CVE-2001-0067
CVE-2001-0067 concerns the jpilot program, which creates a .jpilot directory in the user’s home with world-writable permissions (777). This insecure default enables local attackers to read other users’ PalmOS backups if umasks are not strictly set. Root cause is directory creation with permissive...