Scientific Linux Security Update : ccs on SL4.x i386/x86_64
Medium Nessus Plugin ID 60957
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionAn insecure temporary file use flaw was found in ccs_tool. A local attacker could use this flaw to conduct a symbolic link attack, allowing them to overwrite (with the output of ccs_tool) an arbitrary file writable by the victim running ccs_tool. (CVE-2008-6552)
SolutionUpdate the affected ccs and / or ccs-devel packages.