Description
gsinterf.c in bmv 1.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Affected products
- bmv / bmv1.2 – 1.2
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/13796
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/18823
- VENDOR_ADVISORYhttp://www.debian.org/security/2005/dsa-633
- MISChttp://securityfocus.org/bid/12229
- VENDOR_ADVISORYhttp://secunia.com/advisories/13793
- VENDOR_ADVISORYhttp://packages.debian.org/changelogs/pool/main/b/bmv/bmv_1.2-14.2/changelog
- MISChttp://securitytracker.com/id?1012847