You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When py7zr project recognize a vulnerability advice, security professional suggest me to add a flag option to tell explicitly allow symbolic link extraction to protect from symlink attack.
When 7-zip-ed file has a symbolic link to external of target folder, such as /etc/passwd and py7zr does not check it, attacker may obtains passwd file from remote, if some web system use py7zr and attacker upload a malicious archive file.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
When py7zr project recognize a vulnerability advice, security professional suggest me to add a flag option to tell explicitly allow symbolic link extraction to protect from symlink attack.
When 7-zip-ed file has a symbolic link to external of target folder, such as
/etc/passwdand py7zr does not check it, attacker may obtains passwd file from remote, if some web system use py7zr and attacker upload a malicious archive file.Here is a trial of implementation.
#482
Currently I decide to extract links in default. Are there any opinions?
Beta Was this translation helpful? Give feedback.
All reactions