[CSS] POINTYFEATHER / tar extract pathname bypass (CVE-2016-6321)

October 26, 2016 007admin Leave a comment

Posted by Harry Sintonen on Oct 26

—————- t2’16 special vulnerability release —————–

Vulnerability: POINTYFEATHER aka Tar extract pathname bypass
Credits: Harry Sintonen / FSC1V Cyber Security Services
Date: 2016-10-27
Impact: File overwrite in certain situations
Classifier: Full spectrum cyber
CVSS: 4.3.2
Threat level: Manatee

//NORDIC EYES ONLY//NOFORN//PUBLIC//EXPLOIT GLOBAL//…

007 Software

[CSS] POINTYFEATHER / tar extract pathname bypass (CVE-2016-6321)

Leave a Reply Cancel reply

Software and Security Information