Lucene search

CVE-2004-0180

🗓️ 01 Jun 2004 04:00:00Reported by mitreType

The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates

Reporter	Title	Published	Views	Family All 37
OpenVAS	Gentoo Security Advisory GLSA 200404-13 (cvs)	24 Sep 200800:00	–	openvas
OpenVAS	FreeBSD Security Advisory (FreeBSD-SA-04:07.cvs.asc)	4 Sep 200800:00	–	openvas
OpenVAS	FreeBSD Ports: cvs+ipv6	4 Sep 200800:00	–	openvas
OpenVAS	Slackware Advisory SSA:2004-108-02 cvs security update	11 Sep 201200:00	–	openvas
OpenVAS	FreeBSD Security Advisory (FreeBSD-SA-04:07.cvs.asc)	4 Sep 200800:00	–	openvas
OpenVAS	FreeBSD Ports: cvs+ipv6	4 Sep 200800:00	–	openvas
OpenVAS	Gentoo Security Advisory GLSA 200404-13 (cvs)	24 Sep 200800:00	–	openvas
OpenVAS	Debian Security Advisory DSA 486-1 (cvs)	17 Jan 200800:00	–	openvas
OpenVAS	Slackware: Security Advisory (SSA:2004-108-02)	10 Sep 201200:00	–	openvas
OpenVAS	Debian Security Advisory DSA 486-1 (cvs)	17 Jan 200800:00	–	openvas

Nvd

Node

cvs cvsRange≤1.10

Source	Link
security	www.security.gentoo.org/glsa/glsa-200404-13.xml
secunia	www.secunia.com/advisories/11380
secunia	www.secunia.com/advisories/11375
ftp	www.ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/002_cvs.patch
patches	www.patches.sgi.com/support/free/security/advisories/20040404-01-U.asc
secunia	www.secunia.com/advisories/11377
marc	www.marc.info/
secunia	www.secunia.com/advisories/11548
secunia	www.secunia.com/advisories/11405
secunia	www.secunia.com/advisories/11368

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Jun 2004 04:00Current

6.4Medium risk

Vulners AI Score6.4

CVSS22.6

EPSS0.11603