AI Score
Confidence
Low
EPSS
Percentile
13.1%
The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory.
seclists.org/fulldisclosure/2011/Oct/804
www.exploit-db.com/exploits/18147
www.openwall.com/lists/oss-security/2011/10/28/16
www.ubuntu.com/usn/USN-1308-1
bugs.debian.org/cgi-bin/bugreport.cgi?bug=632862