Skip to navigation

CVE Database

CVE-2002-0399

Impact: Low
Public: 2002-09-30

Details

The MITRE CVE dictionary describes this issue as:

Directory traversal vulnerability in GNU tar 1.13.19 through 1.13.25, and possibly later versions, allows attackers to overwrite arbitrary files during archive extraction via a (1) "/.." or (2) "./.." string, which removes the leading slash but leaves the "..", a variant of CVE-2001-1267.

Find out more about CVE-2002-0399 from the MITRE CVE dictionary and NIST NVD.

Red Hat security errata

Platform Errata Release Date
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 RHSA-2002:138 October 02, 2002
Red Hat Linux 6.2 RHSA-2002:096 September 29, 2002
Red Hat Linux 7.0 RHSA-2002:096 September 29, 2002
Red Hat Linux 7.1 RHSA-2002:096 September 29, 2002
Red Hat Linux 7.1 RHSA-2003:218 July 01, 2003
Red Hat Linux 7.2 RHSA-2002:096 September 29, 2002
Red Hat Linux 7.3 RHSA-2002:096 September 29, 2002

External References

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact the Red Hat Security Response Team.