CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Python: >> Python >> 2.6.2 Security Vulnerabilities

CVE-2007-4559

Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR archive, a related issue to CVE-2001-1267.

CVSS Score

9.8

EPSS Score

0.93

Published

2007-08-28

Page 6

Vulnerabilities

Vulnerable Software

Python: >> Python >> 2.6.2 Security Vulnerabilities

Products

Pricing

Contact Us