CVE-2007-4462

lib/Locale/Po4a/Po.pm in po4a before 0.32 allows local users to overwrite arbitrary files via a symlink attack on the gettextization.failed.po temporary file.

Date published : 2007-08-21

http://www.securityfocus.com/bid/25402

http://alioth.debian.org/frs/shownotes.php?release_id=1019