CVE-2001-0529

OpenSSH version 2.9 and earlier, with X forwarding enabled, allows a local attacker to delete any file named ‘cookies’ via a symlink attack.

Date published : 2002-03-09

http://www.securityfocus.com/bid/2825

http://archives.neohapsis.com/archives/bugtraq/2001-06/0007.html