FreeBSD Security Advisory (FreeBSD-SA-06:26.gtar.asc) Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:26.gtar.asc

Solution

Upgrade your system to the appropriate stable release or security branch dated after the correction date https://secure1.securityspace.com/smysecure/catid.html?in=FreeBSD-SA-06:26.gtar.asc

Insight

GNU tar (gtar) is a utility to create and extract tape archives, commonly known as tar files. GNU tar is included in FreeBSD 4.x as /usr/bin/tar, and in FreeBSD 5.x as /usr/bin/gtar. Symlinks created using the GNUTYPE_NAMES tar extension can be absolute due to lack of proper sanity checks.

Severity

Classification

CVE CVE-2006-6097

CVSS	Base Score: 4.0 AV:N/AC:H/Au:N/C:N/I:P/A:P

Related Vulnerabilities

FreeBSD Ports: apr1
FreeBSD Ports: apr1
FreeBSD Ports: claws-mail, sylpheed-claws
FreeBSD Ports: bind9
django -- cross-site scripting vulnerability

Take action and discover your vulnerabilities