Archive::Tar Project Archive::Tar 0.99 04 for Perl

CPE Details

Archive::Tar Project Archive::Tar 0.99 04 for Perl
archive::tar_project
archive::tar
0.99_04
2018-08-06
15h43 +00:00
2018-08-06
15h43 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:archive\:\:tar_project:archive\:\:tar:0.99_04:*:*:*:*:perl:*:*

Informations

Vendor

archive::tar_project

Product

archive::tar

Version

0.99_04

Target Software

perl

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2018-12015 2018-06-07 11h00 +00:00 In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name.
7.5
Haute
CVE-2007-4829 2007-11-02 15h00 +00:00 Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and earlier allows user-assisted remote attackers to overwrite arbitrary files via a TAR archive that contains a file whose name is an absolute path or has ".." sequences.
6.8