CVE-1999-1038

Name of the Vulnerable Software and Affected Versions Tiger version 2.2.3

Description The issue allows local users to overwrite arbitrary files via a symlink attack on various temporary files in Tiger's default working directory, as defined by the WORKDIR variable.

Recommendations For Tiger version 2.2.3, consider restricting access to the default working directory defined by the WORKDIR variable to prevent symlink attacks until a patch is available. As a temporary workaround, avoid using temporary files in the default working directory to minimize the risk of exploitation.