CVE-2004-0996
main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.
Date published : 2004-12-01
http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html