CVE-1999-1572
EPSS 0.14%cpio - broken file permissions
發布日:1996/7/16修改日:2026/4/28
描述
cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and allows local users to read or overwrite those files.
受影響套件(2)
- Debian/cpiofrom 0, < 2.5-1.2
- Debian/cpiofrom 0, < 2.4.2-39woody1