// For flags

CVE-2010-0624

cpio: Heap-based buffer overflow by expanding a specially-crafted archive

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Heap-based buffer overflow in the rmt_read__ function in lib/rtapelib.c in the rmt client functionality in GNU tar before 1.23 and GNU cpio before 2.11 allows remote rmt servers to cause a denial of service (memory corruption) or possibly execute arbitrary code by sending more data than was requested, related to archive filenames that contain a : (colon) character.

Desbordamiento de búfer basado en pila en la función rmt_read__ en lib/rtapelib.c en la funcionalidad de cliente rmt en GNU tar anterior v1.23 y GNU cpio anterior v2.11 permite a servidores rmt remotos causar una denegación de servicio (caída de memoria) o probablemente ejecutar código de su elección con el envío de más datos de los requeridos, relacionado con nombre de ficheros que contienen el caracter : (dos puntos).

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
Attack Vector
Network
Attack Complexity
High
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2010-02-11 CVE Reserved
  • 2010-03-10 CVE Published
  • 2024-08-07 CVE Updated
  • 2024-08-07 First Exploit
  • 2024-09-09 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
  • CWE-122: Heap-based Buffer Overflow
CAPEC
References (33)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
<= 2.10
Search vendor "Gnu" for product "Cpio" and version " <= 2.10"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
1.0
Search vendor "Gnu" for product "Cpio" and version "1.0"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
1.1
Search vendor "Gnu" for product "Cpio" and version "1.1"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
1.2
Search vendor "Gnu" for product "Cpio" and version "1.2"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
1.3
Search vendor "Gnu" for product "Cpio" and version "1.3"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
2.4-2
Search vendor "Gnu" for product "Cpio" and version "2.4-2"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
2.5
Search vendor "Gnu" for product "Cpio" and version "2.5"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
2.5.90
Search vendor "Gnu" for product "Cpio" and version "2.5.90"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
2.6
Search vendor "Gnu" for product "Cpio" and version "2.6"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
2.7
Search vendor "Gnu" for product "Cpio" and version "2.7"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
2.8
Search vendor "Gnu" for product "Cpio" and version "2.8"
-
Affected
Gnu
Search vendor "Gnu"
Cpio
Search vendor "Gnu" for product "Cpio"
2.9
Search vendor "Gnu" for product "Cpio" and version "2.9"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
<= 1.22
Search vendor "Gnu" for product "Tar" and version " <= 1.22"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.13
Search vendor "Gnu" for product "Tar" and version "1.13"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.13.5
Search vendor "Gnu" for product "Tar" and version "1.13.5"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.13.11
Search vendor "Gnu" for product "Tar" and version "1.13.11"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.13.14
Search vendor "Gnu" for product "Tar" and version "1.13.14"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.13.16
Search vendor "Gnu" for product "Tar" and version "1.13.16"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.13.17
Search vendor "Gnu" for product "Tar" and version "1.13.17"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.13.18
Search vendor "Gnu" for product "Tar" and version "1.13.18"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.13.19
Search vendor "Gnu" for product "Tar" and version "1.13.19"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.13.25
Search vendor "Gnu" for product "Tar" and version "1.13.25"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.14
Search vendor "Gnu" for product "Tar" and version "1.14"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.14.1
Search vendor "Gnu" for product "Tar" and version "1.14.1"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.14.90
Search vendor "Gnu" for product "Tar" and version "1.14.90"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.15
Search vendor "Gnu" for product "Tar" and version "1.15"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.15.1
Search vendor "Gnu" for product "Tar" and version "1.15.1"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.15.90
Search vendor "Gnu" for product "Tar" and version "1.15.90"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.15.91
Search vendor "Gnu" for product "Tar" and version "1.15.91"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.16
Search vendor "Gnu" for product "Tar" and version "1.16"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.16.1
Search vendor "Gnu" for product "Tar" and version "1.16.1"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.17
Search vendor "Gnu" for product "Tar" and version "1.17"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.18
Search vendor "Gnu" for product "Tar" and version "1.18"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.19
Search vendor "Gnu" for product "Tar" and version "1.19"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.20
Search vendor "Gnu" for product "Tar" and version "1.20"
-
Affected
Gnu
Search vendor "Gnu"
Tar
Search vendor "Gnu" for product "Tar"
1.21
Search vendor "Gnu" for product "Tar" and version "1.21"
-
Affected