cpio vulnerability

About this tag
The cpio vulnerability tag on WindowsForum.com covers CVE-2010-4226, a symlink attack in cpio used by RPM payloads. This flaw allows crafted RPM packages to overwrite arbitrary files during extraction, targeting critical system files like /etc/passwd or SSH authorized keys. Discussions focus on the technical details of the vulnerability, its exploitation via malicious RPMs, and historical context in Linux distributions where cpio processes RPM payloads. While primarily a Linux issue, the tag may interest Windows users managing cross-platform environments or security professionals tracking archive tool vulnerabilities.
  1. CVE-2010-4226: Symlink Attacks in cpio Used by RPM Payloads

    cpio’s handling of symbolic links in certain historical builds opened a deceptively simple attack vector: crafted RPM payloads that leverage symlinks to overwrite arbitrary files on extraction, a flaw tracked as CVE-2010-4226 and documented in multiple vulnerability databases and vendor...