CVE-2003-0193 Information

Description

msxlsview.sh in xlsview for catdoc 0.91 and earlier allows local users to overwrite arbitrary files via a symlink attack on predictable temporary file names (\word$$.html).

Reference

http://bugs.debian.org/cgi-bin/bugreport.cgi?archive=no&bug=183525 http://secunia.com/advisories/13021/ http://secunia.com/advisories/13022/ http://www.debian.org/security/2004/dsa-575 http://www.osvdb.org/11193 http://www.securityfocus.com/bid/11560 https://exchange.xforce.ibmcloud.com/vulnerabilities/16335