CVE-2016-7162

Опубликовано: 26 сент. 2016

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

The _g_file_remove_directory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive.

Релиз	Статус	Примечание
devel	not-affected	3.21.90-0ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [3.10.2.1-0ubuntu4.2]]
esm-infra/xenial	released	3.16.5-0ubuntu1.2
precise	not-affected	3.4.1-0ubuntu1
trusty	released	3.10.2.1-0ubuntu4.2
trusty/esm	DNE	trusty was released [3.10.2.1-0ubuntu4.2]
upstream	released	3.20.3
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	3.16.5-0ubuntu1.2

Показывать по

Ссылки на источники

EPSS

Процентиль: 78%

0.01151

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2016-7162

CVSS3: 5.5

redhat

больше 9 лет назад

The _g_file_remove_directory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive.

CVE-2016-7162

CVSS3: 7.5

nvd

больше 9 лет назад

The _g_file_remove_directory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive.

CVE-2016-7162

CVSS3: 7.5

debian

больше 9 лет назад

The _g_file_remove_directory function in file-utils.c in File Roller 3 ...

openSUSE-SU-2016:2338-1

suse-cvrf

больше 9 лет назад

Security update for file-roller

GHSA-g3mg-grgw-vqfv

CVSS3: 7.5

github

больше 3 лет назад

The _g_file_remove_directory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive.

EPSS

Процентиль: 78%

0.01151

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2016-7162

Описание

Пакет file-roller

Ссылки на источники

Связанные уязвимости