CVE-2001-1267

Reference Links

• http://online.securityfocus.com/archive/1/196445
• http://www.iss.net/security_center/static/10224.php
• http://www.redhat.com/support/errata/RHSA-2002-096.html
• http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000538
• http://online.securityfocus.com/advisories/4514
• http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:066
• http://www.redhat.com/support/errata/RHSA-2002-138.html
• http://www.redhat.com/support/errata/RHSA-2003-218.html
• http://sunsolve.sun.com/search/document.do?assetkey=1-26-47800-1
• http://www.securityfocus.com/bid/3024
• https://www.cve.org/CVERecord?id=CVE-2001-1267 https://nvd.nist.gov/vuln/detail/CVE-2001-1267
• https://bugzilla.redhat.com/show_bug.cgi?id=1616656
• https://access.redhat.com/errata/RHSA-2002:138
• https://access.redhat.com/errata/RHSA-2002:096
• https://access.redhat.com/errata/RHSA-2003:218
• https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2001-1267.json

Parent vulnerabilities

(Appears in the following advisories)

• RHSA-2002:138
• RHSA-2002:096
• RHSA-2003:218

Frequently Asked Questions

• What is the severity of CVE-2001-1267?

  CVE-2001-1267 has a moderate severity level due to its potential to allow local users to overwrite arbitrary files.

• How do I fix CVE-2001-1267?

  To fix CVE-2001-1267, update to a version of GNU tar later than 1.13.19.

• Who is affected by CVE-2001-1267?

  Local users who have access to extract tar files using GNU tar versions 1.13.19 and earlier are affected by CVE-2001-1267.

• What systems are vulnerable to CVE-2001-1267?

  Any system running GNU tar version 1.13.19 or earlier is vulnerable to CVE-2001-1267.

• What is the impact of CVE-2001-1267?

  The impact of CVE-2001-1267 allows local users to potentially overwrite system files, which could lead to a compromise.