Lucene search
HistoryFeb 13, 2005 - 5:00 a.m.
CVE-2004-1438
cve-2004-1438
mod_authz_svn
apache
subversion 1.0.4
security vulnerability
authenticated users
repository
svn copy command
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
57.3%
The mod_authz_svn Apache module for Subversion 1.0.4-r1 and earlier allows remote authenticated users, with write access to the repository, to read unauthorized parts of the repository via the svn copy command.
Affected configurations
Node
subversionsubversionMatch1.0
ORsubversionsubversionMatch1.0.1
ORsubversionsubversionMatch1.0.2
ORsubversionsubversionMatch1.0.3
ORsubversionsubversionMatch1.0.4
ORsubversionsubversionMatch1.0.5
Related
openvas
openvas
Gentoo Security Advisory GLSA 200407-20 (subversion)
2008-09-24 00:00:00
Subversion Module File Restriction Bypass
2005-11-03 00:00:00
Gentoo Security Advisory GLSA 200407-20 (subversion)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2004-1438
2005-02-13 05:00:00
gentoo
gentoo
Subversion: Vulnerability in mod_authz_svn
2004-07-26 00:00:00
nessus
nessus
Subversion < 1.0.6 mod_authz_svn Restricted File Access Bypass
2004-07-27 00:00:00
GLSA-200407-20 : Subversion: Vulnerability in mod_authz_svn
2004-08-30 00:00:00
nvd
nvd
CVE-2004-1438
2004-12-31 05:00:00
debiancve
debiancve
CVE-2004-1438
2005-02-13 05:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
6.2 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
57.3%
Related for CVE-2004-1438