AIX RAS trcfile Insecure Temporary File Creation Vulnerability

AIX RAS trcfile Insecure Temporary File Creation Vulnerability

The trcfile script (for RAS) under certain versions of AIX creates insecure non-random temporary files. This allows malicous users to symlink to these files and overwrite other system files at the privilege level of the user executing the program. Typically this privilege level is root.