PublicDate: 2007-11-26 22:46:00 UTC
Candidate: CVE-2007-6131
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6131
 https://bugzilla.redhat.com/show_bug.cgi?id=383131
Description:
 buttonpressed.sh in scanbuttond 0.2.3 allows local users to overwrite
 arbitrary files via a symlink attack on the (1) scan.pnm and (2) scan.jpg
 temporary files.
Ubuntu-Description:
Notes:
 jdstrand> giving medium priority because this is likely to be run as root
 fujitsu> negligible as the code is commented out and in an example script
Bugs:
Priority: negligible
Discovered-by:
Assigned-to:
CVSS: 
upstream_scanbuttond: needs-triage
dapper_scanbuttond: DNE
edgy_scanbuttond: needed (reached end-of-life)
feisty_scanbuttond: needed (reached end-of-life)
gutsy_scanbuttond: needed (reached end-of-life)
hardy_scanbuttond: released (0.2.3-6)
intrepid_scanbuttond: released (0.2.3-6)
devel_scanbuttond: released (0.2.3-6)