Multiple directory traversal vulnerabilities in GNU binutils 2.24 and previous versions allow local users to delete arbitrary files via a .. (dot dot) or full path name in an archive to (1) strip or (2) objcopy or create arbitrary files via (3) a .. (dot dot) or full path name in an archive to ar.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.10 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 10.04 |
||
gnu binutils |
||
fedoraproject fedora 20 |
||
fedoraproject fedora 21 |
||
fedoraproject fedora 19 |