Return to forum

**479** · September 22, 2022 at 9:57 AM

Tarfile: Exploiting the World With a 15-Year-Old Vulnerability LOL

https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/tarfile-exploiting-the-world.html

https://www.trellix.com/en-us/about/newsroom/news/news-detail.html?news_id=10cb07fa-6837-48b8-8e99-d58a7526eff3

LoSio · September 22, 2022 at 10:24 AM

seems very terify but you had to know what application runs under envoirment and at least access to a share folder or something else...

Thanks for that share in any case!!

max124898 · September 26, 2022 at 7:40 PM

Nice hacker

Lili_usa · September 26, 2022 at 7:49 PM

Nice hacker

gentle · September 27, 2022 at 3:59 PM

I think you can tell how little something is realistic based on the examples given by the people.They are likely looking to gain rep and the contrived vulnerable examples they found are extremely underwhelming. Imagine that a thing has to take in a user-controlled tar file AND extract it (albeit the vulnerability is only in extract) via Python and you have quiet a bit of problems on realistic scenarios.

Having said that there are, absolutely, interesting vulnerable applications where this can be exploited remotely.

RachelDare · September 28, 2022 at 9:00 AM

(September 22, 2022, 09:57 AM)34585 Wrote: Tarfile: Exploiting the World With a 15-Year-Old Vulnerability LOL

https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/tarfile-exploiting-the-world.html

https://www.trellix.com/en-us/about/newsroom/news/news-detail.html?news_id=10cb07fa-6837-48b8-8e99-d58a7526eff3

"While the vulnerability was originally only marked as a 6.8, we were able to confirm that in most cases an attacker can gain code execution from the file write. "

and this is why CVE risk rating scores are really flaky and can be easily manipulated.

76B54F1A · October 5, 2022 at 9:22 AM

Maybe Russia's biggest weakness will be their fax machines

prabhathpd · October 5, 2022 at 4:39 PM

It is intriguing