ID SECURITYVULNS:DOC:16195 Type securityvulns Reporter Securityvulns Modified 2007-02-27T00:00:00
Description
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi!
Short version for the busy ones:
o Security issue on ViewCVS 0.9.4
o Not really exploitable unless malicious users have CVS write access
AND victim visits pre-crafted URL
ViewCVS 0.9.4
http://viewvc.tigris.org/servlets/ProjectDocumentList?folderID=6005
is no longer under development, has been abandoned in favor of ViewVC
(http://viewvc.org/) and should probably no longer be used in production
environments. Unfortunately this script is still widely used, so I
think it's still worth telling about this otherwise not really important
finding.
The issue is one which can hardly be practially exploited (thus this
short and boring 'advisory' and no prior notice to the previous
developers). The source of the problem is that ViewCVS allows users to
specify the content type which the server generated HTTP response will
be sent with.
This was previously considered a HTTP response splitting vulnerability
by Jose Antonio Coret (Joxean Koret)
http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030514.html
(BID 12112, couldn't find a CVE, AFAICT it is not CAN-2004-1062)
and, according to him, a patch has been stored on the 1.0-dev CVS
branch. The 0.9.4 release on viewvc.tigris.org seems to be unpatched and
it's possible that some Linux distributions and whoever would normally
care were never patched against this.
However, it is actually more than the response splitting issue. For an
example, please compare what your web browser displays on these locations:
http://cvs.sourceforge.jp/cgi-bin/viewcvs.cgi/peach/anno_proto/html/bymap/test00.htm?rev=1.9&content-type=text/vnd.viewcvs-markup
http://cvs.sourceforge.jp/cgi-bin/viewcvs.cgi/peach/anno_proto/html/bymap/test00.htm?rev=1.9&content-type=text/html
The two obviously look somewhat differently, and on the second location
you can see (assuming you have Javascript activated globally) that a
request is made to Google (from within the security context of
cvs.sourceforge.jp).
This means that ViewCVS and thus the domain it runs in is vulnerable to
Cross Site Scripting, assuming that someone not fully trustable has
write permissions on one of the CVS repositories ViewCVS grants access
to here.
But XSS is just one possibility. This should also work for delivering
VML exploits and other funny stuff, such as ... when some victim uses a
funny web browser (such as Internet Explorer 5.5/6/7) and some attacker
stores files such as this
http://moritz-naumann.com/tests/xss2.jpg
in a CVS repository and makes the victim access it with with
'&content-type=image/jpeg' appended to the ViewCVS URL.
However, all of the above requires that some admin messes around with
CVS write access on the server ViewCVS grants read access to and gave
access to someone with bad intentions or no clue. Of course, both of
this could easily happen on web sites such as Sourceforge (who, however,
introduced separate subdomains for user authentication and web based
access to CVS), or sites which use CVS in the way a version controlled
wiki is used and allow public write access.
I suggest that Linux distributions should patch this issue short term
and deprecate support for ViewCVS mid to long term.
Web application developer lessons learnt (once again):
1. Explicitly limit your application to the functionality you want and
need it to have.
2. More precisely, do not use user generated data provided in HTTP
requests to specify content types of HTTP responses unless you are using
a whitelisting approach.
Thanks for reading, have a fine day.
Moritz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
{"id": "SECURITYVULNS:DOC:16195", "bulletinFamily": "software", "title": "ViewCVS 0.9.4 issues", "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\nHi!\r\n\r\n*************************************************************************\r\n Short version for the busy ones:\r\n o Security issue on ViewCVS 0.9.4\r\n o Not really exploitable unless malicious users have CVS write access\r\n AND victim visits pre-crafted URL\r\n*************************************************************************\r\n\r\nViewCVS 0.9.4\r\nhttp://viewvc.tigris.org/servlets/ProjectDocumentList?folderID=6005\r\nis no longer under development, has been abandoned in favor of ViewVC\r\n(http://viewvc.org/) and should probably no longer be used in production\r\nenvironments. Unfortunately this script _is_ still widely used, so I\r\nthink it's still worth telling about this otherwise not really important\r\nfinding.\r\n\r\nThe issue is one which can hardly be practially exploited (thus this\r\nshort and boring 'advisory' and no prior notice to the previous\r\ndevelopers). The source of the problem is that ViewCVS allows users to\r\nspecify the content type which the server generated HTTP response will\r\nbe sent with.\r\n\r\nThis was previously considered a HTTP response splitting vulnerability\r\nby Jose Antonio Coret (Joxean Koret)\r\nhttp://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030514.html\r\n(BID 12112, couldn't find a CVE, AFAICT it is _not_ CAN-2004-1062)\r\nand, according to him, a patch has been stored on the 1.0-dev CVS\r\nbranch. The 0.9.4 release on viewvc.tigris.org seems to be unpatched and\r\nit's possible that some Linux distributions and whoever would normally\r\ncare were never patched against this.\r\n\r\nHowever, it is actually more than the response splitting issue. For an\r\nexample, please compare what your web browser displays on these locations:\r\nhttp://cvs.sourceforge.jp/cgi-bin/viewcvs.cgi/peach/anno_proto/html/bymap/test00.htm?rev=1.9&content-type=text/vnd.viewcvs-markup\r\nhttp://cvs.sourceforge.jp/cgi-bin/viewcvs.cgi/peach/anno_proto/html/bymap/test00.htm?rev=1.9&content-type=text/html\r\n\r\nThe two obviously look somewhat differently, and on the second location\r\nyou can see (assuming you have Javascript activated globally) that a\r\nrequest is made to Google (from within the security context of\r\ncvs.sourceforge.jp).