Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
15-Year-Old Python Tarfile Vulnerability Affects Over 350,000 Open-Source Projects
Malware and Vulnerabilities
September 22, 2022
Trellix
The vulnerability is a path traversal attack in the extract and extractall functions in the tarfile module that allow an attacker to overwrite arbitrary files by adding the “..” sequence to filenames in a TAR archive.
Read More
Python
tarfile module
Path Traversal Vulnerability
arbitrary file overwrite.
open source projects
Publisher
Previous
Deep Instinct raises $62 million from BlackRock and Chr ...
Companies to Watch
Next
SentinelOne launches $100M fund to invest in enterprise ...
Companies to Watch
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock_69982477_MEDIUM.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_586635815_1.jpg)
