cbcvebase.
CVE-2006-0300
published 2006-02-24

CVE-2006-0300: Buffer overflow in tar 1.14 through 1.15.90 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute code via…

PriorityP420medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
5.05%
91.2th percentile
Buffer overflow in tar 1.14 through 1.15.90 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute code via unspecified vectors involving PAX extended headers.

Affected

11 ranges
VendorProductVersion rangeFixed in
debiandpkg< tar 1.15.1-3 (bookworm)tar 1.15.1-3 (bookworm)
debiantar< tar 1.15.1-3 (bookworm)tar 1.15.1-3 (bookworm)
gnutar
gnutar
gnutar
gnutar
gnutar
gnutar>= 0 < 1.15.1-31.15.1-3
gnutar>= 0 < 1.15.1-31.15.1-3
gnutar>= 0 < 1.15.1-31.15.1-3
gnutar>= 0 < 1.15.1-31.15.1-3

CVSS provenance

nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
osv5.1MEDIUM
vendor_debian5.1LOW
vendor_redhat5.1MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.