CVE-2005-1880

everybuddy 0.4.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file created by a system call to wget.

Date published : 2005-06-07

http://www.securityfocus.com/bid/13865

http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034422.html