2005-08-10 08:00:00
mitre
PUBLISHED
Tar 1.15.1 does not properly warn the user when extracting setuid or setgid files, which may allow local users or remote attackers to gain privileges.