Security Advisory

CVE-2010-2197

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-06-08 18:00:00

Last updated 2024-08-07 02:25:06

Assigner mitre

State PUBLISHED

Description

rpmbuild in RPM 4.8.0 and earlier does not properly parse the syntax of spec files, which allows user-assisted remote attackers to remove home directories via vectors involving a ;~ (semicolon tilde) sequence in a Name tag.

← Browse all CVEs View on cve.org ↗