CVE-2008-5366

2008-12-08T18:30:00
ID CVE-2008-5366
Type cve
Reporter NVD
Modified 2009-01-23T01:43:59

Description

The postinst script in ppp 2.4.4rel on Debian GNU/Linux allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/probe-finished or (2) /tmp/ppp-errors temporary file.