CVE-2005-3011
The sort_offline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Date published : 2005-09-21
http://lists.apple.com/archives/security-announce/2007/May/msg00004.html