CERTA-2007-AVI-377
Vulnerability from certfr_avis - Published: - Updated:
Une vulnérabilité de GNU tar permet de contourner la politique de sécurité.
Description
Un manque de vérification de certains attributs d'une archive tar permet à un utilisateur malveillant d'extraire des fichiers ou des dossiers contenus dans l'archive vers des emplacements arbitraires. Un utilisateur exploitant cette vulnérabilité peut contourner la politique de sécurité en créant ou en écrasant des données sensibles.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| N/A | N/A | OpenSolaris sur x86 de svn_01 à svn_11. | ||
| N/A | N/A | Solaris 10 sur SPARC sans le patch 139099-03 ; | ||
| N/A | N/A | OpenSolaris sur SPARC de svn_01 à svn _115 ; | ||
| N/A | N/A | GNU tar versions antérieures à 1.18 ; | ||
| N/A | N/A | Solaris 9 sur SPARC ; | ||
| N/A | N/A | Solaris 9 sur x86 ; | ||
| N/A | N/A | Solaris 10 sur x86 sans le patch 139100-03 ; |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "OpenSolaris sur x86 de svn_01 \u00e0 svn_11.",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Solaris 10 sur SPARC sans le patch 139099-03 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "OpenSolaris sur SPARC de svn_01 \u00e0 svn _115 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "GNU tar versions ant\u00e9rieures \u00e0 1.18 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Solaris 9 sur SPARC ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Solaris 9 sur x86 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "Solaris 10 sur x86 sans le patch 139100-03 ;",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nUn manque de v\u00e9rification de certains attributs d\u0027une archive tar permet\n\u00e0 un utilisateur malveillant d\u0027extraire des fichiers ou des dossiers\ncontenus dans l\u0027archive vers des emplacements arbitraires. Un\nutilisateur exploitant cette vuln\u00e9rabilit\u00e9 peut contourner la politique\nde s\u00e9curit\u00e9 en cr\u00e9ant ou en \u00e9crasant des donn\u00e9es sensibles.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2007-4131",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4131"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2007:173 du 4 septembre 2007 :",
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:173"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200709-09 du 15 septembre 2007 :",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200709-09.xml"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0860 du 23 ao\u00fbt 2007 :",
"url": "http://rhn.redhat.com/errata/RHSA-2007-0860.html"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-506-1 du 28 ao\u00fbt 2007 :",
"url": "http://www.ubuntu.com/usn/usn-506-1"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 SuSE SUSE-SA:2007:018 du 31 ao\u00fbt 2007 :",
"url": "http://www.novell.com/linux/security/advisories/2007_18_sr.html"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-1438 du 28 d\u00e9cembre 2008 :",
"url": "http://www.debian.org/security/2008/dsa-1438"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Sun 1-66-273551-1 du 2 d\u00e9cembre 2009 :",
"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-273551-1"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Avaya ASA-2007-383 du 26 septembre 2007 :",
"url": "http://support.avaya.com/elmodocs2/security/ASA-2007-383.htm"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 FreeBSD FreeBSD-SA-07:10.gtar du 29 novembre 2007 :",
"url": "http://security.freebsd.org/advisories/FreeBSD-SA-07:10.gtar.asc"
}
],
"reference": "CERTA-2007-AVI-377",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2007-08-24T00:00:00.000000"
},
{
"description": "ajout des r\u00e9f\u00e9rences aux bulletins de s\u00e9curit\u00e9 Gentoo, Debian, Mandriva, SuSE, Ubuntu, FreeBSD et Avaya.",
"revision_date": "2008-10-07T00:00:00.000000"
},
{
"description": "ajout des r\u00e9f\u00e9rences au bulletin de s\u00e9curit\u00e9 Sun 1-66-273551-1 du 02 d\u00e9cembre 2009.",
"revision_date": "2009-12-07T00:00:00.000000"
}
],
"risks": [
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 de GNU tar permet de contourner la politique de\ns\u00e9curit\u00e9.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans GNU tar",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Redhat RHSA-2007:0860 du 23 ao\u00fbt 2007",
"url": null
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…