CVE-2002-1216

Name of the Vulnerable Software and Affected Versions tar versions prior to 1.13.25 Red Hat Linux (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the tar package that can lead to the integrity of protected information being compromised. These vulnerabilities can be exploited remotely. Specifically, in GNU tar versions before 1.13.25, remote attackers can overwrite arbitrary files via a symlink attack due to a modification that disabled a security check.

Recommendations For tar versions prior to 1.13.25, update to version 1.13.25 or later to resolve the issue. For Red Hat Linux, at the moment, there is no information about a newer version that contains a fix for this vulnerability.