Vulnerabilities
Vulnerable Software
Archive:  >> tar_project  Security Vulnerabilities
In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name.
CVSS Score
7.5
EPSS Score
0.166
Published
2018-06-07
Directory traversal vulnerability in the Archive::Tar Perl module 1.36 and earlier allows user-assisted remote attackers to overwrite arbitrary files via a TAR archive that contains a file whose name is an absolute path or has ".." sequences.
CVSS Score
6.8
EPSS Score
0.018
Published
2007-11-02


Contact Us

Shodan ® - All rights reserved