CVE-2004-1167 Information

Description

mirrorselect before 0.89 creates temporary files in a world-writable location with predictable file names which allows remote attackers to overwrite arbitrary files via a symlink attack.

Reference

http://secunia.com/advisories/13392/ http://www.gentoo.org/security/en/glsa/glsa-200412-05.xml https://exchange.xforce.ibmcloud.com/vulnerabilities/18382