CVE-2015-1197

TAR Path Traversal in Zimbra (CVE-2022-41352)

Title source: metasploit

Description

cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive.

Exploits (1)

metasploit WORKING POC EXCELLENT

by Alexander Cherepanov, yeak, Ron Bowes · rubypoclinux

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/zimbra_cpio_cve_2022_41352.rb

View Code ZIP pw:eip

References (11)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/71914

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2015:066

[Mailing List] http://www.openwall.com/lists/oss-security/2015/01/18/7

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2906-1

[Exploit] http://www.openwall.com/lists/oss-security/2015/01/07/5

[Exploit] https://lists.gnu.org/archive/html/bug-cpio/2015-01/msg00000.html

[Mailing List] http://www.openwall.com/lists/oss-security/2023/12/21/8

[Mailing List] http://www.openwall.com/lists/oss-security/2023/12/27/1

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/169458/Zimbra-Collaboration-Suite-TAR-Path-Traversal.html

[Third Party Advisory] http://advisories.mageia.org/MGASA-2015-0080.html

[Exploit] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774669

Scores

EPSS 0.0342

EPSS Percentile 87.5%

Details

Status published

Products (1)

gnu/cpio 2.11

Published Feb 19, 2015

Tracked Since Feb 18, 2026