The installation script studioexpressinstall for Teradata Studio Express 15.12.00.00 creates files in /tmp insecurely. A malicious local user could create a symlink in /tmp and possibly clobber system files or perhaps elevate privileges.Referenceshttp://www.vapidlabs.com/advisory.php?v=174http://www.securityfocus.com/bid/94255
