Dan Mueth ScrollKeeper Tempfile Symbolic Link Vulnerability

There is no exploit code necessary. An attacker would simply have to replace a ScrollKeeper tempfile with a symbolic link to a file to be overwritten.


 

Privacy Statement
Copyright 2010, SecurityFocus