9 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-7162
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The gfileremovedirectory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on ...
Mageia: Security Advisory (MGASA-2016-0313)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for file-roller (EulerOS-SA-2020-2135)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP3 : file-roller (EulerOS-SA-2020-2135)
According to the version of the file-roller packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The gfileremovedirectory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a...
CVE-2016-7162
The gfileremovedirectory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive...
CVE-2016-7162
The CVE-2016-7162 vulnerability affects GNOME File Roller, where the _g_file_remove_directory function in file-utils.c can be misused to delete arbitrary files via a symlink attack on a folder inside an archive. Affected versions are File Roller 3.5.4 through 3.20.2. The exploitation context is a...
openSUSE Security Update : file-roller (openSUSE-2016-1097)
This update for file-roller fixes the following issue : - CVE-2016-7162: Do not follow symlinks when deleting a folder recursively. boo997822, bgo698554 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securit...
Ubuntu: Security Advisory (USN-3074-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2016-7162
A path traversal flaw was found in file-roller. If a user were tricked into opening a specially crafted archive and clicking on a symbolic link, file deletion could occur...