search

tarihub / evilarc-go

Create tar/zip/tgz/bz2 archives that can exploit directory traversal and symlink vulnerabilities
MIT License
1 stars 1 forks source link

gzip: stdin: not in gzip format #1

Open tarihub opened 6 months ago

tarihub commented 6 months ago 
tar -zxf evil.tar

gzip: stdin: not in gzip format
tar: Child returned status 1
tar: Error is not recoverable: exiting now
tar --version
tar (GNU tar) 1.26
Copyright (C) 2011 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.

Written by John Gilmore and Jay Fenlason.
tarihub commented 6 months ago

gzip format correct in 

tar --version
bsdtar 3.5.3 - libarchive 3.5.3 zlib/1.2.11 liblzma/5.0.5 bz2lib/1.0.8
tarihub commented 6 months ago 
tar -zxf evil.tar

gzip: stdin: not in gzip format
tar: Child returned status 1
tar: Error is not recoverable: exiting now
tar --version
tar (GNU tar) 1.26
Copyright (C) 2011 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.

Written by John Gilmore and Jay Fenlason.

work fine in https://github.com/ptoomey3/evilarc/blob/master/evilarc.py