CVE-2001-1267

Published: Sep 1, 2004

Modified: Aug 8, 2024

PUBLISHED

Description

Directory traversal vulnerability in GNU tar 1.13.19 and earlier allows local users to overwrite arbitrary files during archive extraction via a tar file whose filenames contain a .. (dot dot).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

47800

vendor-advisory

x_refsource_SUNALERT

RHSA-2002:096

vendor-advisory

x_refsource_REDHAT

20010712 SECURITY.NNOV: directory traversal and path globing in multiple archivers

mailing-list

x_refsource_BUGTRAQ

CLA-2002:538

vendor-advisory

x_refsource_CONECTIVA

archive-extraction-directory-traversal(10224)

vdb-entry

x_refsource_XF

RHSA-2002:138

vendor-advisory

x_refsource_REDHAT

MDKSA-2002:066

vendor-advisory

x_refsource_MANDRAKE

HPSBTL0209-068

vendor-advisory

x_refsource_HP

RHSA-2003:218

vendor-advisory

x_refsource_REDHAT

3024

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2001-1267

Description

Affected Products

References