On Fri, Jul 18, 2008 at 00:54, Jan Mináø <rdancer (at) rdancer (dot) org [email concealed]> wrote:
> The attacker has to create the temporary file
> ``/tmp/Makefile-conf<PID>'' before it is first written to at (1). In
> the time between (1) and (2), arbitrary commands can be written to the
> file. They will be executed at (2...
> The attacker has to create the temporary file
> ``/tmp/Makefile-conf<PID>'' before it is first written to at (1). In
> the time between (1) and (2), arbitrary commands can be written to the
> file. They will be executed at (2...
[ more ]