Xscreensaver 4.14 contains certain debugging code that should have been omitted, which causes Xscreensaver to create temporary files insecurely in the (1) apple2, (2) xanalogtv, and (3) pong screensavers, and allows local users to overwrite arbitrary files via a symlink attack.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2006-02-28T01:00:00
Updated: 2024-08-08T02:05:12.644Z
Reserved: 2003-10-24T00:00:00
Link: CVE-2003-0885
Vulnrichment
No data.
NVD
Status : Modified
Published: 2003-12-31T05:00:00.000
Modified: 2024-11-20T23:45:44.300
Link: CVE-2003-0885
Redhat
No data.