InstallAnywhere contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is due to the program creating insecure temporary files in the "/tmp" directory during installation, allowing for symlink attacks. This flaw may lead to a loss of confidentiality and/or integrity.
Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: boot the system into single user mode only and ensure no other users are logged in during the installation.