CVE-2005-1918
EPSS 2.1%發布日:2005/12/31修改日:2026/4/28
也稱為:DEBIAN-CVE-2005-1918
描述
The original patch for a GNU tar directory traversal vulnerability (CVE-2002-0399) in Red Hat Enterprise Linux 3 and 2.1 uses an "incorrect optimization" that allows user-assisted attackers to overwrite arbitrary files via a crafted tar file, probably involving "/../" sequences with a leading "/".
受影響套件(1)
- Debian/tarfrom 0, < 1.14-2.2