InoculateIT ftpdownload.log Symbolic Link File Overwriting
Local Access Required
Loss of Availability
InoculateIT contains a flaw that allows a malicious local user overwrite arbitrary files on the system. The issue is due to the inocucmd utility using a static file name for a temporary file. If a local user creates a symlink from the static file name (/tmp/ftpdownload.log) to an arbitrary file on the system, InoculateIT will follow the link and overwrite the arbitrary file.
Upgrade to version 4.0 of the inocucmd program or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.