CVE-2010-2027

Name of the Vulnerable Software and Affected Versions Mathematica version 7

Description The issue allows local users to overwrite arbitrary files via a symlink attack on files within /tmp/MathLink/ or /tmp/fonts$$.conf when running on Linux.

Recommendations For Mathematica version 7, consider restricting access to the /tmp/MathLink/ directory and the /tmp/fonts$$.conf file to prevent a symlink attack until a patch is available.