Slackware: Security Advisory (SSA:2004-140-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200405-12 (cvs)

The remote host is missing updates announced in advisory GLSA 200405-12. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Debian DSA-505-1 : cvs - heap overflow

Stefan Esser discovered a heap overflow in the CVS server, which serves the popular Concurrent Versions System. Malformed 'Entry' Lines in combination with Is-modified and Unchanged can be used to overflow malloced memory. This was proven to be exploitable. %NASLMINLEVEL 70300 C Tenable Network...

Mandrake Linux Security Advisory : cvs (MDKSA-2004:048)

Stefan Esser discovered that malformed 'Entry' lines in combination with Is-modified and Unchanged can be used to overflow malloced memory in a way that can be remotely exploited. The updated packages contain a patch to correct the problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Fedora Core 1 : cvs-1.11.15-5 (2004-126)

Stefan Esser discovered a flaw in cvs where malformed 'Entry' lines could cause a heap overflow. An attacker who has access to a CVS server could use this flaw to execute arbitrary code under the UID which the CVS server is executing. The Common Vulnerabilities and Exposures project cve.mitre.org...

Fedora Core 2 : cvs-1.11.15-6 (2004-131)

Stefan Esser discovered a flaw in cvs where malformed 'Entry' lines could cause a heap overflow. An attacker who has access to a CVS server could use this flaw to execute arbitrary code under the UID which the CVS server is executing. The Common Vulnerabilities and Exposures project cve.mitre.org...

CVE-2004-0396

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines...

Immunity Canvas: PSERVERD

Name| pserverd ---|--- CVE| CVE-2004-0396 Exploit Pack| CANVAS Description| CVS pserverd Notes| CVE Name: CVE-2004-0396 VENDOR: nongnu.org Notes: This overflow impacts CVS feature versions 1.12.7 and earlier, and stable versions 1.11.15 https://vulners.com/cve/CVE-2004-0396. ab note: cvsd running...

CVE-2004-0396

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines...

CVE-2004-0396

CVS CVE-2004-0396 is a heap-based buffer overflow in the CVS server's pserver handling, affecting CVS feature versions 1.12.7 and earlier and 1.11.15 and earlier. The overflow occurs while processing Entry lines and can allow a remote attacker to execute arbitrary code on the CVS server. Affected...

CVE-2004-0396

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines...