3 matches found
CVSTrac filediff vulnerability
The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version of filediff has a flaw in the input sanitation which, when exploited, can lead to a remote attacker executing arbitrary commands on the system. SPDX-FileCopyrightText: 2004 David...
CVSTrac filediff vulnerability
The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version of filediff has a flaw in the input sanitation which, when exploited, can lead to a remote attacker executing arbitrary commands on the system. OpenVAS has determined the vulnerability...
CVE-2004-1456
Summary: CVE-2004-1456 is a remote code execution flaw in CVSTrac’s filediff functionality. The issue arises from inadequate input sanitation that allows a remote attacker to execute arbitrary commands through shell metacharacters in the rcsinfo parameter. Public sources (OpenVAS/Nessus entries) ...