Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-1160
HistoryApr 16, 2010 - 7:30 p.m.

CVE-2010-1160

2010-04-1619:30:00
CWE-59
[email protected]
web.nvd.nist.gov
24
cve-2010-1160
gnu nano
file-save operation
symlink attack
security vulnerability

5.9 Medium

AI Score

Confidence

Low

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

GNU nano before 2.2.4 does not verify whether a file has been changed before it is overwritten in a file-save operation, which allows local user-assisted attackers to overwrite arbitrary files via a symlink attack on an attacker-owned file that is being edited by the victim.

Related

ubuntucve 1
prion 1
debiancve 1
openvas 8
securityvulns 2
fedora 4
nessus 5
gentoo 1
ubuntucve
ubuntucve
CVE-2010-1160
2010-04-16 00:00:00
prion
prion
Design/Logic Flaw
2010-04-16 19:30:00
debiancve
debiancve
CVE-2010-1160
2010-04-16 19:30:00
openvas
openvas
Fedora Update for nano FEDORA-2010-6776
2010-05-07 00:00:00
Fedora Update for nano FEDORA-2010-6775
2010-05-07 00:00:00
Gentoo Security Advisory GLSA 201006-08 (nano)
2011-03-09 00:00:00
securityvulns
securityvulns
[ GLSA 201006-08 ] nano: Multiple vulnerabilities
2010-06-02 00:00:00
nano editor symbolic links vulnerability
2010-06-02 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: nano-2.0.9-1.fc11
2010-05-04 06:10:52
[SECURITY] Fedora 13 Update: nano-2.2.4-1.fc13
2010-04-30 23:41:33
[SECURITY] Fedora 12 Update: nano-2.0.9-7.fc12
2010-09-09 01:11:10
nessus
nessus
Fedora 12 : nano-2.0.9-6.fc12 (2010-6775)
2010-07-01 00:00:00
GLSA-201006-08 : nano: Multiple vulnerabilities
2010-06-02 00:00:00
Fedora 11 : nano-2.0.9-1.fc11 (2010-6776)
2010-07-01 00:00:00
gentoo
gentoo
nano: Multiple vulnerabilities
2010-06-01 00:00:00

5.9 Medium

AI Score

Confidence

Low

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:M/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for CVE-2010-1160
ubuntucve1prion1debiancve1openvas8securityvulns2fedora4nessus5gentoo1