Infodrom Oldenburg
— arc —
| 17.9.2005: Insecure temporary file | arc | 5.21l-1 |
|---|---|---|
| Eric Romang discovered that the ARC archive program under Unix creates a temporary file with insecure permissions which may lead to an attacker stealing sensitive information. Joey Schulze discovered that the temporary file was created in an insecure fashion as well, leaving it open to a classic symlink attack. | ||
| Download: Patch. | ||