CVE-2008-1078
expn in the am-utils and net-fs packages for Gentoo, rPath Linux, and other distributions, allows local users to overwrite arbitrary files via a symlink attack on the expn[PID] temporary file. NOTE: this is the same issue as CVE-2003-0308.1.
Date published : 2008-02-28
http://www.securityfocus.com/bid/28044
http://www.securityfocus.com/archive/1/488931/100/0/threaded