HP Tru64 Installation Software Insecure File Creation Vulnerability

HP Tru64 Installation Software Insecure File Creation Vulnerability

HP has reported a vulnerability in the 'dupatch' and 'setld' utilities, used during various update and installation procedures. The precise details regarding the vulnerabilities are not currently known, however the exploitation of this issue may allow an attacker to carry out symbolic link attacks.