CVE-2016-6321
high-risk
Published 2016-12-09
Directory traversal vulnerability in the safer_name_suffix function in GNU tar 1.14 through 1.29 might allow remote attackers to bypass an intended protection mechanism and write to arbitrary files via vectors related to improper sanitization of the file_name parameter, aka POINTYFEATHER.
Do I need to act?
!
11.1% chance of exploitation in next 30 days
EPSS score — higher than 89% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10
High
NETWORK
/ LOW complexity
Affected Products (20)
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Tar
Affected Vendors
References (24)
Mailing List
http://seclists.org/fulldisclosure/2016/Oct/102
Mailing List
http://seclists.org/fulldisclosure/2016/Oct/96
Third Party Advisory
http://www.securityfocus.com/bid/93937
Third Party Advisory
https://sintonen.fi/advisories/tar-extract-pathname-bypass.proper.txt
Mailing List
http://seclists.org/fulldisclosure/2016/Oct/102
Mailing List
http://seclists.org/fulldisclosure/2016/Oct/96
Third Party Advisory
http://www.securityfocus.com/bid/93937
and 4 more references
57
/ 100
high-risk
Severity
26/34 · High
Exploitability
11/34 · Low
Exposure
20/34 · Moderate