CVE-2016-7162

The _g_file_remove_directory function in file-utils.c in File Roller 3.5.4 through 3.20.2 allows remote attackers to delete arbitrary files via a symlink attack on a folder in an archive.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:file_roller_project:file_roller:3.5.4:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.6.0:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.6.1:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.6.1.1:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.6.2:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.6.3:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.6.4:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.8.0:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.8.1:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.8.2:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.8.3:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.9.0:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.9.1:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.9.2:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.9.3:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.10:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.15:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.20:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.20.1:*:*:*:*:gnome:*:*
cpe:2.3:a:file_roller_project:file_roller:3.20.2:*:*:*:*:gnome:*:*

Information

Published : 2016-09-26 08:59

Updated : 2021-04-14 13:33


NVD link : CVE-2016-7162

Mitre link : CVE-2016-7162


JSON object : View

CWE
CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

file_roller_project

  • file_roller

canonical

  • ubuntu_linux