6 matches found
Gentoo Security Advisory GLSA 200412-26 (ViewCVS)
The remote host is missing updates announced in advisory GLSA 200412-26. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
FreeBSD Ports: viewcvs
The remote host is missing an update to the system as announced in the referenced advisory. VID 323784cf-48a6-11d9-a9e7-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: viewcvs
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian Security Advisory DSA 605-1 (viewcvs)
The remote host is missing an update to viewcvs announced via advisory DSA 605-1. OpenVAS Vulnerability Test $Id: deb6051.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 605-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
CVE-2004-0915
CVE-2004-0915 concerns viewcvs: when exporting a repository as a tar archive, the hide_cvsroot and forbidden settings are not properly enforced, enabling potential information leakage. The issue affects viewcvs versions prior to 0.9.2 and is documented across multiple sources (e.g., NVD entry and...
Debian DSA-605-1 : viewcvs - settings not honored
Haris Sehic discovered several vulnerabilities in viewcvs, a utility for viewing CVS and Subversion repositories via HTTP. When exporting a repository as a tar archive the hidecvsroot and forbidden settings were not honoured enough. When upgrading the package for woody, please make a copy of your...