maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.Referenceshttp://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496358http://secunia.com/advisories/32487https://exchange.xforce.ibmcloud.com/vulnerabilities/44841http://www.securityfocus.com/bid/30893
