CVE-2006-0300

Currently unrated

Key Information:

Vendor: Gnu
Status: Tar
Vendor: CVE Published:; 24 February 2006

Summary

Buffer overflow in tar 1.14 through 1.15.90 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute code via unspecified vectors involving PAX extended headers.

References

http://www.trustix.org/errata/2006/0010

vendor-advisoryx_refsource_TRUSTIX

http://www.securityfocus.com/archive/1/430299/100/0/threaded

vendor-advisoryx_refsource_FEDORA

http://securitytracker.com/id?1015705

vdb-entryx_refsource_SECTRACK

EPSS Score

18% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 24, 2006
Vulnerability Reserved
Jan 18, 2006