The make_temporary_filename function in perltidy 20120701-1 and previous versions allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
perltidy project perltidy |