VULHUB ™

S-PLUS for Unix is prone to a number of insecure temporary file creation vulnerabilities. These issues exist in some of the S-PLUS Spqe binary and various shell scripts. S-PLUS creates temporary files using predictable names. Additionally, when these files are created symbolic links will be followed. If the attacker can anticipate the names of these temporary files, it is possible to lauch symbolic link attacks which may result in file corruption. S-PLUS for Unix is prone to multiple instances of this vulnerability.

S-PLUS for Unix is prone to a number of insecure temporary file creation vulnerabilities. These issues exist in some of the S-PLUS Spqe binary and various shell scripts. S-PLUS creates temporary files using predictable names. Additionally, when these files are created symbolic links will be followed. If the attacker can anticipate the names of these temporary files, it is possible to lauch symbolic link attacks which may result in file corruption. S-PLUS for Unix is prone to multiple instances of this vulnerability.