CVE-2004-1179 - Syndetic Thermometers

Description

The debstd script in debmake 3.6.x before 3.6.10 and 3.7.x before 3.7.7 allows local users to overwrite arbitrary files via a symlink attack on temporary directories.

Reference

http://www.debian.org/security/2004/dsa-615 http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2004-12/0645.html http://secunia.com/advisories/13633/ http://www.securityfocus.com/bid/12078 https://exchange.xforce.ibmcloud.com/vulnerabilities/18646