Vulnerabilities

CVE-2002-0399

by Fred · 01/10/2002

Directory traversal vulnerability in GNU tar 1.13.19 through 1.13.25, and possibly later versions, allows attackers to overwrite arbitrary files during archive extraction via a (1) "/.." or (2) "./.." string, which removes the leading slash but leaves the "..", a variant of CVE-2001-1267.

Date published : 2002-10-01

http://www.securityfocus.com/bid/5834

http://marc.info/?l=bugtraq&m=103419290219680&w=2

Related

Tags: Cybersecurity Alert