noweb 2.10c and previous versions allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
norman ramsey noweb 2.10c |
||
norman ramsey noweb 2.9a |