Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-fg93-983g-7p2v

Опубликовано: 03 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete.

Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete.

EPSS

Процентиль: 23%
0.00075
Низкий

Связанные уязвимости

CVSS3: 4.7
ubuntu
больше 20 лет назад

Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete.

redhat
больше 20 лет назад

Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete.

CVSS3: 4.7
nvd
больше 20 лет назад

Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete.

CVSS3: 4.7
debian
больше 20 лет назад

Race condition in cpio 2.6 and earlier allows local users to modify pe ...

EPSS

Процентиль: 23%
0.00075
Низкий