NuytsTech Security

CVE-2007-6358

by ·

pdftops.pl before 1.20 in alternate pdftops filter allows local users to overwrite arbitrary files via a symlink attack on the pdfin.[PID].tmp temporary file, which is created when pdftops reads a PDF file from stdin, such as when pdftops is invoked by CUPS.

Date published : 2007-12-14

http://www.securityfocus.com/bid/26919

http://www.cups.org/articles.php?L515

Tags: