CVE-2008-3883
CVE-2008-3883 affects Caudium 1.4.12. The issue is a local privilege escalation where configvar allows local users to overwrite arbitrary files via a symlink attack on a temporary file named /tmp/roken#####.pike. The root cause is a symlink/temporary-file handling weakness that enables overwritin...