Lucene search
K

2570 matches found

Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.20 views

GLSA-200406-07 : Subversion: Remote heap overflow

The remote host is affected by the vulnerability described in GLSA-200406-07 Subversion: Remote heap overflow The svn protocol parser trusts the indicated length of a URI string sent by a client. This allows a client to specify a very long string, thereby causing svnserve to allocate enough memor...

10CVSS6.6AI score0.05877EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.45 views

GLSA-200405-14 : Buffer overflow in Subversion

The remote host is affected by the vulnerability described in GLSA-200405-14 Buffer overflow in Subversion All releases of Subversion prior to 1.0.3 have a vulnerability in the date-parsing code. This vulnerability may allow denial of service or arbitrary code execution as the Subversion user. Bo...

7.5CVSS6.3AI score0.7525EPSS
Exploits8References4
Tenable Nessus
Tenable Nessus
added 2004/08/30 12:0 a.m.15 views

GLSA-200407-20 : Subversion: Vulnerability in mod_authz_svn

The remote host is affected by the vulnerability described in GLSA-200407-20 Subversion: Vulnerability in modauthzsvn Users with write access to part of a Subversion repository may bypass read restrictions on any part of that repository. This can be done using an 'svn copy' command to copy the...

2.1CVSS5.7AI score0.00701EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/08/20 12:0 a.m.10 views

Subversion (SVN) Software Detection (deprecated)

Binary data 1226.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/08/20 12:0 a.m.14 views

Subversion (SVN) apr_time_t Data Conversion Remote Overflow (deprecated)

Binary data 1227.prm...

7.5CVSS7.3AI score0.7525EPSS
Exploits8References4
Tenable Nessus
Tenable Nessus
added 2004/08/20 12:0 a.m.10 views

Subversion (SVN) < 1.0.6 Module File Restriction Bypass (deprecated)

Binary data 1964.prm...

2.1CVSS7.3AI score0.00701EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.20 views

Subversion (SVN) < 1.0.3 Remote Buffer Overflow (deprecated)

Binary data 2117.prm...

7.5CVSS7.3AI score0.7525EPSS
Exploits8References5
UbuntuCve
UbuntuCve
added 2004/08/06 4:0 a.m.25 views

CVE-2004-0413

libsvnrasvn in Subversion 1.0.4 trusts the length field of 1 svn://, 2 svn+ssh://, and 3 other svn protocol URL strings, which allows remote attackers to cause a denial of service memory consumption and possibly execute arbitrary code via an integer overflow that leads to a heap-based buffer...

10CVSS6.3AI score0.05877EPSS
Exploits0References1
OSV
OSV
added 2004/08/06 4:0 a.m.1 views

DEBIAN-CVE-2004-0413

libsvnrasvn in Subversion 1.0.4 trusts the length field of 1 svn://, 2 svn+ssh://, and 3 other svn protocol URL strings, which allows remote attackers to cause a denial of service memory consumption and possibly execute arbitrary code via an integer overflow that leads to a heap-based buffer...

10CVSS8.3AI score0.05877EPSS
Exploits0References1
OSV
OSV
added 2004/08/06 4:0 a.m.6 views

CVE-2004-0413

libsvnrasvn in Subversion 1.0.4 trusts the length field of 1 svn://, 2 svn+ssh://, and 3 other svn protocol URL strings, which allows remote attackers to cause a denial of service memory consumption and possibly execute arbitrary code via an integer overflow that leads to a heap-based buffer...

10CVSS7.9AI score0.05877EPSS
Exploits0References9
Packet Storm
Packet Storm
added 2004/07/28 12:0 a.m.30 views

IRM Security Advisory 9

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- IRM Security Advisory No. 009 RiSearch and RiSearch ProPro are vulnerable to open FTP/HTTP proxy, directory listings and file disclosure vulnerabilities Vulnerablity Type / Importance: Network Subversion, Open Proxy, Brute-For...

0.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/07/27 12:0 a.m.28 views

Subversion < 1.0.6 mod_authz_svn Restricted File Access Bypass

You are running a version of Subversion which is older than 1.0.6. A flaw exists in older version, in the apache module modauthzsvn. An attacker can access to any file in a given subversion repository, no matter what restrictions have been set by the administrator. C Tenable Network Security, Inc...

2.1CVSS5.4AI score0.00701EPSS
Exploits0References1
Gentoo Linux
Gentoo Linux
added 2004/07/26 12:0 a.m.38 views

Subversion: Vulnerability in mod_authz_svn

Background Subversion is an advanced version control system, similar to CVS, which supports additional functionality such as the ability to move, copy and delete files and directories. A Subversion server may be run as an Apache module, a standalone server svnserve, or on-demand over ssh a la CVS...

2.1CVSS1.8AI score0.00701EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/07/25 12:0 a.m.26 views

SuSE-SA:2004:018: subversion

The remote host is missing the patch for the advisory SuSE-SA:2004:018 subversion. Subversion is a version control system like the well known CVS. The subversion code is vulnerable to a remotely exploitable buffer overflow on the heap. The bug appears before any authentication took place. An...

10CVSS6.2AI score0.05877EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/24 12:0 a.m.14 views

Fedora Core 2 : subversion-1.0.6-1 (2004-231)

This update includes the latest release of Subversion, including a security fix for an issue in the modauthzsvn Apache authentication module which could allow a read restriction for a portion of the repository to be bypassed by a user who has write access to a different portion of the repository...

5.4AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/23 12:0 a.m.50 views

Fedora Core 1 : subversion-0.32.1-2 (2004-127)

Stefan Esser discovered an issue in the date parsing routines in Subversion which allows a buffer overflow. An attacker could send malicious requests to a Subversion server either Apache-based using moddavsvn, or using the svnserve daemon and perform arbitrary execution of code. The Common...

7.5CVSS5.8AI score0.7525EPSS
Exploits8References2
Tenable Nessus
Tenable Nessus
added 2004/07/23 12:0 a.m.30 views

Fedora Core 2 : subversion-1.0.2-2.1 (2004-128)

Stefan Esser discovered an issue in the date parsing routines in Subversion which allows a buffer overflow. An attacker could send malicious requests to a Subversion server either Apache-based using moddavsvn, or using the svnserve daemon and perform arbitrary execution of code. The Common...

7.5CVSS5.8AI score0.7525EPSS
Exploits8References2
UbuntuCve
UbuntuCve
added 2004/07/07 4:0 a.m.28 views

CVE-2004-0397

Stack-based buffer overflow during the aprtimet data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a 1 DAV2 REPORT query or 2 get-dated-rev svn-protocol command...

7.5CVSS6.3AI score0.7525EPSS
Exploits8References1
OSV
OSV
added 2004/07/07 4:0 a.m.3 views

DEBIAN-CVE-2004-0397

Stack-based buffer overflow during the aprtimet data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a 1 DAV2 REPORT query or 2 get-dated-rev svn-protocol command...

7.5CVSS8.3AI score0.7525EPSS
Exploits8References1
canvas
canvas
added 2004/07/07 4:0 a.m.42 views

Immunity Canvas: SVNDATE

Name| svndate ---|--- CVE| CVE-2004-0397 Exploit Pack| CANVAS Description| Subversion = 1.0.2 utf-8 Apache2/WebDAV stack vs. heap exploit Notes| CVE Name: CVE-2004-0397 VENDOR: Collabnet OSVDB: http://osvdb.org/displayvuln.php?osvdbid=6301 Repeatability: Multiple tries References:...

7.5CVSS0.6AI score0.7525EPSS
Exploits8
Rows per page
Query Builder