SILC Server and Toolkit silcd.c Symlink Arbitrary File Overwrite

Network Security News – Sunday, September 04, 2005 Events

SILC Server and Toolkit silcd.c Symlink Arbitrary File Overwrite

SILC Server and Toolkit contains a flaw that may allow a malicious local user to overwrite arbitrary files on the system. The issue is due to the program creating temporary files insecurely. It is possible for a user to use a symlink style attack to manipulate arbitrary files, resulting in a loss of integrity.. Read more at osvdb.org/19121