\r\n\r\nThis means that ViewCVS and thus the domain it runs in is vulnerable to\r\nCross Site Scripting, assuming that someone not fully trustable has\r\nwrite permissions on one of the CVS repositories ViewCVS grants access\r\nto here.\r\n\r\nBut XSS is just one possibility. This should also work for delivering\r\nVML exploits and other funny stuff, such as ... when some victim uses a\r\nfunny web browser (such as Internet Explorer 5.5/6/7) and some attacker\r\nstores files such as this\r\nhttp://moritz-naumann.com/tests/xss2.jpg\r\nin a CVS repository and makes the victim access it with with\r\n'&content-type=image/jpeg' appended to the ViewCVS URL.\r\n\r\nHowever, all of the above requires that some admin messes around with\r\nCVS write access on the server ViewCVS grants read access to and gave\r\naccess to someone with bad intentions or no clue. Of course, both of\r\nthis could easily happen on web sites such as Sourceforge (who, however,\r\nintroduced separate subdomains for user authentication and web based\r\naccess to CVS), or sites which use CVS in the way a version controlled\r\nwiki is used and allow public write access.\r\n\r\nI suggest that Linux distributions should patch this issue short term\r\nand deprecate support for ViewCVS mid to long term.\r\n\r\nWeb application developer lessons learnt (once again):\r\n1. Explicitly limit your application to the functionality you want and\r\nneed it to have.\r\n2. More precisely, do not use user generated data provided in HTTP\r\nrequests to specify content types of HTTP responses unless you are using\r\na whitelisting approach.\r\n\r\nThanks for reading, have a fine day.\r\n\r\nMoritz\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.6 (GNU/Linux)\r\n\r\niD8DBQFF41Hln6GkvSd/BgwRAgWSAJ47KZFCVAdzLMURunMFZWrKz7AbFACdHxo7\r\nLTzzddXx7obLmXGsot4d1ug=\r\n=T0XX\r\n-----END PGP SIGNATURE-----", "published": "2007-02-27T00:00:00", "modified": "2007-02-27T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:16195", "reporter": "Securityvulns", "references": [], "cvelist": ["CVE-2004-1062"], "type": "securityvulns", "lastseen": "2018-08-31T11:10:21", "edition": 1, "viewCount": 12, "enchantments": {"score": {"value": 6.0, "vector": "NONE", "modified": "2018-08-31T11:10:21", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-1062"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2004-1062"]}, {"type": "osvdb", "idList": ["OSVDB:12682", "OSVDB:3230", "OSVDB:13449"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "nessus", "idList": ["2478.PRM", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "2446.PRM", "GENTOO_GLSA-200412-26.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7479"]}], "modified": "2018-08-31T11:10:21", "rev": 2}, "vulnersScore": 6.0}, "affectedSoftware": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}
{"ubuntucve": [{"id": "UB:CVE-2004-1062", "hash": "655ac81b447bcdde224a0171638d28b7", "type": "ubuntucve", "bulletinFamily": "info", "title": "CVE-2004-1062", "description": "Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow\nremote attackers to inject arbitrary HTML and web script via certain error\nmessages.", "published": "2004-12-28T00:00:00", "modified": "2004-12-28T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://ubuntu.com/security/CVE-2004-1062", "reporter": "ubuntu.com", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "https://nvd.nist.gov/vuln/detail/CVE-2004-1062", "https://launchpad.net/bugs/cve/CVE-2004-1062", "https://security-tracker.debian.org/tracker/CVE-2004-1062"], "cvelist": ["CVE-2004-1062"], "immutableFields": [], "lastseen": "2021-07-31T02:37:13", "history": [{"bulletin": {"id": "UB:CVE-2004-1062", "hash": "24de72ed331c19203feaf6d2d916bc0a", "type": "ubuntucve", "bulletinFamily": "info", "title": "CVE-2004-1062", "description": "Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow\nremote attackers to inject arbitrary HTML and web script via certain error\nmessages.", "published": "2004-12-28T00:00:00", "modified": "2004-12-28T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://ubuntu.com/security/CVE-2004-1062", "reporter": "ubuntu.com", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "https://nvd.nist.gov/vuln/detail/CVE-2004-1062", "https://launchpad.net/bugs/cve/CVE-2004-1062", "https://security-tracker.debian.org/tracker/CVE-2004-1062"], "cvelist": ["CVE-2004-1062"], "immutableFields": [], "lastseen": "2021-07-01T01:25:00", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-1062"]}, {"type": "osvdb", "idList": ["OSVDB:13449", "OSVDB:3230", "OSVDB:12682"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:16195", "SECURITYVULNS:VULN:7479"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}, {"type": "nessus", "idList": ["VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "GENTOO_GLSA-200412-26.NASL"]}], "modified": "2021-07-01T01:25:00", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-07-01T01:25:00", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "viewcvs"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "viewvc"}], "bugs": []}, "lastseen": "2021-07-01T01:25:00", "differentElements": ["cvss2"], "edition": 1}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-1062"]}, {"type": "osvdb", "idList": ["OSVDB:12682", "OSVDB:3230", "OSVDB:13449"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "nessus", "idList": ["2478.PRM", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "2446.PRM", "GENTOO_GLSA-200412-26.NASL"]}], "modified": "2021-07-31T02:37:13", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-07-31T02:37:13", "rev": 