imake in NetBSD prior to 2.0.3, NetBSD-current prior to 12 September 2005, certain versions of X.Org, and certain versions of XFree86 allows local users to overwrite arbitrary files via a symlink attack on the temporary file for the file.0 target, which is used for a pre-formatted manual page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netbsd netbsd 2.0 |
||
netbsd netbsd 2.0.1 |
||
netbsd netbsd 2.0.2 |
||
netbsd netbsd 1.6 |
||
netbsd netbsd 1.6.2 |
||
netbsd netbsd 1.6.1 |