Back to search
CVE-2016-4007
Published: Apr 13, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple unspecified vulnerabilities in the obs-service-extract_file package before 0.3-5.1 in openSUSE Leap 42.1 and before 0.3-3.1 in openSUSE 13.2 allow attackers to execute arbitrary commands via a service definition, related to executing unzip with "illegal options."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
openSUSE-SU-2016:0521
vendor-advisory
x_refsource_SUSE
SUSE-SU-2016:1839
vendor-advisory
x_refsource_SUSE
https://build.opensuse.org/request/show/361096
x_refsource_CONFIRM
openSUSE-SU-2016:1660
vendor-advisory
x_refsource_SUSE
openSUSE-SU-2016:1659
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now