Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2002-0396

Malware in sbrugna...

5CVSS7.4AI score0.03589EPSS
Exploits0References23
Amazon
Amazon
added 2025/04/01 12:0 a.m.13 views

Medium: python

Issue Overview: Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267. CVE-2007-4559...

9.8CVSS7.2AI score0.27095EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2025/04/01 12:0 a.m.26 views

Amazon Linux 2023 : python3.11-pip, python3.11-pip-wheel (ALAS2023-2025-924)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-924 advisory. Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence...

9.8CVSS7.8AI score0.27095EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2025/04/01 12:0 a.m.19 views

Amazon Linux 2 : python38-pip (ALASPYTHON3.8-2025-018)

The version of python38-pip installed on the remote host is prior to 21.0.1-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2PYTHON3.8-2025-018 advisory. Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows...

9.8CVSS7.8AI score0.27095EPSS
Exploits4References4
RubySec
RubySec
added 2016/08/22 12:0 a.m.36 views

Archive-Tar-Minitar Directory Traversal Vulnerability

Minitar allows attackers to overwrite arbitrary files during archive extraction via a .. dot dot in an extracted filename. Analogous vulnerabilities for unzip and tar: https://www.cvedetails.com/cve/CVE-2001-1268/ and http://www.cvedetails.com/cve/CVE-2001-1267/ Credit: ecneladis...

7.5CVSS4.5AI score0.04742EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2007/08/28 4:0 a.m.20 views

CVE-2007-4559

Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...

9.6AI score0.27095EPSS
Exploits3References9
Prion
Prion
added 2007/08/28 1:17 a.m.102 views

Directory traversal

Directory traversal vulnerability in the 1 extract and 2 extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. dot dot sequence in filenames in a TAR archive, a related issue to CVE-2001-1267...

6.8CVSS9.2AI score0.27095EPSS
Exploits4References6Affected Software1
CVE
CVE
added 2004/09/01 4:0 a.m.126 views

CVE-2001-1267

The CVE-2001-1267 entry describes a directory traversal in GNU tar

2.1CVSS6.5AI score0.01069EPSS
Exploits1References11Affected Software1
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.32 views

CVE-2001-1267

Directory traversal vulnerability in GNU tar 1.13.19 and earlier allows local users to overwrite arbitrary files during archive extraction via a tar file whose filenames contain a .. dot dot...

6.5AI score0.01069EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.61 views

RHEL 2.1 : unzip (RHSA-2002:138)

The unzip and tar utilities contain vulnerabilities which can allow arbitrary files to be overwritten during archive extraction. The unzip and tar utilities are used for dealing with archives, which are multiple files stored inside of a single file. A directory traversal vulnerability in unzip...

5CVSS6.9AI score0.03589EPSS
Exploits3References12
CVE
CVE
added 2002/10/01 4:0 a.m.64 views

CVE-2002-0399

CVE-2007-4559 is a directory traversal vulnerability in the tarfile module of Python, allowing a tar archive containing a .. sequence to overwrite arbitrary files during extraction. The issue is referenced in multiple Nessus advisories (e.g., Alibaba Cloud Linux 3 advisory ALINUX3-SA-2024:0040 an...

5CVSS7.3AI score0.03589EPSS
Exploits0References18Affected Software1
Rows per page
Query Builder