Lucene search
FreeBSD323784CF-48A6-11D9-A9E7-0001020EED82HistoryNov 25, 2004 - 12:00 a.m.
viewcvs -- information leakage
2004-11-2500:00:00
vuxml.freebsd.org
19
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
65.6%
The hide_cvsroot and forbidden
configuration options are not properly honored by viewcvs
when exporting to a tar file which can lead to information
leakage.
Related
nessus
nessus
Debian DSA-605-1 : viewcvs - settings not honored
2004-12-06 00:00:00
GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities
2004-12-28 00:00:00
openvas
openvas
FreeBSD Ports: viewcvs
2008-09-04 00:00:00
Debian: Security Advisory (DSA-605-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 605-1 (viewcvs)
2008-01-17 00:00:00
osv
osv
viewcvs - settings not honored
2004-12-06 00:00:00
cve
cve
CVE-2004-0915
2005-01-10 05:00:00
debian
debian
[SECURITY] [DSA 605-1] New viewcvs packages fix information leak
2004-12-06 10:18:18
[SECURITY] [DSA 605-1] New viewcvs packages fix information leak
2004-12-06 10:18:18
ubuntucve
ubuntucve
CVE-2004-0915
2005-01-10 00:00:00
securityvulns
securityvulns
gentoo
gentoo
ViewCVS: Information leak and XSS vulnerabilities
2004-12-28 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
65.6%
Related for 323784CF-48A6-11D9-A9E7-0001020EED82