Vulnerability Name:

CCN-11230

Published:2000-12-17
Updated:2000-12-17
Summary:nano could allow a local attacker to launch a symlink attack. If the editor abnormally exits during a session, any changes being made in the current file are saved into a new file with ".save" appended to the file name. A local attacker could create a symbolic link from this file to another file on the system with the same owner/group write access to corrupt the linked file.
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:2.6 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:P)
2.3 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:H/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Consequences:File Manipulation
References:Source: CCN
Type: BID-2135
Nano Local File Overwrite Vulnerability

Source: XF
Type: UNKNOWN
nano-new-file-symlink(11230)

Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:gnu:nano:0.9.22:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.21:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.20:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.19:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.18:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.17:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.16:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.15:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.14:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.13:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.12:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.11:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.10:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.2:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.9.1:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.8.9:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.8.7:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.8.6:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.8.5:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.8.4:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.8.3:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.8.2:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.8.1:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.7.9:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.7.8:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.7.7:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.7.6:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.7.5:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.7.4:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.7.3:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.7.2:*:*:*:*:*:*:*
  • OR cpe:/a:gnu:nano:0.7.1:*:*:*:*:*:*:*
  • AND
  • cpe:/o:debian:debian_linux:2.2:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    gnu nano 0.9.22
    gnu nano 0.9.21
    gnu nano 0.9.20
    gnu nano 0.9.19
    gnu nano 0.9.18
    gnu nano 0.9.17
    gnu nano 0.9.16
    gnu nano 0.9.15
    gnu nano 0.9.14
    gnu nano 0.9.13
    gnu nano 0.9.12
    gnu nano 0.9.11
    gnu nano 0.9.10
    gnu nano 0.9.2
    gnu nano 0.9.1
    gnu nano 0.8.9
    gnu nano 0.8.7
    gnu nano 0.8.6
    gnu nano 0.8.5
    gnu nano 0.8.4
    gnu nano 0.8.3
    gnu nano 0.8.2
    gnu nano 0.8.1
    gnu nano 0.7.9
    gnu nano 0.7.8
    gnu nano 0.7.7
    gnu nano 0.7.6
    gnu nano 0.7.5
    gnu nano 0.7.4
    gnu nano 0.7.3
    gnu nano 0.7.2
    gnu nano 0.7.1
    debian debian linux 2.2