Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-02-01T15:00:00
Updated: 2024-08-06T03:14:42.017Z
Reserved: 2017-01-29T00:00:00
Link: CVE-2016-10173
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-02-01T15:59:00.177
Modified: 2017-12-09T02:29:05.123
Link: CVE-2016-10173
Redhat