im-switch prior to 11.4-46.1 in Fedora Core 2 allows local users to overwrite arbitrary files via a symlink attack on the imswitcher[PID] temporary file.
source: wwwsecurityfocuscom/bid/10717/info
IM-Switch Insecure Temporary File Handling Symbolic Link VulnerabilityIt is reported that im-switch is prone to a local insecure temporary file handling symbolic link vulnerability This issue is due to a design error that allows the application to insecurely write to a temporary file that is cre ...