2}}, "objectVersion": "1.6", "affectedPackage": [{"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "viewcvs"}, {"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "viewvc"}], "bugs": [], "_object_type": "robots.models.ubuntucve.UbuntuCVEBulletin", "_object_types": ["robots.models.ubuntucve.UbuntuCVEBulletin", "robots.models.base.Bulletin"]}], "cve": [{"id": "CVE-2004-1062", "bulletinFamily": "NVD", "title": "CVE-2004-1062", "description": "Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.", "published": "2004-12-28T05:00:00", "modified": "2017-07-11T01:30:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-1062", "reporter": "cve@mitre.org", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/18718", "http://security.gentoo.org/glsa/glsa-200412-26.xml", "http://www.mikx.de/index.php?p=6", "http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html", "http://www.novell.com/linux/security/advisories/2005_01_sr.html"], "cvelist": ["CVE-2004-1062"], "type": "cve", "lastseen": "2021-04-21T20:25:18", "history": [{"bulletin": {"affectedSoftware": [{"name": "viewcvs viewcvs", "operator": "eq", "version": "0.9.2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:viewcvs:viewcvs:0.9.2"], "cpe23": ["cpe:2.3:a:viewcvs:viewcvs:0.9.2:*:*:*:*:*:*:*"], "cvelist": ["CVE-2004-1062"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.", "edition": 1, "enchantments": {"dependencies": {"modified": "2019-05-29T18:08:03", "references": [{"idList": ["GENTOO_GLSA-200412-26.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL"], "type": "nessus"}, {"idList": ["OSVDB:12682", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OPENVAS:54785"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2019-05-29T18:08:03", "rev": 2, "value": 4.5, "vector": "NONE"}}, "hash": "0fff12064e4fa87846b76a2b5845962a44cf65f604be19a72b883534f9cf83d2", "hashmap": [{"hash": "9d69e14940580883a6d7defa36f3bbfd", "key": "description"}, {"hash": "8b0f5ee6e6880163428624cdbac23f38", "key": "affectedSoftware"}, {"hash": "82847dc48e8fe2d439376881b3978efb", "key": "cpe23"}, {"hash": "cf4feaf65b87b55e62da6266db50e005", "key": "cvelist"}, {"hash": "d4139c3e94ad56ac445ba08d871e8a46", "key": "modified"}, {"hash": "b8ca66ac2fcf90e2210302673081ede6", "key": "references"}, {"hash": "02a3f2a40e0eca794d9c128ff06d74cb", "key": "title"}, {"hash": "01292d366696a8b1eab8918fa46a07cd", "key": "published"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "22f38a29c775bc65b650dcf28358589f", "key": "cpe"}, {"hash": "31296b2751dcf002ef8479b877785688", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "1376299678e4b22a45cbb6e661929c18", "key": "cvss2"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-1062", "id": "CVE-2004-1062", "lastseen": "2019-05-29T18:08:03", "modified": "2017-07-11T01:30:00", "objectVersion": "1.3", "published": "2004-12-28T05:00:00", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/18718", "http://security.gentoo.org/glsa/glsa-200412-26.xml", "http://www.mikx.de/index.php?p=6", "http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html", "http://www.novell.com/linux/security/advisories/2005_01_sr.html"], "reporter": "cve@mitre.org", "title": "CVE-2004-1062", "type": "cve", "viewCount": 0}, "differentElements": ["affectedSoftware"], "edition": 1, "lastseen": "2019-05-29T18:08:03"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "viewcvs:viewcvs", "name": "viewcvs", "operator": "eq", "version": "0.9.2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:viewcvs:viewcvs:0.9.2"], "cpe23": ["cpe:2.3:a:viewcvs:viewcvs:0.9.2:*:*:*:*:*:*:*"], "cpeConfiguration": {}, "cvelist": ["CVE-2004-1062"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.", "edition": 2, "enchantments": {"dependencies": {"modified": "2020-09-21T13:47:43", "references": [{"idList": ["GENTOO_GLSA-200412-26.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL"], "type": "nessus"}, {"idList": ["OSVDB:12682", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OPENVAS:54785"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-09-21T13:47:43", "rev": 2, "value": 4.5, "vector": "NONE"}}, "hash": "a52d90b5a175d97d292741f991b5fbeb1fdbc26d81c0f577910f2ed1a0885894", "hashmap": [{"hash": "a0d6eb2e5f99be7d249e3e1b7edd9b46", "key": "affectedSoftware"}, {"hash": "9d69e14940580883a6d7defa36f3bbfd", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "82847dc48e8fe2d439376881b3978efb", "key": "cpe23"}, {"hash": "cf4feaf65b87b55e62da6266db50e005", "key": "cvelist"}, {"hash": "d4139c3e94ad56ac445ba08d871e8a46", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpeConfiguration"}, {"hash": "b8ca66ac2fcf90e2210302673081ede6", "key": "references"}, {"hash": "02a3f2a40e0eca794d9c128ff06d74cb", "key": "title"}, {"hash": "01292d366696a8b1eab8918fa46a07cd", "key": "published"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "22f38a29c775bc65b650dcf28358589f", "key": "cpe"}, {"hash": "31296b2751dcf002ef8479b877785688", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "1376299678e4b22a45cbb6e661929c18", "key": "cvss2"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-1062", "id": "CVE-2004-1062", "lastseen": "2020-09-21T13:47:43", "modified": "2017-07-11T01:30:00", "objectVersion": "1.3", "published": "2004-12-28T05:00:00", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/18718", "http://security.gentoo.org/glsa/glsa-200412-26.xml", "http://www.mikx.de/index.php?p=6", "http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html", "http://www.novell.com/linux/security/advisories/2005_01_sr.html"], "reporter": "cve@mitre.org", "title": "CVE-2004-1062", "type": "cve", "viewCount": 0}, "differentElements": ["cpeConfiguration"], "edition": 2, "lastseen": "2020-09-21T13:47:43"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "viewcvs:viewcvs", "name": "viewcvs", "operator": "eq", "version": "0.9.2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:viewcvs:viewcvs:0.9.2"], "cpe23": ["cpe:2.3:a:viewcvs:viewcvs:0.9.2:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:viewcvs:viewcvs:0.9.2:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2004-1062"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.", "edition": 4, "enchantments": {"dependencies": {"modified": "2021-02-02T05:22:59", "references": [{"idList": ["GENTOO_GLSA-200412-26.