Lucene search
K

17 matches found

Circl
Circl
added 2025/06/13 4:4 p.m.9 views

CVE-2006-6097

creationtimestamp| type| source ---|---|--- 2025-06-13 16:04:38+00:00| seen| https://gist.github.com/jcgraybill/4d02c759a686e92ffbac57bd282aa297 2025-06-13 16:24:58+00:00| seen| https://gist.github.com/jcgraybill/6cb3c06b282e33c7d18ccfd5424b8ca5...

4CVSS5.8AI score0.11084EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.41 views

NewStart CGSL MAIN 4.05 : tar Multiple Vulnerabilities (NS-SA-2019-0153)

The remote NewStart CGSL host, running version MAIN 4.05, has tar packages installed that are affected by multiple vulnerabilities: - Buffer overflow in tar 1.14 through 1.15.90 allows user- assisted attackers to cause a denial of service application crash and possibly execute code via unspecifie...

7.5CVSS8AI score0.15155EPSS
Exploits8References7
OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.18 views

Slackware: Security Advisory (SSA:2006-335-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4CVSS6.4AI score0.11084EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.19 views

SLES9: Security update for tar

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: tar For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5016710 within the SuSE...

4CVSS6.4AI score0.11084EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.23 views

Gentoo Security Advisory GLSA 200612-10 (tar)

The remote host is missing updates announced in advisory GLSA 200612-10. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

4CVSS6.1AI score0.11084EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.17 views

Gentoo Security Advisory GLSA 200612-10 (tar)

The remote host is missing updates announced in advisory GLSA 200612-10. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4CVSS6.6AI score0.11084EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.30 views

Debian Security Advisory DSA 1223-1 (tar)

The remote host is missing an update to tar announced via advisory DSA 1223-1. Teemu Salmela discovered a vulnerability in GNU tar that could allow a malicious user to overwrite arbitrary files by inducing the victim to attempt to extract a specially crafted tar file containing a GNUTYPENAMES...

4CVSS0.11084EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.35 views

openSUSE 10 Security Update : tar (tar-2351)

This security update fixes a directory traversal in tar, where unpacked symlinks could be followed outside of the directory where the tar file is unpacked. CVE-2006-6097 This feature was made optional and needs to be enabled with a commandline option. %NASLMINLEVEL 70300 C Tenable Network Securit...

4CVSS7.1AI score0.11084EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2006/12/30 12:0 a.m.26 views

CentOS 3 / 4 : tar (CESA-2006:0749)

Updated tar packages that fix a path traversal flaw are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that...

4CVSS7.2AI score0.11084EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2006/12/19 10:47 p.m.33 views

Moderate: Red Hat Security Advisory: tar security update

Updated tar packages that fix a path traversal flaw are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The GNU tar program saves many files together in one archive and can restore individual files or all of the files from that...

4CVSS7AI score0.11084EPSS
Exploits1References2
Slackware Linux
Slackware Linux
added 2006/12/01 10:55 p.m.36 views

[slackware-security] tar

New tar packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and 11.0 to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2006-6097 Here are the details from the Slackware 11.0...

4CVSS7.4AI score0.11084EPSS
Exploits1
Debian
Debian
added 2006/12/01 4:26 p.m.30 views

[SECURITY] [DSA 1223-1] New tar packages fix arbitrary file overwrite

------------------------------------------------------------------------ Debian Security Advisory DSA-1223-1 [email protected] http://www.debian.org/security/ Noah Meyerhans December 01, 2006 - ------------------------------------------------------------------------ Package : tar Vulnerability...

4CVSS7.9AI score0.11084EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2006/11/24 6:7 p.m.34 views

CVE-2006-6097

GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPENAMES record with a symbolic link, which is not properly handled by the extractarchive function in extract.c and extractmangle function in...

4CVSS7.2AI score0.11084EPSS
Exploits1References2
OSV
OSV
added 2006/11/24 6:7 p.m.11 views

CVE-2006-6097

GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPENAMES record with a symbolic link, which is not properly handled by the extractarchive function in extract.c and extractmangle function in...

6.3AI score
Exploits0References43
CVE
CVE
added 2006/11/24 6:0 p.m.75 views

CVE-2006-6097

Summary: CVE-2006-6097 affects GNU tar (notably v1.15.1 and v1.16) due to improper handling of GNUTYPE_NAMES symlink records during extraction, enabling a user-assisted attacker to overwrite arbitrary files. Multiple advisories report the issue as a path-traversal vulnerability in tar extraction,...

4CVSS7.5AI score0.11084EPSS
Exploits1References43Affected Software1
Cvelist
Cvelist
added 2006/11/24 6:0 p.m.26 views

CVE-2006-6097

GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPENAMES record with a symbolic link, which is not properly handled by the extractarchive function in extract.c and extractmangle function in...

7.5AI score0.11084EPSS
Exploits1References43
Debian CVE
Debian CVE
added 2006/11/24 6:0 p.m.34 views

CVE-2006-6097

GNU tar 1.16 and 1.15.1, and possibly other versions, allows user-assisted attackers to overwrite arbitrary files via a tar file that contains a GNUTYPENAMES record with a symbolic link, which is not properly handled by the extractarchive function in extract.c and extractmangle function in...

4CVSS5AI score0.11084EPSS
Exploits1
Rows per page
Query Builder