7.5

CVE-2018-12015

Exploit

In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name.

Data is provided by the National Vulnerability Database (NVD)
CanonicalUbuntu Linux Version12.04 SwEditionlts
CanonicalUbuntu Linux Version14.04 SwEditionlts
CanonicalUbuntu Linux Version16.04 SwEditionlts
CanonicalUbuntu Linux Version17.10
CanonicalUbuntu Linux Version18.04 SwEditionlts
DebianDebian Linux Version8.0
DebianDebian Linux Version9.0
PerlPerl Version <= 5.26.2
Archive::tar ProjectArchive::tar SwPlatformperl Version <= 2.28
ApplemacOS X Version < 10.14.4
NetappData Ontap Edge Version-
NetappSnapdrive Version- SwPlatformunix
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 15.07% 0.944
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.5 3.9 3.6
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov 6.4 10 4.9
AV:N/AC:L/Au:N/C:N/I:P/A:P
CWE-59 Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

http://seclists.org/fulldisclosure/2019/Mar/49
Third Party Advisory
Mailing List
http://www.securityfocus.com/bid/104423
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041048
Third Party Advisory
VDB Entry
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=900834
Third Party Advisory
Exploit
Mailing List
https://seclists.org/bugtraq/2019/Mar/42
Third Party Advisory
Mailing List
https://usn.ubuntu.com/3684-1/
Third Party Advisory
https://usn.ubuntu.com/3684-2/
Third Party Advisory