Filtered by vendor Tardiff Project Subscriptions
Filtered by product Tardiff Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2015-0858 2 Debian, Tardiff Project 2 Debian Linux, Tardiff 2024-11-21 N/A
Cool Projects TarDiff allows local users to write to arbitrary files via a symlink attack on a pathname in a /tmp/tardiff-$$ temporary directory.
CVE-2015-0857 2 Debian, Tardiff Project 2 Debian Linux, Tardiff 2024-11-21 N/A
Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell metacharacters in the name of a (1) tar file or (2) file within a tar file.