12 matches found
EUVD-2018-18218
Malware in sbrugna...
CVE-2010-1326
perms.cpp in March Hare Software CVSNT 2.0.58, 2.5.01, 2.5.02, 2.5.03 before build 3736, 2.5.04 before build 2862; CVS Suite 2.5.03, 2008 before build 3736, and 2009 before 3729 allows remote attackers to bypass the permissions check, modify arbitrary modules and directories within CVSROOT, and...
CVE-2018-6461
March Hare WINCVS before 2.8.01 build 6610, and CVS Suite before 2009R2 build 6610, contains an Insecure Library Loading vulnerability in the wincvs2.exe or wincvs.exe file, which may allow local users to gain privileges via a Trojan horse Python or TCL DLL file in the current working directory...
CVE-2018-6461
March Hare WINCVS before 2.8.01 build 6610, and CVS Suite before 2009R2 build 6610, contains an Insecure Library Loading vulnerability in the wincvs2.exe or wincvs.exe file, which may allow local users to gain privileges via a Trojan horse Python or TCL DLL file in the current working directory...
CVE-2018-6461
The CVE-2018-6461 issue involves March Hare WINCVS (pre-2.8.01 build 6610) and CVS Suite (pre-2009R2 build 6610). The root cause is Insecure Library Loading via a Trojan DLL (Python or TCL) placed in the current working directory, targeting wincvs2.exe or wincvs.exe. This enables a local attacker...
CVE-2018-6461
March Hare WINCVS before 2.8.01 build 6610, and CVS Suite before 2009R2 build 6610, contains an Insecure Library Loading vulnerability in the wincvs2.exe or wincvs.exe file, which may allow local users to gain privileges via a Trojan horse Python or TCL DLL file in the current working directory...
March Hare WINCVS and CVS Suite Insecure Library Loading Vulnerability
March Hare WINCVS and CVS Suite are both products of March Hare Australia, March Hare WINCVS is a Windows-based version control system and CVS Suite is a suite of version control systems. A security vulnerability exists in the wincvs2.exe or wincvs.exe file in March Hare WINCVS prior to version...
CVSNT 2.0.51d Privilege Escalation
Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/CVSNT-PRIVILEGE-ESCALATION.txt + ISR: ApparitionSec Vendor: ====================== www.march-hare.com www.wincvs.org cvsgui.sourceforge.net Product: ============== CVSNT...
KLA10098 Vulnerability in CVSNT
An unspecified vulnerability was found in CVSNT. By exploiting this vulnerability malicious users can bypass permission checks, modify directories and execute arbitrary code. This vulnerability can be exploited remotely via specially designed branching. Original advisories March Hare bulletin...
CVE-2010-1326
perms.cpp in March Hare Software CVSNT 2.0.58, 2.5.01, 2.5.02, 2.5.03 before build 3736, 2.5.04 before build 2862; CVS Suite 2.5.03, 2008 before build 3736, and 2009 before 3729 allows remote attackers to bypass the permissions check, modify arbitrary modules and directories within CVSROOT, and...
CVE-2010-1326
CVE-2010-1326 affects CVSNT and related CVS Suite components from March Hare: versions 2.0.58, 2.5.01–2.5.03 (before builds 3736), 2.5.04 (before 2862), and CVS Suite 2008/2009 builds (before 3736/3729). The vulnerability allows remote attackers to bypass the permissions check, modify arbitrary m...
CVE-2010-1326
perms.cpp in March Hare Software CVSNT 2.0.58, 2.5.01, 2.5.02, 2.5.03 before build 3736, 2.5.04 before build 2862; CVS Suite 2.5.03, 2008 before build 3736, and 2009 before 3729 allows remote attackers to bypass the permissions check, modify arbitrary modules and directories within CVSROOT, and...