CVE-2004-1342

CVS 1.12 and earlier on Debian GNU/Linux, when using the repouid patch, allows remote attackers to bypass authentication via the pserver access method...

SUSE CVE-2004-0396

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines...

cvs-brute NSE Script

Performs brute force password auditing against CVS pserver authentication. Script Arguments cvs-brute.repo string containing the name of the repository to brute if no repo was given the script checks the registry for any repositories discovered by the cvs-brute-repository script. If the registry...

CVS pserver Detection

This script retrieves the version of CVS pserver. SPDX-FileCopyrightText: 2009 Greenbone AG SPDX-FileCopyrightText: 2009 LSS Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...

CVS pserver version

Overview : This script retrieves the version of CVS pserver and saves the result in KB. OpenVAS Vulnerability Test $Id: cvspserverversion.nasl 5877 2017-04-06 09:01:48Z teissa $ CVS pserver version Detection Authors: Michael Meyer LSS Security Team Copyright: Copyright c 2009 Greenbone Networks...

Star FT Pserver DoS

Crash on imcomplete PORT / oversized RETR command...

Debian CVS "pserver" remote access authentication bypass vulnerability

Overview Debian Concurrent Versions System CVS remote repositories using "pserver" with the cvs-repouid Debian patch are vulnerable to authentication bypass. Description CVS is a version control and source code maintenance system that is widely used by open-source software development projects.Th...

DEBIAN-CVE-2004-1342

CVS 1.12 and earlier on Debian GNU/Linux, when using the repouid patch, allows remote attackers to bypass authentication via the pserver access method...

CVE-2004-1342

CVS 1.12 and earlier on Debian GNU/Linux, when using the repouid patch, allows remote attackers to bypass authentication via the pserver access method...

CVE-2004-1342

CVE-2004-1342 affects CVS on Debian GNU/Linux prior to the patches in DSA-715-1. When using the cvs-repouid patch with the pserver method, authentication can be bypassed, granting remote access to the repository. The Debian advisory fixes this in CVS versions 1.11.1p1debian-10 (stable woody) and ...

CVE-2004-1342

CVS 1.12 and earlier on Debian GNU/Linux, when using the repouid patch, allows remote attackers to bypass authentication via the pserver access method...

CVE-2004-1342

CVS 1.12 and earlier on Debian GNU/Linux, when using the repouid patch, allows remote attackers to bypass authentication via the pserver access method...

DSA-715-1 cvs - several

Bulletin has no description...

CVS: Multiple vulnerabilities

Background CVS Concurrent Versions System is an open-source network-transparent version control system. It contains both a client utility and a server. Description Alen Zukich has discovered several serious security issues in CVS, including at least one buffer overflow CAN-2005-0753, memory leaks...

Debian DSA-486-1 : cvs - several vulnerabilities

Two vulnerabilities have been discovered and fixed in CVS : - CAN-2004-0180 Sebastian Krahmer discovered a vulnerability whereby a malicious CVS pserver could create arbitrary files on the client system during an update or checkout operation, by supplying absolute pathnames in RCS diffs. -...

Debian DSA-422-1 : cvs - remote vulnerability

The account management of the CVS pserver which is used to give remote access to CVS repositories uses a CVSROOT/passwd file in each repository which contains the accounts and their authentication information as well as the name of the local unix account to use when a pserver account is used. Sin...

FreeBSD : SA-04:10.cvs

The remote host is running a version of FreeBSD which contains a heap overflow in the cvs pserver code. This flaw may be used by an attacker to execute arbitrary code on the remote host, provided that it's running a cvs pserver. C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...

CVE-2004-0396

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines...

DEBIAN-CVE-2004-0396

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines...

CVE-2004-0396

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines...