2005-06-07 04:00:00
mitre
PUBLISHED
everybuddy 0.4.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file created by a system call to wget.