5.1

CVE-2006-0300

Buffer overflow in tar 1.14 through 1.15.90 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute code via unspecified vectors involving PAX extended headers.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
GnuTar Version1.14
GnuTar Version1.14.1
GnuTar Version1.15
GnuTar Version1.15.1
GnuTar Version1.15.90
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.05% 0.912
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.1 4.9 6.4
AV:N/AC:H/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/19130
http://www.novell.com/linux/security/advisories/2006_05_sr.html
http://docs.info.apple.com/article.html?artnum=305214
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
http://secunia.com/advisories/24479
http://www.us-cert.gov/cas/techalerts/TA07-072A.html
US Government Resource
http://www.vupen.com/english/advisories/2007/0930
http://secunia.com/advisories/19016
http://www.trustix.org/errata/2006/0010
Vendor Advisory
http://docs.info.apple.com/article.html?artnum=305391
http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html
http://lists.gnu.org/archive/html/bug-tar/2006-02/msg00051.html
http://secunia.com/advisories/18973
Vendor Advisory
http://secunia.com/advisories/18976
Patch
Vendor Advisory
http://secunia.com/advisories/18999
Patch
Vendor Advisory
http://secunia.com/advisories/19093
http://secunia.com/advisories/19152
http://secunia.com/advisories/19236
http://secunia.com/advisories/20042
http://secunia.com/advisories/24966
http://securityreason.com/securityalert/480
http://securityreason.com/securityalert/543
http://securitytracker.com/id?1015705
http://sunsolve.sun.com/search/document.do?assetkey=1-26-241646-1
http://www.debian.org/security/2006/dsa-987
http://www.gentoo.org/security/en/glsa/glsa-200603-06.xml
http://www.openpkg.org/security/OpenPKG-SA-2006.006-tar.html
http://www.osvdb.org/23371
Patch
http://www.redhat.com/support/errata/RHSA-2006-0232.html
http://www.securityfocus.com/archive/1/430299/100/0/threaded
http://www.securityfocus.com/bid/16764
http://www.us-cert.gov/cas/techalerts/TA07-109A.html
US Government Resource
http://www.vupen.com/english/advisories/2006/0684
http://www.vupen.com/english/advisories/2007/1470
http://www.vupen.com/english/advisories/2008/2518
http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:046
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/24855
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5252
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5978
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5993
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6094
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9295
https://usn.ubuntu.com/257-1/