AIX CDE Login Insecure Temporary File Creation Vulnerability

AIX CDE Login Insecure Temporary File Creation Vulnerability

A malicious "bin" user can cause a system file to be overwritten by linking the defined error log file (which defaults to /var/dt/Xerrors) to a system file or by linking the defined Xpid file (which defaults to (/var/dt/Xpid) to a system file and waiting for the CDE Login Manager to overwrite the error log file or Xpid file which would cause the linked system file to be overwritten.