CVE-2000-1178
published 2001-01-09CVE-2000-1178: Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of…
PriorityP48medium5.5CVSS 3.1
AVLACLPRLUINSUCNIHAN
EPSS
0.56%
42.4th percentile
Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| joseph_allen | joe | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:P/A:N
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2000-11-16·CVSS 5.5
CVE-2000-1178 [MEDIUM] security flaw
security flaw
Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes.
Statement: This issue was fixed in the following products:
- Red Hat Linux 5.2 - RHSA-2000:110 (2000-11-20)
- Red Hat Linux 6.0 - RHSA-2000:110 (2000-11-20)
- Red Hat Linux 6.1 - RHSA-2000:110 (2000-11-20)
- Red Hat Linux 6.2 - RHSA-2000:110 (2000-11-20)
- Red Hat Linux 7.0 - RHSA-2000:110 (2000-11-20)
GHSA
GHSA-r44p-pj93-6hhq: Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the f
ghsa_unreviewed·2022-04-30
CVE-2000-1178 [LOW] CWE-59 GHSA-r44p-pj93-6hhq: Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the f
Joe text editor follows symbolic links when creating a rescue copy called DEADJOE during an abnormal exit, which allows local users to overwrite the files of other users whose joe session crashes.
No detection rules found.
CWE
Improper Link Resolution Before File Access ('Link Following')
mitre_cwe
CWE-59 Improper Link Resolution Before File Access ('Link Following')
CWE-59: Improper Link Resolution Before File Access ('Link Following')
The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Background: Soft links are a UNIX term that is synonymous with simple shortcuts on Windows-based platforms.
Modes of Introduction:
Phase: Implementation
Note: REALIZATION: This weakness is caused during implementation of an architectural security tactic.
Common Consequences:
Scope: Confidentiality, Integrity, Access Control. Impact: Read Files or Directories, Modify Files or Directories, Bypass Protection Mechanism. An attacker may be able to traverse the file system to unintended locations and read or overwrite the contents of unexpe
CWE
UNIX Symbolic Link (Symlink) Following
mitre_cwe
CWE-61 UNIX Symbolic Link (Symlink) Following
CWE-61: UNIX Symbolic Link (Symlink) Following
The product, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the product to operate on unauthorized files.
A product that allows UNIX symbolic links (symlink) as part of paths whether in internal code or through user input can allow an attacker to spoof the symbolic link and traverse the file system to unintended locations or access arbitrary files. The symbolic link can permit an attacker to read/write/corrupt a file that they originally did not have permissions to access.
Modes of Introduction:
Phase: Implementation
Note: These are typically reported for temporary files or privileged
http://archives.neohapsis.com/archives/bugtraq/2000-11/0227.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000356http://marc.info/?l=bugtraq&m=97500174210821&w=2http://www.debian.org/security/2000/20001201http://www.linux-mandrake.com/en/security/MDKSA-2000-072.php3http://www.redhat.com/support/errata/RHSA-2000-110.htmlhttp://www.securityfocus.com/bid/1959https://exchange.xforce.ibmcloud.com/vulnerabilities/5546http://archives.neohapsis.com/archives/bugtraq/2000-11/0227.htmlhttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000356http://marc.info/?l=bugtraq&m=97500174210821&w=2http://www.debian.org/security/2000/20001201http://www.linux-mandrake.com/en/security/MDKSA-2000-072.php3http://www.redhat.com/support/errata/RHSA-2000-110.htmlhttp://www.securityfocus.com/bid/1959https://exchange.xforce.ibmcloud.com/vulnerabilities/5546
2001-01-09
Published