VULHUB ™

A vulnerabilty has been reported in Adobe Acroread 4.05 that may make it possible to exploit symbolic link attacks. Acroread does not check for the existence of files when creating temporary files. As a result, a file may be created that may overwrite another file in the temporary directory. This problem is further compounded by the fact that Acroread does not check whether or not the file is a symbolic link. In the event of the temporary file being a symbolic link, the file at the end of the symbolic link would be overwritten. This could result in a corruption or loss of data.

A vulnerabilty has been reported in Adobe Acroread 4.05 that may make it possible to exploit symbolic link attacks. Acroread does not check for the existence of files when creating temporary files. As a result, a file may be created that may overwrite another file in the temporary directory. This problem is further compounded by the fact that Acroread does not check whether or not the file is a symbolic link. In the event of the temporary file being a symbolic link, the file at the end of the symbolic link would be overwritten. This could result in a corruption or loss of data.