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL"], "type": "nessus"}, {"idList": ["OSVDB:12682", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OPENVAS:54785"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2021-02-02T05:22:59", "rev": 2, "value": 4.5, "vector": "NONE"}}, "extraReferences": [{"name": "http://www.mikx.de/index.php?p=6", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "http://www.mikx.de/index.php?p=6"}, {"name": "20041223 Cross-Site Scripting - an industry-wide problem", "refsource": "FULLDISC", "tags": ["Vendor Advisory"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html"}, {"name": "SUSE-SR:2005:001", "refsource": "SUSE", "tags": [], "url": "http://www.novell.com/linux/security/advisories/2005_01_sr.html"}, {"name": "viewcvs-xss(18718)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18718"}, {"name": "GLSA-200412-26", "refsource": "GENTOO", "tags": ["Patch", "Vendor Advisory"], "url": "http://security.gentoo.org/glsa/glsa-200412-26.xml"}], "hash": "a2c946a22bb7dfe27a8ed3484d78593c0c722c61ae8f40da0044a3e23a23a502", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "a0d6eb2e5f99be7d249e3e1b7edd9b46", "key": "affectedSoftware"}, {"hash": "b041a7f130cb1508ad2ce072df922a3c", "key": "extraReferences"}, {"hash": "9d69e14940580883a6d7defa36f3bbfd", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "82847dc48e8fe2d439376881b3978efb", "key": "cpe23"}, {"hash": "cf4feaf65b87b55e62da6266db50e005", "key": "cvelist"}, {"hash": "d4139c3e94ad56ac445ba08d871e8a46", "key": "modified"}, {"hash": "57a847faca11ded4eced2070d760b281", "key": "cpeConfiguration"}, {"hash": "b8ca66ac2fcf90e2210302673081ede6", "key": "references"}, {"hash": "02a3f2a40e0eca794d9c128ff06d74cb", "key": "title"}, {"hash": "01292d366696a8b1eab8918fa46a07cd", "key": "published"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "22f38a29c775bc65b650dcf28358589f", "key": "cpe"}, {"hash": "31296b2751dcf002ef8479b877785688", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "1376299678e4b22a45cbb6e661929c18", "key": "cvss2"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-1062", "id": "CVE-2004-1062", "immutableFields": [], "lastseen": "2021-02-02T05:22:59", "modified": "2017-07-11T01:30:00", "objectVersion": "1.5", "published": "2004-12-28T05:00:00", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/18718", "http://security.gentoo.org/glsa/glsa-200412-26.xml", "http://www.mikx.de/index.php?p=6", "http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html", "http://www.novell.com/linux/security/advisories/2005_01_sr.html"], "reporter": "cve@mitre.org", "title": "CVE-2004-1062", "type": "cve", "viewCount": 2}, "different_elements": ["cpeConfiguration"], "edition": 4, "lastseen": "2021-02-02T05:22:59"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "viewcvs:viewcvs", "name": "viewcvs", "operator": "eq", "version": "0.9.2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:viewcvs:viewcvs:0.9.2"], "cpe23": ["cpe:2.3:a:viewcvs:viewcvs:0.9.2:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:viewcvs:viewcvs:0.9.2:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2004-1062"], "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.", "edition": 3, "enchantments": {"dependencies": {"modified": "2020-10-03T11:33:39", "references": [{"idList": ["GENTOO_GLSA-200412-26.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL"], "type": "nessus"}, {"idList": ["OSVDB:12682", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OPENVAS:54785"], "type": "openvas"}], "rev": 2}, "score": {"modified": "2020-10-03T11:33:39", "rev": 2, "value": 4.5, "vector": "NONE"}}, "extraReferences": [], "hash": "a3385851609c19ba2488e734b68f8bca6ec83d56c5559882a0d8fbac5a5e2ebe", "hashmap": [{"hash": "a0d6eb2e5f99be7d249e3e1b7edd9b46", "key": "affectedSoftware"}, {"hash": "9d69e14940580883a6d7defa36f3bbfd", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "82847dc48e8fe2d439376881b3978efb", "key": "cpe23"}, {"hash": "cf4feaf65b87b55e62da6266db50e005", "key": "cvelist"}, {"hash": "d4139c3e94ad56ac445ba08d871e8a46", "key": "modified"}, {"hash": "57a847faca11ded4eced2070d760b281", "key": "cpeConfiguration"}, {"hash": "b8ca66ac2fcf90e2210302673081ede6", "key": "references"}, {"hash": "02a3f2a40e0eca794d9c128ff06d74cb", "key": "title"}, {"hash": "01292d366696a8b1eab8918fa46a07cd", "key": "published"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "22f38a29c775bc65b650dcf28358589f", "key": "cpe"}, {"hash": "31296b2751dcf002ef8479b877785688", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "1376299678e4b22a45cbb6e661929c18", "key": "cvss2"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "extraReferences"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "f74a1c24e49a5ecb0eefb5e51d4caa14", "key": "cvss"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-1062", "id": "CVE-2004-1062", "lastseen": "2020-10-03T11:33:39", "modified": "2017-07-11T01:30:00", "objectVersion": "1.3", "published": "2004-12-28T05:00:00", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/18718", "http://security.gentoo.org/glsa/glsa-200412-26.xml", "http://www.mikx.de/index.php?p=6", "http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html", "http://www.novell.com/linux/security/advisories/2005_01_sr.html"], "reporter": "cve@mitre.org", "title": "CVE-2004-1062", "type": "cve", "viewCount": 1}, "differentElements": ["extraReferences"], "edition": 3, "lastseen": "2020-10-03T11:33:39"}], "edition": 5, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "a0d6eb2e5f99be7d249e3e1b7edd9b46"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "22f38a29c775bc65b650dcf28358589f"}, {"key": "cpe23", "hash": "82847dc48e8fe2d439376881b3978efb"}, {"key": "cpeConfiguration", "hash": "a44685b6761f18e9e339ba12a6428358"}, {"key": "cvelist", "hash": "cf4feaf65b87b55e62da6266db50e005"}, {"key": "cvss", "hash": "f74a1c24e49a5ecb0eefb5e51d4caa14"}, {"key": "cvss2", "hash": "1376299678e4b22a45cbb6e661929c18"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "9d69e14940580883a6d7defa36f3bbfd"}, {"key": "extraReferences", "hash": "b041a7f130cb1508ad2ce072df922a3c"}, {"key": "href", "hash": "31296b2751dcf002ef8479b877785688"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "d4139c3e94ad56ac445ba08d871e8a46"}, {"key": "published", "hash": "01292d366696a8b1eab8918fa46a07cd"}, {"key": "references", "hash": "b8ca66ac2fcf90e2210302673081ede6"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "02a3f2a40e0eca794d9c128ff06d74cb"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "9ae07578c72d268c97e9e4a83e6cc063e6986bae42d1158a7098164249e01b25", "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2004-1062"]}, {"type": "osvdb", "idList": ["OSVDB:12682", "OSVDB:3230", "OSVDB:13449"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "nessus", "idList": ["2478.PRM", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "2446.PRM", "GENTOO_GLSA-200412-26.NASL"]}], "modified": "2021-04-21T20:25:18", "rev": 