CVE-2005-3349

Name of the Vulnerable Software and Affected Versions Gnump3d versions prior to 2.9.8

Description The issue allows local users to modify or delete arbitrary files via a symlink attack on the index.lok temporary file. Additionally, there are multiple vulnerabilities in the gnump3d package that can lead to a breach of confidentiality and integrity of protected information, and these can be exploited remotely.

Recommendations For versions prior to 2.9.8, update to version 2.9.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the index.lok temporary file to minimize the risk of exploitation.