vdr before 1.2.6 does not securely create files, which allows attackers to overwrite arbitrary files.
https://exchange.xforce.ibmcloud.com/vulnerabilities/19066
http://www.securityfocus.com/bid/12356
http://www.gentoo.org/security/en/glsa/glsa-200501-42.xml
http://www.debian.org/security/2005/dsa-656
http://secunia.com/advisories/14066