Mandrake Linux Security Advisory : gnucash (MDKSA-2007:046)
Low Nessus Plugin ID 24688
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionGnucash 2.0.4 and earlier allows local users to overwrite arbitrary files via a symlink attack on the (1) gnucash.trace, (2) qof.trace, and (3) qof.trace.[PID] temporary files.
Updated package have been patched to correct this issue.
SolutionUpdate the affected packages.