CVE-2006-1695
EPSS 0.07%fbi - insecure temporary file
發布日:2006/4/11修改日:2026/4/28
描述
The fbgs script in the fbi package 2.01-1.4, when the TMPDIR environment variable is not defined, allows local users to overwrite arbitrary files via a symlink attack on temporary files in /var/tmp/fbps-[PID].
受影響套件(2)
- Debian/fbifrom 0, < 2.05-1
- Debian/fbifrom 0, < 1.23woody1