Archive::Tar Project Archive::Tar 1.03 for Perl

CPE Details

Archive::Tar Project Archive::Tar 1.03 for Perl
1.03
2018-08-06
15h43 +00:00
2018-08-06
15h43 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:archive\:\:tar_project:archive\:\:tar:1.03:*:*:*:*:perl:*:*

Informations

Vendor

archive::tar_project

Product

archive::tar

Version

1.03

Target Software

perl

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2018-12015 2018-06-07 11h00 +00:00 In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name.
7.5
High
CVE-2007-4829 2007-11-02 15h00 +00:00 Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and earlier allows user-assisted remote attackers to overwrite arbitrary files via a TAR archive that contains a file whose name is an absolute path or has ".." sequences.
6.8