Lucene search
K

4 matches found

Check Point Advisories
Check Point Advisories
added 2010/02/04 12:0 a.m.16 views

Subversion svn Protocol String Parsing (CVE-2004-0413)

Subversion is a revision control system that handles svn protocol requests. A specially crafted svn request could cause svnserve, the daemon that handles svn protocol requests, to allocate insufficient heap memory and overflow the heap. It is possible for a malicious attacker to run arbitrary cod...

10CVSS7.1AI score0.05877EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2004/08/06 4:0 a.m.24 views

CVE-2004-0413

libsvnrasvn in Subversion 1.0.4 trusts the length field of 1 svn://, 2 svn+ssh://, and 3 other svn protocol URL strings, which allows remote attackers to cause a denial of service memory consumption and possibly execute arbitrary code via an integer overflow that leads to a heap-based buffer...

10CVSS6.3AI score0.05877EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/23 12:0 a.m.24 views

Fedora Core 1 : subversion-0.32.1-5 (2004-165)

A heap overflow vulnerability was discovered in the svn:// protocol handling library, libsvnrasvn. If using the svnserve daemon, an unauthenticated client may be able execute arbitrary code as the user the daemon runs as. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned...

10CVSS6AI score0.05877EPSS
Exploits0References2
CVE
CVE
added 2004/06/23 4:0 a.m.56 views

CVE-2004-0413

CVE-2004-0413 affects Subversion 1.0.4 libraries (libsvn_ra_svn). The vulnerability arises because libsvn_ra_svn trusts the length field of svn://, svn+ssh://, and other svn protocol URL strings, enabling a remote attacker to trigger an integer overflow that leads to a heap-based buffer overflow....

10CVSS7.8AI score0.05877EPSS
Exploits0References8Affected Software2
Rows per page
Query Builder