CVE-2004-0969 - Quintillionth Anxiety

Description

The groffer script in the Groff package 1.18 and later versions as used in Trustix Secure Linux 1.5 through 2.1 and possibly other operating systems allows local users to overwrite files via a symlink attack on temporary files.

Reference

http://www.securityfocus.com/bid/11287 http://www.gentoo.org/security/en/glsa/glsa-200411-15.xml http://www.trustix.org/errata/2004/0050 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136313 http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:038 http://secunia.com/advisories/18764 https://exchange.xforce.ibmcloud.com/vulnerabilities/17583