9 matches found
Subversion 1.6.6 / 1.6.12 - Code Execution
Exploit for linux platform in category remote exploits This is an exploit for the subversion vulnerability published as CVE-2013-2088. Author: GlacierZ0ne email protected Exploit Type: Code Execution Access Type: Authenticated Remote Exploit Prerequisites: svn command line client available,...
Gentoo Security Advisory GLSA 201309-11
Gentoo Linux Local Security Checks GLSA 201309-11 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
openSUSE Security Update : subversion (openSUSE-SU-2013:1006-1)
This update of subversion includes several bug and security fixes. - update to 1.7.10 bnc821505 CVE-2013-1968 CVE-2013-2088 CVE-2013-2112 - Client-side bugfixes : - fix 'svn revert' 'no such table: revertlist' spurious error - fix 'svn diff' doesn't show some locally added files - fix changelist...
Fedora Update for subversion FEDORA-2013-13672
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2013-2088
contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename...
CVE-2013-2088
contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename...
CVE-2013-2088
CVE-2013-2088 affects Subversion where the pre-commit hook script caused by the file name containing shell metacharacters in contrib/hook-scripts/svn-keyword-check.pl can allow remote authenticated users with commit permissions to execute arbitrary commands. Public references and exploits (e.g., ...
CVE-2013-2088
contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename...
Apache Subversion 命令注入漏洞(CVE-2013-2088)
BUGTRAQ ID: 60265 CVECAN ID: CVE-2013-2088 Subversion是一款开源多用户版本控制系统,支持非ASCII 文本和二进制数据。 Apache Subversion 1.6.22及之前版本、1.7.10及之前版本存在命令注入漏洞,可导致受影响系统损坏。此漏洞源于处理文件名时,svn-keyword-check.pl hook脚本内存在输入验证错误。通过特制的请求可注入任意shell命令并执行这些命令。要成功利用此漏洞需要在服务器端使用contrib脚本。 0 Apache Group Subversion = 1.7.10 Apache Gro...