CVE-2016-10173 - OpenCVE

Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Minitar	Archive-tar-minitar Minitar

Configuration 1 [-]

OR	cpe:2.3:a:minitar:archive-tar-minitar::::::::
	cpe:2.3:a:minitar:minitar::::::::

No data.

References

Link	Providers
http://www.debian.org/security/2017/dsa-3778
http://www.openwall.com/lists/oss-security/2017/01/24/7
http://www.openwall.com/lists/oss-security/2017/01/29/1
http://www.securityfocus.com/bid/95874
https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4
https://github.com/halostatue/minitar/issues/16
https://nvd.nist.gov/vuln/detail/CVE-2016-10173
https://puppet.com/security/cve/cve-2016-10173
https://security.gentoo.org/glsa/201702-32
https://www.cve.org/CVERecord?id=CVE-2016-10173

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-02-01T15:00:00

Updated: 2024-08-06T03:14:42.017Z

Reserved: 2017-01-29T00:00:00

Link: CVE-2016-10173

Vulnrichment

No data.

NVD

Status : Modified

Published: 2017-02-01T15:59:00.177

Modified: 2017-12-09T02:29:05.123

Link: CVE-2016-10173

Redhat

Severity : Moderate

Publid Date: 2016-08-22T00:00:00Z

Links: CVE-2016-10173 - Bugzilla

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-08-22T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-12-08T10:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[oss-security] 20170124 CVE request: rubygem minitar: directory traversal vulnerability", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2017/01/24/7"}, {"name": "GLSA-201702-32", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201702-32"}, {"name": "95874", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/95874"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/halostatue/minitar/issues/16"}, {"name": "[oss-security] 20170129 Re: CVE request: rubygem minitar: directory traversal vulnerability", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2017/01/29/1"}, {"name": "DSA-3778", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2017/dsa-3778"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://puppet.com/security/cve/cve-2016-10173"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2016-10173", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20170124 CVE request: rubygem minitar: directory traversal vulnerability", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2017/01/24/7"}, {"name": "GLSA-201702-32", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201702-32"}, {"name": "95874", "refsource": "BID", "url": "http://www.securityfocus.com/bid/95874"}, {"name": "https://github.com/halostatue/minitar/issues/16", "refsource": "CONFIRM", "url": "https://github.com/halostatue/minitar/issues/16"}, {"name": "[oss-security] 20170129 Re: CVE request: rubygem minitar: directory traversal vulnerability", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2017/01/29/1"}, {"name": "DSA-3778", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2017/dsa-3778"}, {"name": "https://puppet.com/security/cve/cve-2016-10173", "refsource": "CONFIRM", "url": "https://puppet.com/security/cve/cve-2016-10173"}, {"name": "https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4", "refsource": "CONFIRM", "url": "https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T03:14:42.017Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20170124 CVE request: rubygem minitar: directory traversal vulnerability", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2017/01/24/7"}, {"name": "GLSA-201702-32", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "https://security.gentoo.org/glsa/201702-32"}, {"name": "95874", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/95874"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/halostatue/minitar/issues/16"}, {"name": "[oss-security] 20170129 Re: CVE request: rubygem minitar: directory traversal vulnerability", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2017/01/29/1"}, {"name": "DSA-3778", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2017/dsa-3778"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://puppet.com/security/cve/cve-2016-10173"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2016-10173", "datePublished": "2017-02-01T15:00:00", "dateReserved": "2017-01-29T00:00:00", "dateUpdated": "2024-08-06T03:14:42.017Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:minitar:archive-tar-minitar:*:*:*:*:*:*:*:*", "matchCriteriaId": "B9B28DAB-3949-4E98-8A06-278AED86949B", "versionEndIncluding": "0.5.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:minitar:minitar:*:*:*:*:*:*:*:*", "matchCriteriaId": "BE8EC005-0081-4584-A651-D6C6A1121D87", "versionEndIncluding": "0.5.4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the minitar before 0.6 and archive-tar-minitar 0.5.2 gems for Ruby allows remote attackers to write to arbitrary files via a .. (dot dot) in a TAR archive entry."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en versiones en las gemas para Ruby minitar en versiones anteriores a 0.6 y archive-tar-minitar 0.5.2 permite a atacantes remotos escribir archivos arbitrarios a trav\u00e9s de un .. (punto punto) en una entrada de archivo TAR."}], "id": "CVE-2016-10173", "lastModified": "2017-12-09T02:29:05.123", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-02-01T15:59:00.177", "references": [{"source": "cve@mitre.org", "url": "http://www.debian.org/security/2017/dsa-3778"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2017/01/24/7"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2017/01/29/1"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/95874"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/halostatue/minitar/commit/e25205ecbb6277ae8a3df1e6a306d7ed4458b6e4"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/halostatue/minitar/issues/16"}, {"source": "cve@mitre.org", "url": "https://puppet.com/security/cve/cve-2016-10173"}, {"source": "cve@mitre.org", "url": "https://security.gentoo.org/glsa/201702-32"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}