Oval Definition:
oval:org.mitre.oval:def:8599
Revision Date
:
2010-06-07
Version
:
17
Title
:
Security Vulnerabilities in GNU tar (see gtar(1)) May Lead to Files Being Overwritten, Execution of Arbitrary Code, or a Denial of Service (DoS)
Description
:
Buffer overflow in the safer_name_suffix function in GNU tar has unspecified attack vectors and impact, resulting in a "crashing stack."
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2007-4476
Platform(s)
:
Sun Solaris 10
Sun Solaris 9
Product(s)
:
Definition Synopsis
Solaris 9 (SPARC) meets Sun Alert 273551
Solaris 9 (SPARC) is installed
AND
NOT
Patch 118191-04 or later installed
OR
Solaris 10 (SPARC) meets Sun Alert 273551
Solaris 10 (SPARC) is installed
AND
NOT
Patch 139099-03 or later installed
OR
Solaris 9 (x86) meets Sun Alert 273551
Solaris 9 (x86) is installed
AND
NOT
Patch 118192-04 or later installed
OR
Solaris 10 (x86) meets Sun Alert 273551
Solaris 10 (x86) is installed
AND
NOT
Patch 139100-03 or later installed
BACK