2}, "score": {"value": 4.5, "vector": "NONE", "modified": "2021-04-21T20:25:18", "rev": 2}}, "objectVersion": "1.5", "cpe": ["cpe:/a:viewcvs:viewcvs:0.9.2"], "affectedSoftware": [{"cpeName": "viewcvs:viewcvs", "name": "viewcvs", "operator": "eq", "version": "0.9.2"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:viewcvs:viewcvs:0.9.2:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:viewcvs:viewcvs:0.9.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "http://www.mikx.de/index.php?p=6", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "http://www.mikx.de/index.php?p=6"}, {"name": "20041223 Cross-Site Scripting - an industry-wide problem", "refsource": "FULLDISC", "tags": ["Vendor Advisory"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html"}, {"name": "SUSE-SR:2005:001", "refsource": "SUSE", "tags": [], "url": "http://www.novell.com/linux/security/advisories/2005_01_sr.html"}, {"name": "viewcvs-xss(18718)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18718"}, {"name": "GLSA-200412-26", "refsource": "GENTOO", "tags": ["Patch", "Vendor Advisory"], "url": "http://security.gentoo.org/glsa/glsa-200412-26.xml"}], "immutableFields": []}], "gentoo": [{"hash": "b8953d1efcf9697b3c8204397ba16682cbce6a0fc4dc28c4ba9660738229c636", "id": "GLSA-200412-26", "lastseen": "2016-09-06T19:46:49", "viewCount": 0, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "af02626d15685a310535b864c734ac49"}, {"key": "cvss", "hash": "a792e2393dff1e200b885c5245988f6f"}, {"key": "cvss2", "hash": "f30109dfdbfbf783c0b61792a6b2c20a"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "c50a1b134910fc593ae8dc042dbe9d81"}, {"key": "href", "hash": "c6ee6fe63cf407166c1e2fbeb56d5bd3"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "89afc1a8e8f2661de1eb7061d614131a"}, {"key": "published", "hash": "89afc1a8e8f2661de1eb7061d614131a"}, {"key": "references", "hash": "e971e8312b8bf6ba88c88ae399427340"}, {"key": "reporter", "hash": "ac1fd6b3deacaf22b54dd1934ae33181"}, {"key": "title", "hash": "fa8c40ec02d3717d4c116c8ec9785542"}, {"key": "type", "hash": "365d0fc7d6206ff26e2f2c2a78c91a94"}], "bulletinFamily": "unix", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "edition": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-0915", "CVE-2004-1062"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2004-0915", "UB:CVE-2004-1062"]}, {"type": "openvas", "idList": ["OPENVAS:54785", "OPENVAS:52281", "OPENVAS:53293"]}, {"type": "nessus", "idList": ["2446.PRM", "2478.PRM", "DEBIAN_DSA-605.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "GENTOO_GLSA-200412-26.NASL"]}, {"type": "osvdb", "idList": ["OSVDB:12235", "OSVDB:3230", "OSVDB:12682", "OSVDB:13449"]}, {"type": "debian", "idList": ["DEBIAN:DSA-605-1:4AE98"]}, {"type": "freebsd", "idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:16195", "SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291"]}], "modified": "2016-09-06T19:46:49", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2016-09-06T19:46:49", "rev": 2}}, "type": "gentoo", "affectedPackage": [{"arch": "all", "packageFilename": "UNKNOWN", "OSVersion": "any", "operator": "le", "packageName": "www-apps/viewcvs", "packageVersion": "0.9.2_p20041207", "OS": "Gentoo"}], "description": "### Background\n\nViewCVS is a browser interface for viewing CVS and Subversion version control repositories through a web browser. \n\n### Description\n\nThe tar export functions in ViewCVS bypass the 'hide_cvsroot' and 'forbidden' settings and therefore expose information that should be kept secret (CAN-2004-0915). Furthermore, some error messages in ViewCVS do not filter user-provided information, making it vulnerable to a cross-site scripting attack (CAN-2004-1062). \n\n### Impact\n\nBy using the tar export functions, a remote attacker could access information that is configured as restricted. Through the use of a malicious request, an attacker could also inject and execute malicious script code, potentially compromising another user's browser. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll ViewCVS users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=www-apps/viewcvs-0.9.2_p20041207-r1\"", "title": "ViewCVS: Information leak and XSS vulnerabilities", "history": [{"bulletin": {"bulletinFamily": "unix", "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "cvss2": {}, "cvss3": {}, "description": "### Background\n\nViewCVS is a browser interface for viewing CVS and Subversion version control repositories through a web browser. \n\n### Description\n\nThe tar export functions in ViewCVS bypass the 'hide_cvsroot' and 'forbidden' settings and therefore expose information that should be kept secret (CAN-2004-0915). Furthermore, some error messages in ViewCVS do not filter user-provided information, making it vulnerable to a cross-site scripting attack (CAN-2004-1062). \n\n### Impact\n\nBy using the tar export functions, a remote attacker could access information that is configured as restricted. Through the use of a malicious request, an attacker could also inject and execute malicious script code, potentially compromising another user's browser. