pdftops.pl before 1.20 in alternate pdftops filter allows local users to overwrite arbitrary files via a symlink attack on the pdfin.[PID].tmp temporary file, which is created when pdftops reads a PDF file from stdin, such as when pdftops is invoked by CUPS.
References
Configurations
Information
Published : 2007-12-14 17:46
Updated : 2017-11-15 18:29
NVD link : CVE-2007-6358
Mitre link : CVE-2007-6358
JSON object : View
CWE
Products Affected
glyph_and_cog
- pdftops