Dan Mueth ScrollKeeper Tempfile Symbolic Link Vulnerability

info
discussion
exploit
solution
references

Dan Mueth ScrollKeeper Tempfile Symbolic Link Vulnerability

There is no exploit code necessary. An attacker would simply have to replace a ScrollKeeper tempfile with a symbolic link to a file to be overwritten.