CyberSec.Space Logo
返回 CVE 浏览器

CVE-2005-2541

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0580%
EPSS Percentile35.32th
Published2005年8月10日
Last Modified2026年4月16日

Vulnerability Description

Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.

Affected Platforms (CPE)

📦
Gnu

Tar

= 1.15.1

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=112327628230258&w=2
🔗 https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E
🔗 http://marc.info/?l=bugtraq&m=112327628230258&w=2
🔗 https://lists.apache.org/thread.html/rc713534b10f9daeee2e0990239fa407e2118e4aa9e88a7041177497c%40%3Cissues.guacamole.apache.org%3E

相关漏洞威胁

CVE-2014-349610.0

cartridge_repository.rb in OpenShift Origin and Enterprise 1.2.8 through 2.1.1 allows remote attackers to execute arbitrary comman...

CVE-2008-714410.0

Multiple unspecified vulnerabilities in RARLAB WinRAR before 3.71 have unknown impact and attack vectors related to crafted (1) AC...

CVE-2021-375559.8

TX9 Automatic Food Dispenser v3.2.57 devices allow access to a shell as root/superuser, a related issue to CVE-2019-16734. To conn...

CVE-2019-183709.8

An issue was discovered on Xiaomi Mi WiFi R3G devices before 2.28.23-stable. The backup file is in tar.gz format. After uploading,...