CVE-2007-5207

Name of the Vulnerable Software and Affected Versions guilt version 0.27

Description The issue allows local users to overwrite arbitrary files via a symlink attack on a guilt.log.[PID] temporary file.

Recommendations For guilt version 0.27, consider restricting access to the temporary files to minimize the risk of exploitation. As a temporary workaround, avoid using the guilt.log.[PID] file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.