{"id":"CVE-2011-4617","details":"virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/.","aliases":["GHSA-3jhc-wjqf-5f2c","PYSEC-2011-23"],"modified":"2025-08-09T19:01:27Z","published":"2011-12-31T01:55:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/47240"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071638.html"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071643.html"},{"type":"WEB","url":"http://openwall.com/lists/oss-security/2011/12/19/2"},{"type":"WEB","url":"http://openwall.com/lists/oss-security/2011/12/19/4"},{"type":"WEB","url":"http://openwall.com/lists/oss-security/2011/12/19/5"},{"type":"WEB","url":"https://bitbucket.org/ianb/virtualenv/changeset/8be37c509fe5"}],"schema_version":"1.7.3"}