CPIO Filename Directory Traversal Vulnerability

The cpio utility is prone to a directory-traversal vulnerability. The issue occurs when cpio is invoked on a malicious archive.

An archive containing an absolute path for a filename that contains '/' characters results in the file getting written using the absolute path contained in the filename.

A remote attacker may leverage this issue using a malicious archive to corrupt arbitrary files with the privileges of the user that is running the vulnerable software.


 

Privacy Statement
Copyright 2010, SecurityFocus