CVE-2007-2838 Information

Description

The populate_conns function in src/populate_conns.c in GSAMBAD 0.1.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gsambadtmp temporary file.

Reference

http://osvdb.org/37795 http://secunia.com/advisories/25909 http://secunia.com/advisories/25914 http://www.debian.org/security/2007/dsa-1327 http://www.securityfocus.com/bid/24717 https://exchange.xforce.ibmcloud.com/vulnerabilities/35401