Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-6321

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Directory traversal vulnerability in the safernamesuffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended protection...

7.5CVSS7.7AI score0.15155EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.27 views

RHEL 6 : tar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tar: Bypassing the extract path name CVE-2016-6321 - tar: null-pointer dereference in paxdecodeheader in...

7.5CVSS6.9AI score0.15155EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.19 views

RHEL 5 : tar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tar: Bypassing the extract path name CVE-2016-6321 - tar: Infinite read loop in sparsedumpregion function...

7.5CVSS7.2AI score0.15155EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.77 views

RHEL 7 : tar (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tar: Bypassing the extract path name CVE-2016-6321 - tar: null-pointer dereference in paxdecodeheader in...

7.5CVSS7.3AI score0.15155EPSS
Exploits5References7
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2016-0386)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.15155EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2020/04/16 12:0 a.m.49 views

Huawei EulerOS: Security Advisory for tar (EulerOS-SA-2020-1449)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.15155EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/12/31 12:0 a.m.20 views

Photon OS 2.0: Tar PHSA-2019-2.0-0187

An update of the tar package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0187. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid132546;...

7.5CVSS7.9AI score0.15155EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/12/18 12:0 a.m.21 views

EulerOS 2.0 SP3 : tar (EulerOS-SA-2019-2673)

According to the version of the tar package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Directory traversal vulnerability in the safernamesuffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended...

7.5CVSS7.8AI score0.15155EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/12/04 12:0 a.m.20 views

EulerOS 2.0 SP2 : tar (EulerOS-SA-2019-2423)

According to the version of the tar package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Directory traversal vulnerability in the safernamesuffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended...

7.5CVSS7.8AI score0.15155EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/11/08 12:0 a.m.27 views

EulerOS 2.0 SP5 : tar (EulerOS-SA-2019-2192)

According to the version of the tar package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Directory traversal vulnerability in the safernamesuffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended...

7.5CVSS7.8AI score0.15155EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/10/11 12:0 a.m.21 views

Photon OS 1.0: Tar PHSA-2019-1.0-0252

An update of the tar package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0252. The text itself is copyright C VMware, Inc. include"compat.inc"; if description scriptid129788;...

7.5CVSS7.9AI score0.15155EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/10/07 12:0 a.m.18 views

Photon OS 1.0: Tar PHSA-2019-1.0-0255

An update of the tar package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0255. The text itself is copyright C VMware, Inc. include"compat.inc"; if description scriptid129686;...

7.5CVSS7.9AI score0.15155EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.41 views

NewStart CGSL MAIN 4.05 : tar Multiple Vulnerabilities (NS-SA-2019-0153)

The remote NewStart CGSL host, running version MAIN 4.05, has tar packages installed that are affected by multiple vulnerabilities: - Buffer overflow in tar 1.14 through 1.15.90 allows user- assisted attackers to cause a denial of service application crash and possibly execute code via unspecifie...

7.5CVSS8AI score0.15155EPSS
Exploits8References7
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:35 a.m.27 views

Security Bulletin: IBM Flex System Manager (FSM) is affected by tar vulnerabilities (CVE-2010-0624 CVE-2016-6321)

Summary Multiple security vulnerabilities have been identified in the tar command that is embedded in IBM FSM. This bulletin addresses these vulnerabilities. Vulnerability Details CVEID: CVE-2010-0624 DESCRIPTION: GNU Tar and GNU Cpio are vulnerable to a heap-based buffer overflow, caused by...

7.5CVSS0.5AI score0.15155EPSS
Exploits5Affected Software1
ALT Linux
ALT Linux
added 2017/03/28 12:0 a.m.27 views

Security fix for the ALT Linux 8 package tar version 1.29.0.19.d061-alt1

1.29.0.19.d061-alt1 built March 28, 2017 Dmitry V. Levin in task 180955 --- March 20, 2017 Dmitry V. Levin - tar: release128-39-gd02c81d - release129-19-gd06126f fixes: CVE-2016-6321. - tar: added --lz4 and --zstd options. - gnulib: v0.1-585-g2fda85e - v0.1-1209-g24b3216...

5CVSS2.9AI score0.15155EPSS
Exploits3
NVD
NVD
added 2016/12/09 10:59 p.m.18 views

CVE-2016-6321

Directory traversal vulnerability in the safernamesuffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended protection mechanism and write to arbitrary files via vectors related to improper sanitization of the filename parameter, aka POINTYFEATHER...

7.5CVSS5.9AI score0.15155EPSS
Exploits3References12
OSV
OSV
added 2016/12/09 10:59 p.m.35 views

CVE-2016-6321

Directory traversal vulnerability in the safernamesuffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended protection mechanism and write to arbitrary files via vectors related to improper sanitization of the filename parameter, aka POINTYFEATHER...

7.5CVSS5.8AI score
Exploits0References12
AlpineLinux
AlpineLinux
added 2016/12/09 10:0 p.m.40 views

CVE-2016-6321

Directory traversal vulnerability in the safernamesuffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended protection mechanism and write to arbitrary files via vectors related to improper sanitization of the filename parameter, aka POINTYFEATHER...

7.5CVSS7.6AI score0.15155EPSS
Exploits3
Cvelist
Cvelist
added 2016/12/09 10:0 p.m.36 views

CVE-2016-6321

Directory traversal vulnerability in the safernamesuffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended protection mechanism and write to arbitrary files via vectors related to improper sanitization of the filename parameter, aka POINTYFEATHER...

7.5AI score0.15155EPSS
Exploits3References12
CVE
CVE
added 2016/12/09 10:0 p.m.194 views

CVE-2016-6321

CVE-2016-6321 is a directory traversal vulnerability in GNU tar (safer_name_suffix) affecting tar 1.14–1.29. An attacker could bypass path sanitization and overwrite arbitrary files when extracting archives, via crafted file names (aka POINTYFEATHER). The issue is triggered by how tar removes off...

7.5CVSS7.3AI score0.15155EPSS
Exploits3References12Affected Software1
Rows per page
Query Builder