CVE-2004-1296

Description

The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink attack on temporary files.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/18660

http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:038

http://marc.info/?l=bugtraq&m=110358225615424&w=2

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=286372

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=286371

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3