Описание
Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-2541
- https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E
- https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c@%3Cissues.guacamole.apache.org%3E
- http://marc.info/?l=bugtraq&m=112327628230258&w=2
EPSS
Процентиль: 81%
0.0153
Низкий
CVE ID
Связанные уязвимости
CVSS3: 7
redhat
больше 20 лет назад
Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
nvd
больше 20 лет назад
Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
debian
больше 20 лет назад
Tar 1.15.1 does not properly warn the user when extracting setuid or s ...
EPSS
Процентиль: 81%
0.0153
Низкий