Acrobat reader temporary files
| Package(s): | acroread | CVE #(s): | |||||
| Created: | July 8, 2002 | Updated: | July 10, 2002 | ||||
| Description: | There is a symlink attack vulnerability in Acrobat Reader 5.05.
Acroread uses a file it creates with wide open permissions (mode 666) in /tmp; it also follows symlinks.
See the report of the bug in Acrobat Reader 5.05 for the details. The problem has also been reported in version 4.05. | ||||||
| Alerts: |
| ||||||