CVE-2004-1167 - Square toed Children
Description
mirrorselect before 0.89 creates temporary files in a world-writable location with predictable file names which allows remote attackers to overwrite arbitrary files via a symlink attack.
Reference
http://www.gentoo.org/security/en/glsa/glsa-200412-05.xml http://secunia.com/advisories/13392/ https://exchange.xforce.ibmcloud.com/vulnerabilities/18382