MOABI : Continuous Software Improvement

CVE-2003-0885
Description	Xscreensaver 4.14 contains certain debugging code that should have been omitted, which causes Xscreensaver to create temporary files insecurely in the (1) apple2, (2) xanalogtv, and (3) pong screensavers, and allows local users to overwrite arbitrary files via a symlink attack.
Impact	CVSS v2 : 6.4 MEDIUM
Type	NVD-CWE-Other
Attack Vector	CVSSv2 Vector : AV:N/AC:L/Au:N/C:N/I:P/A:P
Quick links	CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References	http://bugs.gentoo.org/show_bug.cgi?id=41253 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=182286