GSAMBAD Insecure Temporary File Creation Vulnerability

GSAMBAD Insecure Temporary File Creation Vulnerability

GSAMBAD creates temporary files in an insecure manner.

An attacker with local access could potentially exploit this issue to perform symlink attacks, overwriting arbitrary files in the context of the affected application.

An attacker may leverage this issue to corrupt or overwrite arbitrary files with the privileges of an unsuspecting user that activated the affected application. Reportedly, attackers can exploit this issue to escalate privileges.

All versions of GSAMBAD are considered to be vulnerable to this issue.