CVE-2002-2382
cvsupd.sh in CVSup 1.2 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on /var/tmp/cvsupd.out.
Date published : 2007-10-31
http://www.securityfocus.com/bid/6150
http://archives.neohapsis.com/archives/freebsd/2002-11/0011.html