Published: 28/08/2007 Updated: 08/03/2011
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote malicious users to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR archive, a related issue to CVE-2001-1267.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

python software foundation python

Vendor Advisories

Debian Bug report logs - #591995 babiloo: insecure downloading and unpacking of dictionary files Package: babiloo; Maintainer for babiloo is Python Applications Packaging Team <python-apps-team@listsaliothdebianorg>; Source for babiloo is src:babiloo (PTS, buildd, popcon) Reported by: Jakub Wilk <jwilk@debianorg> ...

Github Repositories

Creosote Creosote is our solution to searching for the tarfile vulnerability described by CVE-2007-4559 The tool recursively traverses the given directory searching for python files When the tool finds python files it scans them for the tarfile module and then parses the code into an AST to look for vulnerable code Creosote categorizes all found vulnerabilities under 3 main

Recent Articles

Alert: 15-year-old Python tarfile flaw lurks in 'over 350,000' code projects
The Register • Thomas Claburn • 01 Jan 1970

Topics Security Off-Prem On-Prem Software Offbeat Vendor Voice Vendor Voice Resources Oh cool, a 5,500-day security hole

At least 350,000 open source projects are believed to be potentially vulnerable to exploitation via a Python module flaw that has remained unfixed for 15 years.
On Tuesday, security firm Trellix said its threat researchers had encountered a vulnerability in Python's tarfile module, which provides a way to read and write compressed bundles of files known as tar archives. Initially, the bug hunters thought they'd chanced upon a zero-day.
It turned out to be about a 5,500-day issue: the...