On Fri, Apr 27, Progeny Security Team wrote:
> NEdit, a popular GUI editor, insecurely opens a file in /tmp for
> printing purposes. This vulnerability could be used by a local
> attacker to cause a privileged user to unwittingly overwrite a file
> (via a symbolic link) to which the user has write access.
With google search for 'nedit security' I found this:
http://www.nedit.org/archives/develop/2001-Feb/0391.html
It looks like that NEdit has also problems when creating incremental backups
and backup files (.bck) (If somebody can create symlinks in the same
directory).
-Jarno
