GNU : Security Vulnerabilities, CVEs, Published In 2005 CVSS score >= 9
Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.
Max CVSS
10.0
EPSS Score
0.63%
Published
2005-08-10
Updated
2021-06-18
a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename.
Max CVSS
10.0
EPSS Score
3.41%
Published
2005-01-10
Updated
2018-10-19
2 vulnerabilities found