CVE-2001-0556 Information

Description

The Nirvana Editor (NEdit) 5.1.1 and earlier allows a local attacker to overwrite other users’ files via a symlink attack on (1) backup files or (2) temporary files used when nedit prints a file or portions of a file.

Reference

http://www.debian.org/security/2001/dsa-053 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-042.php3 http://www.nedit.org/archives/develop/2001-Feb/0391.html http://www.novell.com/linux/security/advisories/2001_014_nedit.html http://www.redhat.com/support/errata/RHSA-2001-061.html http://www.securityfocus.com/archive/1/180237 http://www.securityfocus.com/bid/2667