Red Hat Bugzilla – Bug 158997
CAN-2005-1751 shtool insecure temporary file creation
Last modified: 2007-11-30 17:07:18 EST
Race condition in shtool 2.0.1 and earlier allows local users to
create or modify arbitrary files via a symlink attack on the
.shtool.$$ temporary file.
php contains shtool in its source.
This issue should also affect RHEL2.1 and RHEL3
*** This bug has been marked as a duplicate of 159000 ***