CVE-2002-2001 Information

Description

jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names which allows local users to overwrite arbitrary files via a symlink attack.

Reference

http://www.iss.net/security_center/static/7980.php http://www.mandriva.com/security/advisories?name=MDKSA-2002:008 http://www.securityfocus.com/bid/3940