On executing tar from suid root application TAR_OPTIONS environment variable is not unset, making it possible to execute any application with root privileges. External application are executed with relative path. Dynamic libraries are loaded with relative path. Symbolic links problem.
CPE | Name | Operator | Version |
---|---|---|---|
xcode openbase | eq | 10.0 | |
xcode openbase | eq | 9.1 |