CVE-2005-2945

Name of the Vulnerable Software and Affected Versions arc versions 5.21j and earlier

Description The issue allows local users to read sensitive information from temporary files created by the software. This is due to the software creating temporary files with world-readable permissions. The affected components include (1) arc (arc.c) and (2) marc (marc.c).

Recommendations For arc versions 5.21j and earlier, consider restricting access to sensitive information until a patch is available. As a temporary workaround, avoid using the arc and marc functions to create temporary files with sensitive data. At the moment, there is no information about a newer version that contains a fix for this vulnerability.