CVE-2012-2291 Information

Description

EMC Avamar Client 4.x 5.x and 6.x on HP-UX and Mac OS X and the EMC Avamar plugin 4.x 5.x and 6.x for Oracle uses world-writable permissions for cache directories which allows local users to gain privileges via an unspecified symlink attack.

Reference

http://archives.neohapsis.com/archives/bugtraq/2013-01/0086.html