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll ViewCVS users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=www-apps/viewcvs-0.9.2_p20041207-r1\"", "edition": 1, "enchantments": {"dependencies": {"modified": "2016-09-06T19:46:49", "references": [{"idList": ["DEBIAN:DSA-605-1:4AE98"], "type": "debian"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OPENVAS:54785", "OPENVAS:53293", "OPENVAS:52281"], "type": "openvas"}, {"idList": ["CVE-2004-1062", "CVE-2004-0915"], "type": "cve"}, {"idList": ["UB:CVE-2004-1062", "UB:CVE-2004-0915"], "type": "ubuntucve"}, {"idList": ["OSVDB:12682", "OSVDB:12235", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"], "type": "freebsd"}, {"idList": ["GENTOO_GLSA-200412-26.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "DEBIAN_DSA-605.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2016-09-06T19:46:49", "rev": 2, "value": 5.8, "vector": "NONE"}}, "hash": "ae8a761beac7a645d2673fb2f452b71af950c128d06a5e9abede9dd42c26afbb", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "ac1fd6b3deacaf22b54dd1934ae33181", "key": "reporter"}, {"hash": "89afc1a8e8f2661de1eb7061d614131a", "key": "published"}, {"hash": "89afc1a8e8f2661de1eb7061d614131a", "key": "modified"}, {"hash": "af02626d15685a310535b864c734ac49", "key": "cvelist"}, {"hash": "e971e8312b8bf6ba88c88ae399427340", "key": "references"}, {"hash": "fa8c40ec02d3717d4c116c8ec9785542", "key": "title"}, {"hash": "365d0fc7d6206ff26e2f2c2a78c91a94", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "a792e2393dff1e200b885c5245988f6f", "key": "cvss"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "c50a1b134910fc593ae8dc042dbe9d81", "key": "description"}, {"hash": "c6ee6fe63cf407166c1e2fbeb56d5bd3", "key": "href"}], "history": [], "href": "https://security.gentoo.org/glsa/200412-26", "id": "GLSA-200412-26", "immutableFields": [], "lastseen": "2016-09-06T19:46:49", "modified": "2004-12-28T00:00:00", "objectVersion": "1.5", "published": "2004-12-28T00:00:00", "references": ["https://bugs.gentoo.org/show_bug.cgi?id=73772", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1062", "https://bugs.gentoo.org/show_bug.cgi?id=72461", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0915"], "reporter": "Gentoo Foundation", "title": "ViewCVS: Information leak and XSS vulnerabilities", "type": "gentoo", "viewCount": 0}, "different_elements": ["cvss2"], "edition": 1, "lastseen": "2016-09-06T19:46:49"}], "objectVersion": "1.5", "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "published": "2004-12-28T00:00:00", "references": ["https://bugs.gentoo.org/show_bug.cgi?id=73772", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1062", "https://bugs.gentoo.org/show_bug.cgi?id=72461", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0915"], "reporter": "Gentoo Foundation", "modified": "2004-12-28T00:00:00", "href": "https://security.gentoo.org/glsa/200412-26", "immutableFields": [], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "scheme": null}], "openvas": [{"id": "OPENVAS:54785", "hash": "65fc8331646ce77ad3ddd81ad113f219", "type": "openvas", "bulletinFamily": "scanner", "title": "Gentoo Security Advisory GLSA 200412-26 (ViewCVS)", "description": "The remote host is missing updates announced in\nadvisory GLSA 200412-26.", "published": "2008-09-24T00:00:00", "modified": "2017-07-07T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=54785", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "lastseen": "2017-07-24T12:50:04", "history": [{"lastseen": "2017-07-02T21:10:18", "differentElements": ["modified", "sourceData"], "edition": 1, "bulletin": {"id": "OPENVAS:54785", "hash": "2690f15a2260f6c816f38684c495c2a796dac8bef45cc3f8d042e7cf83638837", "type": "openvas", "bulletinFamily": "scanner", "title": "Gentoo Security Advisory GLSA 200412-26 (ViewCVS)", "description": "The remote host is missing updates announced in\nadvisory GLSA 200412-26.", "published": "2008-09-24T00:00:00", "modified": "2016-10-13T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=54785", "reporter": "Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com", "references": [], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "lastseen": "2017-07-02T21:10:18", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "54785", "sourceData": "# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"ViewCVS is vulnerable to an information leak and to cross-site scripting\n(XSS) issues.\";\ntag_solution = \"All ViewCVS users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose\n'>=www-apps/viewcvs-0.9.2_p20041207-r1'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200412-26\nhttp://bugs.gentoo.org/show_bug.cgi?id=72461\nhttp://bugs.gentoo.org/show_bug.cgi?id=73772\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200412-26.\";\n\n \n\nif(description)\n{\n script_id(54785);\n script_version(\"$Revision: 4264 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-10-13 13:45:28 +0200 (Thu, 13 Oct 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)\");\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"Gentoo Security Advisory GLSA 200412-26 (ViewCVS)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"login/SSH/success\", \"ssh/login/gentoo\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"www-apps/viewcvs\", unaffected: make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable: make_list(\"le 0.9.2_p20041207\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Gentoo Local Security Checks"}}], "viewCount": 0, "enchantments": {"score": {"value": 6.4, "vector": "NONE", "modified": "2017-07-24T12:50:04", "rev": 2}, "dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2004-0915", "UB:CVE-2004-1062"]}, {"type": "cve", "idList": ["CVE-2004-0915", "CVE-2004-1062"]}, {"type": "nessus", "idList": ["2446.PRM", "2478.PRM", "DEBIAN_DSA-605.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "GENTOO_GLSA-200412-26.NASL"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "osvdb", "idList": ["OSVDB:12235", "OSVDB:3230", "OSVDB:12682", "OSVDB:13449"]}, {"type": "openvas", "idList": ["OPENVAS:52281", "OPENVAS:53293"]}, {"type": "debian", "idList": ["DEBIAN:DSA-605-1:4AE98"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:16195", "SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291"]}, {"type": "freebsd", "idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"]}], "modified": "2017-07-24T12:50:04", "rev": 2}}, "objectVersion": "1.5", "pluginID": "54785", "sourceData": "# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"ViewCVS is vulnerable to an information leak and to cross-site scripting\n(XSS) issues.