script command in the util-linux package before 2.11n allows local users to overwrite arbitrary files by setting a hardlink from the typescript log file to any file on the system, then having root execute the script command.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | n/a |