CVE-2007-5839
Publication date 6 November 2007
Last updated 24 July 2024
Ubuntu priority
The e_hostname function in commands.c in BitchX 1.1a allows local users to overwrite arbitrary files via a symlink attack on temporary files when using the (1) HOSTNAME or (2) IRCHOST command.