CVE-2003-0885 Information

Description

Xscreensaver 4.14 contains certain debugging code that should have been omitted which causes Xscreensaver to create temporary files insecurely in the (1) apple2 (2) xanalogtv and (3) pong screensavers and allows local users to overwrite arbitrary files via a symlink attack.

Reference

http://bugs.gentoo.org/show_bug.cgi?id=41253 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=182286