Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libarchive libarchive vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2008-5302
Race condition in the rmtree function in File::Path 1.08 and 2.07 (lib/File/Path.pm) in Perl 5.8.8 and 5.10.0 allows local users to create arbitrary setuid binaries via a symlink attack, a different vulnerability than CVE-2005-0448, CVE-2004-0452, and CVE-2008-2827. NOTE: this is...
Perl File\\ \\
6.8
CVSSv2
CVE-2007-4829
Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and previous versions allows user-assisted remote malicious users to overwrite arbitrary files via a TAR archive that contains a file whose name is an absolute path or has ".." sequences.
Archive\\ \\ Tar Project
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 7.10
NA
CVE-2024-26256
libarchive Remote Code Execution Vulnerability
1 Article
5
CVSSv2
CVE-2008-1927
Double free vulnerability in Perl 5.8.8 allows context-dependent malicious users to cause a denial of service (memory corruption and crash) via a crafted regular expression containing UTF8 characters. NOTE: this issue might only be present on certain operating systems.
Perl Perl 5.8.8
4.3
CVSSv2
CVE-2017-15874
archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to a read access violation.
Busybox Busybox 1.27.2
NA
CVE-2024-20697
Windows Libarchive Remote Code Execution Vulnerability
Microsoft Windows 11 22h2
Microsoft Windows 11 23h2
Microsoft Windows Server 2022 23h2 -
NA
CVE-2024-20696
Windows Libarchive Remote Code Execution Vulnerability
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows Server 2022 23h2
Microsoft Windows 11 23h2
Microsoft Windows 10 1809
Microsoft Windows 11 21h2
Microsoft Windows 10 21h2
Microsoft Windows 11 22h2
Microsoft Windows 10 22h2
1 Github repository
5
CVSSv2
CVE-2006-5680
The libarchive library in FreeBSD 6-STABLE after 2006-09-05 and prior to 2006-11-08 allows context-dependent malicious users to cause a denial of service (CPU consumption) via a malformed archive that causes libarchive to skip a region past the actual end of the archive, which tr...
Freebsd Freebsd 6
8.8
CVSSv2
CVE-2015-6984
libarchive in Apple OS X prior to 10.11.1 allows malicious users to write to arbitrary files via a crafted app that conducts an unspecified symlink attack.
Apple Mac Os X
9.3
CVSSv2
CVE-2016-4736
libarchive in Apple OS X prior to 10.12 allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted file.
Apple Mac Os X
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »