Home CVE Database CVE-2016-5418

CVE-2016-5418

Description

The sandboxing code in libarchive 3.2.0 and earlier mishandles hardlink archive entries of non-zero data size, which might allow remote attackers to write to arbitrary files via a crafted archive file.

Priority: MEDIUM
CVSS v3: 7.5
Publish Date: Sep 21, 2016
Related ID: --
CVSS v2: High
Modified Date: Oct 4, 2016

Find out more about CVE-2016-5418 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads

Comments

libarchive

Live chat
Online