Vigil@nce: Perl Archive-Tar, directory traversal
January 2009 by Vigil@nce
SYNTHESIS
An attacker can create a malicious TAR archive in order to force
Archive-Tar to create files outside root directory.
Gravity: 1/4
Consequences: data creation/edition
Provenance: document
Means of attack: no proof of concept, no attack
Ability of attacker: expert (4/4)
Confidence: confirmed by the editor (5/5)
Diffusion of the vulnerable configuration: high (3/3)
Creation date: 31/12/2008
IMPACTED PRODUCTS
– Fedora
– Unix - plateform
DESCRIPTION
The Archive-Tar module is used to manipulate TAR archives in Perl
language.
However, this module does not check if the archive contains ’../’,
which can be used by an attacker to create files on the system.
An attacker can therefore create a malicious TAR archive in order
to force Archive-Tar to create files outside the extraction
directory.
CHARACTERISTICS
Identifiers: 295021, BID-26355, CVE-2007-4829, FEDORA-2008-11736,
VIGILANCE-VUL-8364