Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2016/03/07 12:0 a.m.24 views

FreeBSD : websvn -- information disclosure (f69e1f09-e39b-11e5-9f77-5453ed2e2b49)

Thijs Kinkhorst reports : James Clawson reported : 'Arbitrary files with a known path can be accessed in websvn by committing a symlink to a repository and then downloading the file using the download link. An attacker must have write access to the repo, and the download option must have been...

3.5CVSS5.4AI score0.00956EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2015/02/09 12:0 a.m.24 views

Fedora Update for websvn FEDORA-2015-1465

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.5CVSS6.5AI score0.00956EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/02/09 12:0 a.m.20 views

Fedora Update for websvn FEDORA-2015-1439

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.5CVSS6.5AI score0.00956EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/02/09 12:0 a.m.25 views

Fedora 20 : websvn-2.3.3-8.fc20 (2015-1439)

Security fix for CVE-2013-6892 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

3.5CVSS5.4AI score0.00956EPSS
Exploits0References3
Debian
Debian
added 2015/01/24 7:18 p.m.22 views

[SECURITY] [DLA 136-1] websvn security update

Package : websvn Version : 2.3.3-1+deb6u1 CVE ID : CVE-2013-6892 Debian Bug : 775682 James Clawson discovered that websvn, a web viewer for Subversion repositories, would follow symlinks in a repository when presenting a file for download. An attacker with repository write access could thereby...

3.5CVSS6.3AI score0.00956EPSS
Exploits0
Debian
Debian
added 2015/01/24 7:17 p.m.24 views

[SECURITY] [DSA 3137-1] websvn security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3137-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst January 24, 2015 http://www.debian.org/security/faq -...

3.5CVSS2AI score0.00956EPSS
Exploits0
CVE
CVE
added 2015/01/21 6:0 p.m.72 views

CVE-2013-6892

CVE-2013-6892 affects WebSVN 2.3.3. Affected component is the websvn web viewer for Subversion repositories; the root cause is a symlink handling issue that allows a remote authenticated user to read arbitrary files by exploiting a symlink during commit/download. Practical impact: an attacker wit...

3.5CVSS6AI score0.00956EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder