CVE-2002-0157

Name of the Vulnerable Software and Affected Versions Nautilus versions 1.0.4 and earlier

Description The issue affects the confidentiality, integrity, and availability of protected information. It can be exploited remotely, leading to potential security breaches. The vulnerability allows local users to overwrite arbitrary files via a symlink attack on the .nautilus-metafile.xml metadata file.

Recommendations For Nautilus versions 1.0.4 and earlier, consider restricting access to the .nautilus-metafile.xml metadata file to prevent symlink attacks until a patch is available. As a temporary workaround, consider disabling the functionality that allows local users to interact with the .nautilus-metafile.xml file. At the moment, there is no information about a newer version that contains a fix for this vulnerability.