VULHUB ™

It is reported that Internet Connect is prone to a local insecure temporary file handling symbolic link vulnerability. This issue is due to a design error that allows the application to insecurely create a file with a predictable name in the 'tmp' directory. A successful attack can eventually allow a local attacker to gain super user privileges. This issue is reported to affect Mac OS X 10.3.4. It is likely that other versions are affected as well.

It is reported that Internet Connect is prone to a local insecure temporary file handling symbolic link vulnerability. This issue is due to a design error that allows the application to insecurely create a file with a predictable name in the 'tmp' directory. A successful attack can eventually allow a local attacker to gain super user privileges. This issue is reported to affect Mac OS X 10.3.4. It is likely that other versions are affected as well.