu a2ps 4.13b |
||
gnu a2ps 4.13 |
||
turbolinux turbolinux server 8.0 |
||
turbolinux turbolinux workstation 7.0 |
||
turbolinux turbolinux home |
||
turbolinux turbolinux server 7.0 |
||
turbolinux turbolinux workstation 8.0 |