Debian Security Advisory DSA 540-1 – A The mysqlhotcopy script in mysql 4.0.20 and earlier, when using the scp method from the mysql-server package, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/34087/dsa-540.txt
Source: https://packetstormsecurity.com/files/34087/dsa-540.txt.html