pdftops.pl prior to 1.20 in alternate pdftops filter allows local users to overwrite arbitrary files via a symlink attack on the pdfin.[PID].tmp temporary file, which is created when pdftops reads a PDF file from stdin, such as when pdftops is invoked by CUPS.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
glyph and cog pdftops |