Slackware Linux 3.4 pkgtool temporary file Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/82/info pkgtool creates the file /tmp/reply insecurely and follows symbolic links. An attacker can create a symbolic link from /tmp/reply to any file and wait for root to run the program. This will clober the target file...