You are here

CVE-2005-1080

Vincent (CVE) Danen's picture
A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted.

Details Source

Red Hat

Public Date

2005-01-04 00:00:00

Impact

Low

Bugzilla

CVE-2005-1080 jar: directory traversal vulnerability

Bugzilla ID

606 442

CVSS Status

verified

Base Score

2.60

Base Metrics

AV:N/AC:H/Au:N/C:N/I:P/A:N

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux Supplementary (v. 6) (java-1.6.0-ibm) RHSA-2015:1006 2015-05-13
Red Hat Enterprise Linux Supplementary (v. 6) (java-1.5.0-ibm) RHSA-2015:1021 2015-05-20
Red Hat Enterprise Linux Supplementary (v. 6) (java-1.7.1-ibm) RHSA-2015:1020 2015-05-20
Oracle Java for Red Hat Enterprise Linux 7 (java-1.8.0-oracle) RHSA-2015:0854 2015-04-17
Red Hat Enterprise Linux Supplementary (v. 7) (java-1.7.1-ibm) RHSA-2015:1020 2015-05-20
Red Hat Enterprise Linux 7 (java-1.7.0-openjdk) RHSA-2015:0806 2015-04-15
Red Hat Enterprise Linux 7 (java-1.8.0-openjdk) RHSA-2015:0809 2015-04-15
Red Hat Enterprise Linux 7 (java-1.6.0-openjdk) RHSA-2015:0808 2015-04-15
Red Hat Enterprise Linux 5 (java-1.7.0-openjdk) RHSA-2015:0807 2015-04-14
Red Hat Enterprise Linux Supplementary 5 (java-1.5.0-ibm) RHSA-2015:1021 2015-05-20
Oracle Java for Red Hat Enterprise Linux 6 (java-1.7.0-oracle) RHSA-2015:0857 2015-04-20
Oracle Java for Red Hat Enterprise Linux 6 (java-1.8.0-oracle) RHSA-2015:0854 2015-04-17
Red Hat Enterprise Linux Supplementary 5 (java-1.6.0-ibm) RHSA-2015:1006 2015-05-13
Red Hat Enterprise Linux Supplementary 5 (java-1.7.0-ibm) RHSA-2015:1007 2015-05-13
Oracle Java for Red Hat Enterprise Linux 6 (java-1.6.0-sun) RHSA-2015:0858 2015-04-20
Red Hat Enterprise Linux 5 (java-1.6.0-openjdk) RHSA-2015:0808 2015-04-15
Red Hat Satellite 5.6 (RHEL v.5) (java-1.6.0-ibm) RHSA-2015:1091 2015-06-11
Oracle Java for Red Hat Enterprise Linux 5 (java-1.6.0-sun) RHSA-2015:0858 2015-04-20
Oracle Java for Red Hat Enterprise Linux 5 (java-1.7.0-oracle) RHSA-2015:0857 2015-04-20
Red Hat Enterprise Linux 6 (java-1.7.0-openjdk) RHSA-2015:0806 2015-04-15
Red Hat Enterprise Linux 6 (java-1.6.0-openjdk) RHSA-2015:0808 2015-04-15
Red Hat Enterprise Linux 6 (java-1.8.0-openjdk) RHSA-2015:0809 2015-04-15
Red Hat Satellite 5.6 (RHEL v.6) (java-1.6.0-ibm) RHSA-2015:1091 2015-06-11
Red Hat Satellite 5.7 (RHEL v.6) (java-1.6.0-ibm) RHSA-2015:1091 2015-06-11
Oracle Java for Red Hat Enterprise Linux 7 (java-1.7.0-oracle) RHSA-2015:0857 2015-04-20
Oracle Java for Red Hat Enterprise Linux 7 (java-1.6.0-sun) RHSA-2015:0858 2015-04-20

CWE

CWE-22

Affected Packages State

Platform Package State
Red Hat Enterprise Linux Supplementary version 7 java-1.6.0-sun Affected
Red Hat Enterprise Linux Supplementary version 7 java-1.6.0-openjdk Affected
Red Hat Enterprise Linux Supplementary version 7 java-1.8.0-openjdk Affected
Red Hat Enterprise Linux Supplementary version 7 java-1.8.0-oracle Affected
Red Hat Enterprise Linux Supplementary version 7 java-1.7.0-oracle Affected
Red Hat Enterprise Linux Supplementary version 7 java-1.7.0-openjdk Affected
Red Hat Enterprise Linux Supplementary version 6 java-1.7.0-openjdk Affected
Red Hat Enterprise Linux Supplementary version 6 java-1.8.0-openjdk Affected
Red Hat Enterprise Linux Supplementary version 6 java-1.6.0-openjdk Affected
Red Hat Enterprise Linux Supplementary version 6 java-1.6.0-sun Affected
Red Hat Enterprise Linux Supplementary version 6 java-1.8.0-oracle Affected
Red Hat Enterprise Linux Supplementary version 6 java-1.7.0-oracle Affected