CVE-2008-4474

Name of the Vulnerable Software and Affected Versions: freeradius version 2.0.4

Description: The issue allows local users to overwrite arbitrary files via a symlink attack on temporary files in several scripts, including backup radacct, clean radacct, monthly tot stats, tot stats, and truncate radacct.

Recommendations: For freeradius version 2.0.4, consider restricting access to these scripts or implementing additional security measures to prevent symlink attacks until a patch is available. As a temporary workaround, consider disabling the execution of these scripts to minimize the risk of exploitation.