\";\ntag_solution = \"All ViewCVS users should upgrade to the latest version:\n\n # emerge --sync\n # emerge --ask --oneshot --verbose\n'>=www-apps/viewcvs-0.9.2_p20041207-r1'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200412-26\nhttp://bugs.gentoo.org/show_bug.cgi?id=72461\nhttp://bugs.gentoo.org/show_bug.cgi?id=73772\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200412-26.\";\n\n \n\nif(description)\n{\n script_id(54785);\n script_version(\"$Revision: 6596 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:21:37 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)\");\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"Gentoo Security Advisory GLSA 200412-26 (ViewCVS)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"www-apps/viewcvs\", unaffected: make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable: make_list(\"le 0.9.2_p20041207\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "naslFamily": "Gentoo Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}], "nessus": [{"id": "2446.PRM", "hash": "0a8150361a5a97d2ff4b6344ffafae9d", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0-dev Multiple Unspecified Vulnerabilities", "description": "The remote host is using the ViewCVS, a tool to browse CVS repositories.\nAccording to its version number, the remote version of this software is vulnerable to multiple unspecified vulnerabilities.", "published": "2004-12-06T00:00:00", "modified": "2019-03-06T00:00:00", "cvss": {"score": 7.5, "vector": "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.3, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}, "href": "https://www.tenable.com/plugins/nnm/2446", "reporter": "Tenable", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0915"], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "immutableFields": [], "lastseen": "2021-08-19T13:18:17", "history": [{"bulletin": {"id": "2446.PRM", "hash": "3ffba18fd8d7a246282ed85e0163b0b2", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0-dev Multiple Unspecified Vulnerabilities", "description": "The remote host is using the ViewCVS, a tool to browse CVS repositories.\nAccording to its version number, the remote version of this software is vulnerable to multiple unspecified vulnerabilities.", "published": "2004-12-06T00:00:00", "modified": "2019-03-06T00:00:00", "cvss": {"score": 7.5, "vector": "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.3, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"}, "href": "https://www.tenable.com/plugins/nnm/2446", "reporter": "Tenable", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0915"], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "immutableFields": [], "lastseen": "2021-08-12T13:27:19", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-0915", "CVE-2004-1062"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2004-0915", "UB:CVE-2004-1062"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "openvas", "idList": ["OPENVAS:54785", "OPENVAS:52281", "OPENVAS:53293"]}, {"type": "nessus", "idList": ["2478.PRM", "DEBIAN_DSA-605.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "GENTOO_GLSA-200412-26.NASL"]}, {"type": "debian", "idList": ["DEBIAN:DSA-605-1:4AE98"]}, {"type": "freebsd", "idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:16195", "SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291"]}, {"type": "osvdb", "idList": ["OSVDB:12235", "OSVDB:3230", "OSVDB:12682", "OSVDB:13449"]}], "modified": "2021-08-12T13:27:19", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-08-12T13:27:19", "rev": 2}}, "objectVersion": "1.6", "pluginID": "2446", "sourceData": "Binary data 2446.prm", "naslFamily": "CGI", "cpe": ["cpe:2.3:a:viewcvs:viewcvs:*:*:*:*:*:*:*:*"], "solution": "Upgrade to version 1.0-dev or higher.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-12T13:27:19", "differentElements": ["nessusSeverity"], "edition": 1}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2004-0915", "UB:CVE-2004-1062"]}, {"type": "cve", "idList": ["CVE-2004-1062", "CVE-2004-0915"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "openvas", "idList": ["OPENVAS:52281", "OPENVAS:54785", "OPENVAS:53293"]}, {"type": "nessus", "idList": ["FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "GENTOO_GLSA-200412-26.NASL", "2478.PRM", "DEBIAN_DSA-605.NASL"]}, {"type": "freebsd", "idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:7291", "SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"]}, {"type": "debian", "idList": ["DEBIAN:DSA-605-1:4AE98"]}, {"type": "osvdb", "idList": ["OSVDB:3230", "OSVDB:12682", "OSVDB:12235", "OSVDB:13449"]}], "modified": "2021-08-19T13:18:17", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-08-19T13:18:17", "rev": 2}}, "objectVersion": "1.6", "pluginID": "2446", "sourceData": "Binary data 2446.prm", "naslFamily": "CGI", "cpe": ["cpe:2.3:a:viewcvs:viewcvs:*:*:*:*:*:*:*:*"], "solution": "Upgrade to version 1.0-dev or higher.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "GENTOO_GLSA-200412-26.NASL", "hash": "3f807963f84dda3b45bca66926c40003", "type": "nessus", "bulletinFamily": "scanner", "title": "GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities", "description": "The remote host is affected by the vulnerability described in GLSA-200412-26 (ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and 'forbidden' settings and therefore expose information that should be kept secret (CAN-2004-0915). Furthermore, some error messages in ViewCVS do not filter user-provided information, making it vulnerable to a cross-site scripting attack (CAN-2004-1062).