{
  "modified": "2025-08-09T19:01:28Z",
  "published": "2006-04-11T10:02:00Z",
  "id": "CVE-2006-1695",
  "details": "The fbgs script in the fbi package 2.01-1.4, when the TMPDIR environment variable is not defined, allows local users to overwrite arbitrary files via a symlink attack on temporary files in /var/tmp/fbps-[PID].",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/19559"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/19766"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/20166"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/21459"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.debian.org/security/2006/dsa-1068"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.novell.com/linux/security/advisories/2006_19_sr.html"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.vupen.com/english/advisories/2006/1281"
    },
    {
      "type": "WEB",
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=361370"
    },
    {
      "type": "WEB",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200604-13.xml"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/17436"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25729"
    }
  ]
}