Symlink Attack Vulnerability in groff 1.18.1's eqn2graph and pic2graph Scripts

Symlink Attack Vulnerability in groff 1.18.1's eqn2graph and pic2graph Scripts

CVE-2004-1296 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink attack on temporary files.

Learn more about our User Device Pen Test.