foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian unstable, and 20090908dfsg-5.1+squeeze0 as packaged in Debian squeeze create temporary files insecurely, which allows local users to write over arbitrary files via a symlink attack on /tmp/foo2zjs.
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Foo2zjs | Rkkda | 20090908dfsg-5.1+squeeze0 (including) | 20090908dfsg-5.1+squeeze0 (including) |
Foo2zjs | Rkkda | 20110722dfsg-1 (including) | 20110722dfsg-1 (including) |
Foo2zjs | Rkkda | 20110722dfsg-3ubuntu1 (including) | 20110722dfsg-3ubuntu1 (including) |
Foo2zjs | Ubuntu | hardy | * |
Foo2zjs | Ubuntu | lucid | * |
Foo2zjs | Ubuntu | maverick | * |
Foo2zjs | Ubuntu | natty | * |
Foo2zjs | Ubuntu | upstream | * |