Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2010-1160

Disclosure Date: April 16, 2010
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

GNU nano before 2.2.4 does not verify whether a file has been changed before it is overwritten in a file-save operation, which allows local user-assisted attackers to overwrite arbitrary files via a symlink attack on an attacker-owned file that is being edited by the victim.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

General Information

Technical Analysis