7 matches found
CentOS 3 / 4 : sharutils (CESA-2005:377)
An updated sharutils package is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format. A stack based overflow bug was found i...
CVE-2005-0990
unshar unshar.c in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file...
CVE-2005-0990
unshar unshar.c in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file...
RHEL 4 : sharutils (RHSA-2005:377)
The remote Redhat Enterprise Linux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2005:377 advisory. The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format. A stack based overflow bu...
CVE-2005-0990
CVE-2005-0990 affects sharutils 4.2.1, specifically unshar.c, where a local user can perform a symlink attack on the unsh.X temporary file to overwrite arbitrary files. This is described across multiple sources (NVD entry for CVE-2005-0990, Debian/OSV references, and Red Hat/CentOS advisories) an...
CVE-2005-0990
unshar unshar.c in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file...
CVE-2005-0990
unshar unshar.c in sharutils 4.2.1 allows local users to overwrite arbitrary files via a symlink attack on the unsh.X temporary file...