CVE-2007-5940

描述

feynmf.pl in feynmf 1.08, as used in TeXLive 2007, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the feynmf$$.pl temporary file.

受影響套件(2)

• Debian/feynmffrom 0, < 1.08-1
• Debian/texlive-binfrom 0, < 2005.dfsg.2-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-5940