Published: 07/06/2018 Updated: 24/08/2020

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 572

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P

In Perl up to and including 5.26.2, the Archive::Tar module allows remote malicious users to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name.

Vulnerable Product	Search on Vulmon	Subscribe to Product
canonical ubuntu linux 18.04
canonical ubuntu linux 17.10
canonical ubuntu linux 16.04
canonical ubuntu linux 14.04
canonical ubuntu linux 12.04
debian debian linux 8.0
debian debian linux 9.0
perl perl
archive\\ \\ tar_project
apple mac os x
netapp data ontap edge -
netapp snap creator framework -
netapp oncommand workflow automation -
netapp snapdrive -

Synopsis Moderate: perl-Archive-Tar security update Type/Severity Security Advisory: Moderate Topic An update for perl-Archive-Tar is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CV ...

Debian Bug report logs - #900834 perl: CVE-2018-12015: Archive::Tar: directory traversal Package: src:perl; Maintainer for src:perl is Niko Tyni <ntyni@debianorg>; Reported by: Jakub Wilk <jwilk@jwilknet> Date: Tue, 5 Jun 2018 17:06:01 UTC Severity: grave Tags: confirmed, security, upstream Found in versions perl ...

Perl could be made to overwrite arbitrary files if it received a specially crafted archive file ...

Jakub Wilk discovered a directory traversal flaw in the Archive::Tar module, allowing an attacker to overwrite any file writable by the extracting user via a specially crafted tar archive For the oldstable distribution (jessie), this problem has been fixed in version 5202-3+deb8u11 For the stable distribution (stretch), this problem has been fi ...

It was found that the Archive::Tar module did not properly sanitize symbolic links when extracting tar archives An attacker, able to provide a specially crafted archive for processing, could use this flaw to write or overwrite arbitrary files in the context of the Perl interpreter(CVE-2018-12015) ...

It was found that the Archive::Tar module did not properly sanitize symbolic links when extracting tar archives An attacker, able to provide a specially crafted archive for processing, could use this flaw to write or overwrite arbitrary files in the context of the Perl interpreter ...

CWE-59 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=900834 http://www.securitytracker.com/id/1041048 https://www.debian.org/security/2018/dsa-4226 http://www.securityfocus.com/bid/104423 https://usn.ubuntu.com/3684-2/https://usn.ubuntu.com/3684-1/https://security.netapp.com/advisory/ntap-20180927-0001/https://support.apple.com/kb/HT209600 https://seclists.org/bugtraq/2019/Mar/42 http://seclists.org/fulldisclosure/2019/Mar/49 https://access.redhat.com/errata/RHSA-2019:2097 https://www.oracle.com/security-alerts/cpujul2020.html https://access.redhat.com/errata/RHSA-2019:2097 https://nvd.nist.gov https://usn.ubuntu.com/3684-1/

CVE-2018-12015

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect