Lucene search

[email protected]NVD:CVE-2005-2541

HistoryAug 10, 2005 - 4:00 a.m.

CVE-2005-2541

2005-08-1004:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0.007

Percentile

80.4%

JSON

Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.

Affected configurations

Nvd

Node

gnutarMatch1.15.1

VendorProductVersionCPE
gnutar1.15.1cpe:2.3:a:gnu:tar:1.15.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gnu	tar	1.15.1	cpe:2.3:a:gnu:tar:1.15.1:::::::*

References

marc.info/?l=bugtraq&m=112327628230258&w=2

lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0.007

Percentile

80.4%

JSON

Related for NVD:CVE-2005-2541

cve1 cvelist1 debiancve1 nessus4 avleonov1