The (1) mkxmltype and (2) mkdtskel scripts in XML-DT before 0.64 allow local users to overwrite arbitrary files via a symlink attack on a /tmp/_xml_##### temporary file.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: debian
Published: 2014-08-16T01:00:00
Updated: 2024-08-06T11:41:48.228Z
Reserved: 2014-08-15T00:00:00
Link: CVE-2014-5260
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2014-08-16T04:39:55.723
Modified: 2014-09-08T17:49:15.293
Link: CVE-2014-5260
Redhat
No data.