Race Condition Vulnerability in GNU Nano by GNU
CVE-2010-1161
Currently unrated
Summary
The vulnerability in GNU Nano before version 2.2.4 occurs when the editor is run as root to edit files not owned by root, creating a race condition. This allows a local user-assisted attacker to exploit the situation and change the ownership of arbitrary files by manipulating the creation of backup files during the editing process. Ensuring proper usage and user permissions can help mitigate the risks associated with this vulnerability.
References
Timeline
Vulnerability published
Vulnerability Reserved