Detailed analysis of security vulnerabilities
The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.