CVE-2005-2541

Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:tar:1.15.1:*:*:*:*:*:*:*

History

20 Nov 2024, 23:59

Type Values Removed Values Added
References () http://marc.info/?l=bugtraq&m=112327628230258&w=2 - () http://marc.info/?l=bugtraq&m=112327628230258&w=2 -
References () https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E - () https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E -

07 Nov 2023, 01:57

Type Values Removed Values Added
References
  • {'url': 'https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c@%3Cissues.guacamole.apache.org%3E', 'name': '[guacamole-issues] 20210618 [jira] [Created] (GUACAMOLE-1368) Latest docker image fails security scans.', 'tags': [], 'refsource': 'MLIST'}
  • () https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E -

Information

Published : 2005-08-10 04:00

Updated : 2024-11-20 23:59


NVD link : CVE-2005-2541

Mitre link : CVE-2005-2541

CVE.ORG link : CVE-2005-2541


JSON object : View

Products Affected

gnu

  • tar