If an attacker can convince a user to invoke uudecode on a malicious file without reviewing the included file name, the user could overwrite any file.
If the victim has root privileges, the attacker can exploit this vulnerability to overwrite arbitrary files. With respect to symbolic links and named pipes, attackers who exploit this vulnerability can alter the normal operation of system scripts and running processes, significantly increasing the risk of system compromise.
Users should install the latest packages.
For details, click here.