February 8, 2002

wmtv Symlink vulnerability in Linux

Author: JT Smith

Posted at LinuxSecurity.com: "Nicolas Boullis found some security problems in the wmtv package (a
dockable video4linux TV player for windowmaker) which is distributed
in Debian GNU/Linux 2.2. With the current version of wmtv, the
configuration file is written back as the superuser, and without any
further checks. A mailicious user might use that to damage important


  • Linux
Click Here!