CVE-2006-0306

Current Description

Buffer overflow in tar 1.14 through 1.15.90 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute code via unspecified vectors involving PAX extended headers.

Basic Data

PublishedFebruary 24, 2006
Last ModifiedOctober 19, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:H/Au:N/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityHIGH
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score5.1
SeverityMEDIUM
Exploitability Score4.9
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegetrue
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationGnuTar1.14*******
    2.3ApplicationGnuTar1.14.1*******
    2.3ApplicationGnuTar1.15*******
    2.3ApplicationGnuTar1.15.1*******
    2.3ApplicationGnuTar1.15.90*******

Vulnerable Software List

VendorProductVersions
Gnu Tar 1.14, 1.14.1, 1.15, 1.15.1, 1.15.90

References

NameSourceURLTags
http://docs.info.apple.com/article.html?artnum=305214http://docs.info.apple.com/article.html?artnum=305214CONFIRM
http://docs.info.apple.com/article.html?artnum=305391http://docs.info.apple.com/article.html?artnum=305391CONFIRM
APPLE-SA-2007-04-19http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.htmlAPPLE
APPLE-SA-2007-03-13http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.htmlAPPLE
[Bug-tar] 20060220 tar 1.15.90 releasedhttp://lists.gnu.org/archive/html/bug-tar/2006-02/msg00051.htmlMLIST
18973http://secunia.com/advisories/18973SECUNIAVendor Advisory
18976http://secunia.com/advisories/18976SECUNIAPatch Vendor Advisory
18999http://secunia.com/advisories/18999SECUNIAPatch Vendor Advisory
19016http://secunia.com/advisories/19016SECUNIA
19093http://secunia.com/advisories/19093SECUNIA
19130http://secunia.com/advisories/19130SECUNIA
19152http://secunia.com/advisories/19152SECUNIA
19236http://secunia.com/advisories/19236SECUNIA
20042http://secunia.com/advisories/20042SECUNIA
24479http://secunia.com/advisories/24479SECUNIA
24966http://secunia.com/advisories/24966SECUNIA
480http://securityreason.com/securityalert/480SREASON
543http://securityreason.com/securityalert/543SREASON
1015705http://securitytracker.com/id?1015705SECTRACK
241646http://sunsolve.sun.com/search/document.do?assetkey=1-26-241646-1SUNALERT
DSA-987http://www.debian.org/security/2006/dsa-987DEBIAN
GLSA-200603-06http://www.gentoo.org/security/en/glsa/glsa-200603-06.xmlGENTOO
SUSE-SR:2006:005http://www.novell.com/linux/security/advisories/2006_05_sr.htmlSUSE
OpenPKG-SA-2006.006http://www.openpkg.org/security/OpenPKG-SA-2006.006-tar.htmlOPENPKG
23371http://www.osvdb.org/23371OSVDBPatch
RHSA-2006:0232http://www.redhat.com/support/errata/RHSA-2006-0232.htmlREDHAT
FLSA:183571-2http://www.securityfocus.com/archive/1/430299/100/0/threadedFEDORA
16764http://www.securityfocus.com/bid/16764BID
2006-0010http://www.trustix.org/errata/2006/0010TRUSTIXVendor Advisory
TA07-072Ahttp://www.us-cert.gov/cas/techalerts/TA07-072A.htmlCERTUS Government Resource
TA07-109Ahttp://www.us-cert.gov/cas/techalerts/TA07-109A.htmlCERTUS Government Resource
ADV-2006-0684http://www.vupen.com/english/advisories/2006/0684VUPEN
ADV-2007-0930http://www.vupen.com/english/advisories/2007/0930VUPEN
ADV-2007-1470http://www.vupen.com/english/advisories/2007/1470VUPEN
ADV-2008-2518http://www.vupen.com/english/advisories/2008/2518VUPEN
MDKSA-2006:046http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:046MANDRIVAPatch Vendor Advisory
gnu-tar-pax-headers-bo(24855)https://exchange.xforce.ibmcloud.com/vulnerabilities/24855XF
oval:org.mitre.oval:def:5252https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5252OVAL
oval:org.mitre.oval:def:5978https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5978OVAL
oval:org.mitre.oval:def:5993https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5993OVAL
oval:org.mitre.oval:def:6094https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6094OVAL
oval:org.mitre.oval:def:9295https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9295OVAL
USN-257-1https://usn.ubuntu.com/257-1/UBUNTU