What is CVE-2015-1197?

CVE-2015-1197 is a vulnerability in Gnu Cpio. Published 2015-02-19.

Is CVE-2015-1197 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Gnu Cpio

CVE-2015-1197

cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive.

EPSS: 0.029 (85.2th percentile) — read the EPSS interpretation.

Affected products

Gnu Cpio — versions 2.11
N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cvemon
Live-Hack-CVE/CVE-2015-1197
Live-Hack-CVE/CVE-2017-7516
fokypoky/places-list

References

cve@mitre.org (vdb-entry)
cve@mitre.org (vendor-advisory)
cve@mitre.org (mailing-list)
cve@mitre.org (vendor-advisory)
cve@mitre.org
cve@mitre.org (mailing-list, Exploit)
cve@mitre.org (Exploit)
cve@mitre.org (mailing-list, Exploit)
cve@mitre.org
cve@mitre.org (mailing-list)

Frequently asked questions

What is CVE-2015-1197?: CVE-2015-1197 is a vulnerability in Gnu Cpio. Published 2015-02-19.
Is CVE-2015-1197 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.