Lucene search

K

[email protected]NVD:CVE-2016-6321

HistoryDec 09, 2016 - 10:59 p.m.

CVE-2016-6321

2016-12-0922:59:00

CWE-22

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

5.9 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.1%

Directory traversal vulnerability in the safer_name_suffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended protection mechanism and write to arbitrary files via vectors related to improper sanitization of the file_name parameter, aka POINTYFEATHER.

Affected configurations

NVD

Node

gnutarMatch1.14

OR

gnutarMatch1.15

OR

gnutarMatch1.15.1

OR

gnutarMatch1.15.90

OR

gnutarMatch1.15.91

OR

gnutarMatch1.16

OR

gnutarMatch1.16.1

OR

gnutarMatch1.17

OR

gnutarMatch1.18

OR

gnutarMatch1.19

OR

gnutarMatch1.20

OR

gnutarMatch1.21

OR

gnutarMatch1.22

OR

gnutarMatch1.23

OR

gnutarMatch1.24

OR

gnutarMatch1.25

OR

gnutarMatch1.26

OR

gnutarMatch1.27

OR

gnutarMatch1.27.1

OR

gnutarMatch1.28

OR

gnutarMatch1.29

References

git.savannah.gnu.org/cgit/tar.git/commit/?id=7340f67b9860ea0531c1450e5aa261c50f67165d

lists.gnu.org/archive/html/bug-tar/2016-10/msg00016.html

packetstormsecurity.com/files/139370/GNU-tar-1.29-Extract-Pathname-Bypass.html

seclists.org/fulldisclosure/2016/Oct/102

seclists.org/fulldisclosure/2016/Oct/96

www.debian.org/security/2016/dsa-3702

www.securityfocus.com/bid/93937

www.ubuntu.com/usn/USN-3132-1

lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

security.gentoo.org/glsa/201611-19

sintonen.fi/advisories/tar-extract-pathname-bypass.proper.txt

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

5.9 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.1%

Related for NVD:CVE-2016-6321

nessus27 openvas13 debian3 cve1 osv3 alpinelinux1 cvelist1 gentoo1 cloudfoundry1 redhatcve1 ubuntucve1 mageia1 altlinux1 ubuntu1 seebug1 packetstorm1 archlinux1 debiancve1 veracode1 prion1 ibm1 photon5