CVE-2005-2541

Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:tar:1.15.1:*:*:*:*:*:*:*

History

07 Nov 2023, 01:57

Type Values Removed Values Added
References
  • {'url': 'https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c@%3Cissues.guacamole.apache.org%3E', 'name': '[guacamole-issues] 20210618 [jira] [Created] (GUACAMOLE-1368) Latest docker image fails security scans.', 'tags': [], 'refsource': 'MLIST'}
  • () https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E -

Information

Published : 2005-08-10 04:00

Updated : 2024-02-28 10:42


NVD link : CVE-2005-2541

Mitre link : CVE-2005-2541

CVE.ORG link : CVE-2005-2541


JSON object : View

Products Affected

gnu

  • tar