RSS   Vulnerabilities for 'PAX'   RSS

2015-01-21
 
CVE-2015-1194

CWE-59
 

 
pax 1:20140703 allows remote attackers to write to arbitrary files via a symlink attack in an archive.

 
 
CVE-2015-1193

CWE-22
 

 
Multiple directory traversal vulnerabilities in pax 1:20140703 allow remote attackers to write to arbitrary files via a (1) full pathname or (2) .. (dot dot) in an archive.

 


Copyright 2017, cxsecurity.com

 

Back to Top