958 matches found
php: memory corruption in phar_parse_tarfile caused by empty entry file name
An integer underflow flaw leading to out-of-bounds memory access was found in the way PHP's Phar extension parsed Phar archives. A specially crafted archive could cause PHP to crash or, possibly, execute arbitrary code when opened...
php: memory corruption in phar_parse_tarfile caused by empty entry file name
An integer underflow flaw leading to out-of-bounds memory access was found in the way PHP's Phar extension parsed Phar archives. A specially crafted archive could cause PHP to crash or, possibly, execute arbitrary code when opened...
PHP phar_parse_tarfile() function integer underflow vulnerability
PHP is a general-purpose web programming language. An integer underflow vulnerability exists in the PHP pharparsetarfile function, which allows remote attackers to construct a special Phar file that can be parsed by an application to trigger an overflow and execute arbitrary code...
Scientific Linux Security Update : python on SL5.x i386/x86_64
It was found that many applications embedding the Python interpreter did not specify a valid full path to the script or application when calling the PySysSetArgv API function, which could result in the addition of the current working directory to the module search path sys.path. A local attacker...
php: Integer overflow leading to heap-buffer overflow in the Phar extension
Integer overflow in the pharparsetarfile function in tar.c in the phar extension in PHP before 5.3.14 and 5.4.x before 5.4.4 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted tar file that triggers a heap-based buffer overflow...
PT-2012-1222 · Php +3 · Php +3
Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.3.14 PHP versions 5.4.x prior to 5.4.4 Description: The issue is related to errors in number processing in the PHP language interpreter extension. It may allow a remote attacker to execute arbitrary code or cause a...
RHEL 5 : python (RHSA-2011:0027)
Updated python packages that fix multiple security issues, several bugs, and add two enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which...
Low: Red Hat Security Advisory: python security, bug fix, and enhancement update
Updated python packages that fix multiple security issues, several bugs, and add two enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which...
CVE-2007-4559
Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...
Directory traversal
Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...
UBUNTU-CVE-2007-4559
Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...
AZL-6828 CVE-2007-4559 affecting package python3 for versions less than 3.9.19-1
Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...
AZL-6822 CVE-2007-4559 affecting package python2 for versions less than 2.7.18-8
Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...
CVE-2007-4559
Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...
CVE-2007-4559
Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...
CVE-2007-4559
Summary (fact-grounded) : The connected advisory describes a directory traversal vulnerability in Python's tarfile extraction path as used by Keras’ get_file() in keras.utils.get_file(), where extractall() is called without a security filter. The root cause is a PATH_MAX symlink resolution bug th...
PSF-2007-2 Directory path traversal in extract() and extractall() tarfile functions via '..' (dot dot) sequences
Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...
PT-2007-1155
Name of the Vulnerable Software and Affected Versions: Python tarfile module versions affected versions not specified Description: A directory traversal vulnerability in the extract and extractall functions of the tarfile module in Python allows user-assisted remote attackers to overwrite arbitra...