The (1) mkxmltype and (2) mkdtskel scripts in XML-DT before 0.64 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/_xml_##### temporary file.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: debian
Published: 2014-08-16T01:00:00
Updated: 2014-08-16T01:57:01
Reserved: 2014-08-15T00:00:00
Link: CVE-2014-5260
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-08-16T04:39:55.723
Modified: 2014-09-08T17:49:15.293
Link: CVE-2014-5260
JSON object: View
Redhat Information
No data.
CWE