Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2013-4420

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to...

5.8CVSS6.4AI score0.03277EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.21 views

CBL Mariner 2.0 Security Update: libtar (CVE-2013-4420)

The version of libtar installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2013-4420 advisory. - Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar...

5.8CVSS6.5AI score0.03277EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.16 views

RHEL 7 : libtar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libtar: missing validation of file names CVE-2013-4420 Note that Nessus has not tested for this issue but has inste...

5.8CVSS6.5AI score0.03277EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.18 views

RHEL 6 : libtar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libtar: missing validation of file names CVE-2013-4420 Note that Nessus has not tested for this issue but has inste...

5.8CVSS6.5AI score0.03277EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.34 views

CVE-2013-4420 affecting package libtar for versions less than 1.2.20-11

CVE-2013-4420 affecting package libtar for versions less than 1.2.20-11. A patched version of the package is available...

5.8CVSS6.4AI score0.03277EPSS
Exploits0
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.69 views

CVE-2013-4420 affecting package libtar for versions less than 1.2.20-8

CVE-2013-4420 affecting package libtar for versions less than 1.2.20-8. A patched version of the package is available...

5.8CVSS9.6AI score0.03277EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2014-0090)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS9.5AI score0.03277EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for libtar (EulerOS-SA-2021-2106)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6.6AI score0.03277EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2021/07/02 5:17 p.m.20 views

Advisory ROSA-SA-2021-1894

Software: libtar 1.2.11 OS: Cobalt 7.9 CVE-ID: CVE-2013-4420 CVE-Crit: HIGH CVE-DESC: Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files with a . dot in a created tar...

5.8CVSS7.4AI score0.03277EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/07/02 12:0 a.m.25 views

EulerOS Virtualization for ARM 64 3.0.2.0 : libtar (EulerOS-SA-2021-2106)

According to the version of the libtar package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and...

5.8CVSS6.4AI score0.03277EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/03/04 12:0 a.m.24 views

EulerOS Virtualization 3.0.6.6 : libtar (EulerOS-SA-2021-1491)

According to the version of the libtar package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow...

5.8CVSS6.5AI score0.03277EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2020/09/09 6:9 a.m.55 views

CVE-2013-4420 affecting package libtar 1.2.20-11

CVE-2013-4420 affecting package libtar 1.2.20-11. A patched version of the package is available...

5.8CVSS7.5AI score0.03277EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for libtar (EulerOS-SA-2019-2444)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6.9AI score0.03277EPSS
Exploits0References2
Mageia
Mageia
added 2014/02/21 6:18 p.m.42 views

Updated libtar package fixes security vulnerability

A directory traversal attack was reported against libtar, a C library for manipulating tar archives. The application does not validate the filenames inside the tar archive, allowing to extract files in arbitrary path. An attacker can craft a tar file to override files beyond the tarextractglob an...

5.8CVSS4.8AI score0.03277EPSS
Exploits0References2
OSV
OSV
added 2014/02/20 4:55 p.m.3 views

UBUNTU-CVE-2013-4420

Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. dot dot in a crafted tar file...

5.8CVSS6.8AI score0.03277EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2014/02/20 4:55 p.m.28 views

CVE-2013-4420

Multiple directory traversal vulnerabilities in the 1 tarextractglob and 2 tarextractall functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. dot dot in a crafted tar file...

5.8CVSS5.9AI score0.03277EPSS
Exploits0
CVE
CVE
added 2014/02/20 4:0 p.m.96 views

CVE-2013-4420

CVE-2013-4420 affects libtar 1.2.20 and earlier, where tar_extract_glob and tar_extract_all are vulnerable to directory traversal via .. in crafted tar files, allowing remote overwrite of arbitrary files. Several connected advisories confirm affected versions and note a patched version is availab...

5.8CVSS6.6AI score0.03277EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/02/19 12:0 a.m.33 views

Debian DSA-2863-1 : libtar - directory traversal

A directory traversal attack was reported against libtar, a C library for manipulating tar archives. The application does not validate the filenames inside the tar archive, allowing to extract files in arbitrary path. An attacker can craft a tar file to override files beyond the tarextractglob an...

5.8CVSS6.2AI score0.03277EPSS
Exploits0References5
Debian
Debian
added 2014/02/18 10:13 p.m.97 views

[SECURITY] [DSA 2863-1] libtar security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2863-1 [email protected] http://www.debian.org/security/ Luciano Bello February 18, 2014 http://www.debian.org/security/faq -...

5.8CVSS3.9AI score0.03277EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/02/17 12:0 a.m.19 views

Debian: Security Advisory (DSA-2863-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6.9AI score0.03277EPSS
Exploits0References3
Rows per page
Query Builder