2008-09-24 10:00:00
mitre
PUBLISHED
extract-table.pl in Emacspeak 26 and 28 allows local users to overwrite arbitrary files via a symlink attack on the extract-table.csv temporary file.