CVE-2002-1216

Currently unrated

Key Information:

Vendor: Gnu
Status: Tar
Vendor: CVE Published:; 28 October 2002

Summary

GNU tar 1.13.19 and other versions before 1.13.25 allows remote attackers to overwrite arbitrary files via a symlink attack, as the result of a modification that effectively disabled the security check.

References

http://www.redhat.com/support/errata/RHSA-2002-096.html

vendor-advisoryx_refsource_REDHAT

http://marc.info/?l=bugtraq&m=103419290219680&w=2

mailing-listx_refsource_BUGTRAQ

http://www.iss.net/security_center/static/10224.php

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Oct 28, 2002
Vulnerability Reserved
Oct 15, 2002