CVE-2002-0137 Information

Description

CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file.

Reference

http://marc.info/?l=bugtraq&m=101102759631000&w=2 http://www.securityfocus.com/bid/3865