CERTA-2007-AVI-377
Vulnerability from certfr_avis
Une vulnérabilité de GNU tar permet de contourner la politique de sécurité.
Description
Un manque de vérification de certains attributs d'une archive tar permet à un utilisateur malveillant d'extraire des fichiers ou des dossiers contenus dans l'archive vers des emplacements arbitraires. Un utilisateur exploitant cette vulnérabilité peut contourner la politique de sécurité en créant ou en écrasant des données sensibles.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| N/A | N/A | OpenSolaris sur x86 de svn_01 à svn_11. | ||
| N/A | N/A | Solaris 10 sur SPARC sans le patch 139099-03 ; | ||
| N/A | N/A | OpenSolaris sur SPARC de svn_01 à svn _115 ; | ||
| N/A | N/A | GNU tar versions antérieures à 1.18 ; | ||
| N/A | N/A | Solaris 9 sur SPARC ; | ||
| N/A | N/A | Solaris 9 sur x86 ; | ||
| N/A | N/A | Solaris 10 sur x86 sans le patch 139100-03 ; |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "OpenSolaris sur x86 de svn_01 \u00e0 svn_11.",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Solaris 10 sur SPARC sans le patch 139099-03 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "OpenSolaris sur SPARC de svn_01 \u00e0 svn _115 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "GNU tar versions ant\u00e9rieures \u00e0 1.18 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Solaris 9 sur SPARC ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Solaris 9 sur x86 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Solaris 10 sur x86 sans le patch 139100-03 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUn manque de v\u00e9rification de certains attributs d\u0027une archive tar permet\n\u00e0 un utilisateur malveillant d\u0027extraire des fichiers ou des dossiers\ncontenus dans l\u0027archive vers des emplacements arbitraires. Un\nutilisateur exploitant cette vuln\u00e9rabilit\u00e9 peut contourner la politique\nde s\u00e9curit\u00e9 en cr\u00e9ant ou en \u00e9crasant des donn\u00e9es sensibles.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2007-4131",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4131"
}
],
"initial_release_date": "2007-08-24T00:00:00",
"last_revision_date": "2009-12-07T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2007:173 du 4 septembre 2007 :",
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:173"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200709-09 du 15 septembre 2007 :",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200709-09.xml"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0860 du 23 ao\u00fbt 2007 :",
"url": "http://rhn.redhat.com/errata/RHSA-2007-0860.html"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-506-1 du 28 ao\u00fbt 2007 :",
"url": "http://www.ubuntu.com/usn/usn-506-1"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 SuSE SUSE-SA:2007:018 du 31 ao\u00fbt 2007 :",
"url": "http://www.novell.com/linux/security/advisories/2007_18_sr.html"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-1438 du 28 d\u00e9cembre 2008 :",
"url": "http://www.debian.org/security/2008/dsa-1438"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Sun 1-66-273551-1 du 2 d\u00e9cembre 2009 :",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-273551-1"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Avaya ASA-2007-383 du 26 septembre 2007 :",
"url": "http://support.avaya.com/elmodocs2/security/ASA-2007-383.htm"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 FreeBSD FreeBSD-SA-07:10.gtar du 29 novembre 2007 :",
"url": "http://security.freebsd.org/advisories/FreeBSD-SA-07:10.gtar.asc"
}
],
"reference": "CERTA-2007-AVI-377",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2007-08-24T00:00:00.000000"
},
{
"description": "ajout des r\u00e9f\u00e9rences aux bulletins de s\u00e9curit\u00e9 Gentoo, Debian, Mandriva, SuSE, Ubuntu, FreeBSD et Avaya.",
"revision_date": "2008-10-07T00:00:00.000000"
},
{
"description": "ajout des r\u00e9f\u00e9rences au bulletin de s\u00e9curit\u00e9 Sun 1-66-273551-1 du 02 d\u00e9cembre 2009.",
"revision_date": "2009-12-07T00:00:00.000000"
}
],
"risks": [
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 de GNU tar permet de contourner la politique de\ns\u00e9curit\u00e9.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans GNU tar",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Redhat RHSA-2007:0860 du 23 ao\u00fbt 2007",
"url": null
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…