Tar@1.13.19 Security Vulnerabilities and Issues — Tar@1.13.19 CVE List

Lucene search

GnuTar1.13.19

3 matches found

CVE•added 2010/03/15 1:28 p.m.•83 views

CVE-2010-0624

Heap-based buffer overflow in the rmt_read__ function in lib/rtapelib.c in the rmt client functionality in GNU tar before 1.23 and GNU cpio before 2.11 allows remote rmt servers to cause a denial of service (memory corruption) or possibly execute arbitrary code by sending more data than was request...

6.8CVSS8.1AI score0.01858EPSS

CVE•added 2007/08/25 12:17 a.m.•58 views

CVE-2007-4131

Directory traversal vulnerability in the contains_dot_dot function in src/names.c in GNU tar allows user-assisted remote attackers to overwrite arbitrary files via certain //.. (slash slash dot dot) sequences in directory symlinks in a TAR archive.

6.8CVSS7.8AI score0.08719EPSS

CVE•added 2002/10/28 5:0 a.m.•43 views

CVE-2002-1216

GNU tar 1.13.19 and other versions before 1.13.25 allows remote attackers to overwrite arbitrary files via a symlink attack, as the result of a modification that effectively disabled the security check.

5CVSS7.4AI score0.00751EPSS