Xscreensaver 4.14 contains certain debugging code that should have been omitted, which causes Xscreensaver to create temporary files insecurely in the (1) apple2, (2) xanalogtv, and (3) pong screensavers, and allows local users to overwrite arbitrary files via a symlink attack.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-02-28T01:00:00

Updated: 2024-08-08T02:05:12.644Z

Reserved: 2003-10-24T00:00:00

Link: CVE-2003-0885

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2003-12-31T05:00:00.000

Modified: 2024-11-20T23:45:44.300

Link: CVE-2003-0885

cve-icon Redhat

No data.