First published: Sat Dec 15 2007(Updated: )
pdftops.pl before 1.20 in alternate pdftops filter allows local users to overwrite arbitrary files via a symlink attack on the pdfin.[PID].tmp temporary file, which is created when pdftops reads a PDF file from stdin, such as when pdftops is invoked by CUPS.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Glyph And Cog Pdftops | <=1.1.19rc1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.