Lucene search
K

94 matches found

Tenable Nessus
Tenable Nessus
added 2004/07/25 12:0 a.m.26 views

SuSE-SA:2004:018: subversion

The remote host is missing the patch for the advisory SuSE-SA:2004:018 subversion. Subversion is a version control system like the well known CVS. The subversion code is vulnerable to a remotely exploitable buffer overflow on the heap. The bug appears before any authentication took place. An...

10CVSS6.2AI score0.05877EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2004/07/07 4:0 a.m.28 views

CVE-2004-0397

Stack-based buffer overflow during the aprtimet data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a 1 DAV2 REPORT query or 2 get-dated-rev svn-protocol command...

7.5CVSS6.3AI score0.7525EPSS
Exploits8References1
canvas
canvas
added 2004/07/07 4:0 a.m.42 views

Immunity Canvas: SVNDATE

Name| svndate ---|--- CVE| CVE-2004-0397 Exploit Pack| CANVAS Description| Subversion = 1.0.2 utf-8 Apache2/WebDAV stack vs. heap exploit Notes| CVE Name: CVE-2004-0397 VENDOR: Collabnet OSVDB: http://osvdb.org/displayvuln.php?osvdbid=6301 Repeatability: Multiple tries References:...

7.5CVSS0.6AI score0.7525EPSS
Exploits8
OSV
OSV
added 2004/07/07 4:0 a.m.8 views

CVE-2004-0397

Stack-based buffer overflow during the aprtimet data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a 1 DAV2 REPORT query or 2 get-dated-rev svn-protocol command...

7.8AI score
Exploits0References16
Cvelist
Cvelist
added 2004/06/23 4:0 a.m.28 views

CVE-2004-0413

libsvnrasvn in Subversion 1.0.4 trusts the length field of 1 svn://, 2 svn+ssh://, and 3 other svn protocol URL strings, which allows remote attackers to cause a denial of service memory consumption and possibly execute arbitrary code via an integer overflow that leads to a heap-based buffer...

7.8AI score0.05877EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2004/06/23 4:0 a.m.47 views

CVE-2004-0413

libsvnrasvn in Subversion 1.0.4 trusts the length field of 1 svn://, 2 svn+ssh://, and 3 other svn protocol URL strings, which allows remote attackers to cause a denial of service memory consumption and possibly execute arbitrary code via an integer overflow that leads to a heap-based buffer...

10CVSS8.5AI score0.05877EPSS
Exploits0
securityvulns
securityvulns
added 2004/06/11 12:0 a.m.38 views

[Full-Disclosure] [ GLSA 200406-07 ] Subversion: Remote heap overflow

Gentoo Linux Security Advisory GLSA 200406-07 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

10CVSS1.7AI score0.05877EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2004/06/10 12:0 a.m.35 views

Subversion: Remote heap overflow

Background Subversion is a revision control system that aims to be a "compelling replacement for CVS". It enjoys wide use in the open source community. svnserve allows access to Subversion repositories using URIs with the svn://, svn+ssh://, and other tunelled svn+:// protocols. Description The s...

10CVSS7.8AI score0.05877EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/06/08 12:0 a.m.29 views

Subversion < 1.0.4 Pre-Commit-Hook Remote Overflow

The remote host is reported vulnerable to a remote overflow. An attacker, exploiting this hole, would be given full access to the target machine. Versions of Subversion less than 1.0.4 are vulnerable to this attack. C Tenable Network Security, Inc. include 'compat.inc' ; ifdescription...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/06/08 12:0 a.m.22 views

Subversion < 1.0.3 apr_time_t data Conversion Remote Overflow

The remote host is vulnerable to a remote stack-based overflow. An attacker, exploiting this hole, would be given full access to the target machine. Versions of Subversion less than 1.0.3 are vulnerable to this attack. This vulnerability was discovered by Stefan Esser and posted to public mailing...

7.5CVSS5.5AI score0.7525EPSS
Exploits8References3
Cvelist
Cvelist
added 2004/05/28 4:0 a.m.32 views

CVE-2004-0397

Stack-based buffer overflow during the aprtimet data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a 1 DAV2 REPORT query or 2 get-dated-rev svn-protocol command...

7.7AI score0.7525EPSS
Exploits8References13
Gentoo Linux
Gentoo Linux
added 2004/05/20 12:0 a.m.31 views

Buffer overflow in Subversion

Background Subversion is a version control system intended to eventually replace CVS. Like CVS, it has an optional client-server architecture where the server can be an Apache server running modsvn, or an ssh program as in CVS's :ext: method. In addition to supporting the features found in CVS,...

7.5CVSS7.2AI score0.7525EPSS
Exploits8
securityvulns
securityvulns
added 2004/05/19 12:0 a.m.45 views

[Full-Disclosure] Advisory 08/2004: Subversion remote vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 e-matters GmbH www.e-matters.de -= Security Advisory =- Advisory: Subversion remote vulnerability Release Date: 2004/05/19 Last Modified: 2004/05/19 Author: Stefan Esser [email protected] Application: Subversion = 1.0.2 Severity: A vulnerability...

7.5CVSS0.2AI score0.7525EPSS
Exploits8
FreeBSD
FreeBSD
added 2004/05/19 12:0 a.m.44 views

subversion date parsing vulnerability

Stefan Esser reports: Subversion versions up to 1.0.2 are vulnerable to a date parsing vulnerability which can be abused to allow remote code execution on Subversion servers and therefore could lead to a repository compromise. NOTE: This vulnerability is similar to the date parsing issue that...

7.5CVSS7AI score0.7525EPSS
Exploits8References1
Rows per page
Query Builder