CVE-2005-2541

Currently unrated

Key Information:

Vendor: Gnu
Status: Tar
Vendor: CVE Published:; 10 August 2005

Summary

Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.

References

http://marc.info/?l=bugtraq&m=112327628230258&w=2

mailing-listx_refsource_BUGTRAQ

https://lists.apache.org/thread.html/rc713534b10f9daeee2e...

mailing-listx_refsource_MLIST

Timeline

Vulnerability published
Aug 10, 2005
Vulnerability Reserved
Aug 10, 2005