PT-2005-2837 · Unknown · Everybuddy
Name of the Vulnerable Software and Affected Versions: everybuddy versions 0.4.3 and earlier Description: The issue allows local users to overwrite arbitrary files via a symlink attack on a temporary file created by a system call to wget. This is a result of a symlink attack vulnerability...