Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
References
Configurations
History
07 Nov 2023, 01:57
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2005-08-10 04:00
Updated : 2024-02-28 10:42
NVD link : CVE-2005-2541
Mitre link : CVE-2005-2541
CVE.ORG link : CVE-2005-2541
JSON object : View
Products Affected
gnu
- tar
CWE