Race condition in GNU nano before 2.2.4, when run by root to edit a file that is not owned by root, allows local user-assisted attackers to change the ownership of arbitrary files via vectors related to the creation of backup files.
No CVSS v3.1
No CVSS v3.0
Access Vector Local
Access Complexity High
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial
AV:L/AC:H/Au:N/C:P/I:P/A:P
Vendors | Products |
---|---|
Gnu |
|
Configuration 1 [-]
|
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2010-04-16T19:00:00Z
Updated: 2010-04-16T19:00:00Z
Reserved: 2010-03-29T00:00:00Z
Link: CVE-2010-1161
JSON object: View
NVD Information
Status : Analyzed
Published: 2010-04-16T19:30:00.493
Modified: 2010-06-07T04:00:00.000
Link: CVE-2010-1161
JSON object: View
Redhat Information
No data.
CWE