\n Impact :\n\n By using the tar export functions, a remote attacker could access information that is configured as restricted. Through the use of a malicious request, an attacker could also inject and execute malicious script code, potentially compromising another user's browser.\n Workaround :\n\n There is no known workaround at this time.", "published": "2004-12-28T00:00:00", "modified": "2021-01-06T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/16068", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "https://security.gentoo.org/glsa/200412-26", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0915"], "cvelist": ["CVE-2004-0915", "CVE-2004-1062"], "immutableFields": [], "lastseen": "2021-08-19T13:18:18", "history": [{"bulletin": {"id": "GENTOO_GLSA-200412-26.NASL", "hash": "002053351eef1e5edd4ab06a11d6508e0a8ed5529610f41718a16718a40433a2", "type": "nessus", "bulletinFamily": "scanner", "title": "GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities", "description": "The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the ", "published": "2004-12-28T00:00:00", "modified": "2019-11-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16068", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["https://security.gentoo.org/glsa/200412-26"], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "immutableFields": [], "lastseen": "2019-11-01T02:40:13", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2019-11-01T02:40:13", "references": [{"idList": ["DEBIAN:DSA-605-1:4AE98"], "type": "debian"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OPENVAS:54785", "OPENVAS:53293", "OPENVAS:52281"], "type": "openvas"}, {"idList": ["CVE-2004-1062", "CVE-2004-0915"], "type": "cve"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OSVDB:12682", "OSVDB:12235", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "DEBIAN_DSA-605.NASL"], "type": "nessus"}, {"idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"], "type": "freebsd"}]}, "score": {"modified": "2019-11-01T02:40:13", "value": 5.3, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16068", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200412-26.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(16068);\n script_version(\"1.17\");\n script_cvs_date(\"Date: 2019/08/02 13:32:42\");\n\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_bugtraq_id(12112);\n script_xref(name:\"GLSA\", value:\"200412-26\");\n\n script_name(english:\"GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200412-26\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All ViewCVS users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:viewcvs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/12/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"www-apps/viewcvs\", unaffected:make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable:make_list(\"le 0.9.2_p20041207\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ViewCVS\");\n}\n", "naslFamily": "Gentoo Local Security Checks", "cpe": ["p-cpe:/a:gentoo:linux:viewcvs", "cpe:/o:gentoo:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-11-01T02:40:13", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "GENTOO_GLSA-200412-26.NASL", "hash": "b1236149019d5602aa1be7edc6d057096859fdffe133508697541a9e911eab99", "type": "nessus", "bulletinFamily": "scanner", "title": "GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities", "description": "The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the ", "published": "2004-12-28T00:00:00", "modified": "2020-03-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16068", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["https://security.gentoo.org/glsa/200412-26"], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "immutableFields": [], "lastseen": "2020-03-18T00:17:37", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2020-03-18T00:17:37", "references": [{"idList": ["DEBIAN:DSA-605-1:4AE98"], "type": "debian"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OPENVAS:54785", "OPENVAS:53293", "OPENVAS:52281"], "type": "openvas"}, {"idList": ["CVE-2004-1062", "CVE-2004-0915"], "type": "cve"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OSVDB:12682", "OSVDB:12235", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "DEBIAN_DSA-605.NASL"], "type": "nessus"}, {"idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"], "type": "freebsd"}]}, "score": {"modified": "2020-03-18T00:17:37", "value": 5.3, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16068", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200412-26.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(16068);\n script_version(\"1.17\");\n script_cvs_date(\"Date: 2019/08/02 13:32:42\");\n\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_bugtraq_id(12112);\n script_xref(name:\"GLSA\", value:\"200412-26\");\n\n script_name(english:\"GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200412-26\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All ViewCVS users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:viewcvs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/12/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"www-apps/viewcvs\", unaffected:make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable:make_list(\"le 0.9.2_p20041207\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ViewCVS\");\n}\n", "naslFamily": "Gentoo Local Security Checks", "cpe": ["p-cpe:/a:gentoo:linux:viewcvs", "cpe:/o:gentoo:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-03-18T00:17:37", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "GENTOO_GLSA-200412-26.NASL", "hash": "8e76416175d2383dad6a0f51f12372a73c5b91c168db76efce58a123fb8e912c", "type": "nessus", "bulletinFamily": "scanner", "title": "GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities", "description": "The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the ", "published": "2004-12-28T00:00:00", "modified": "2020-06-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16068", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["https://security.gentoo.org/glsa/200412-26"], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "immutableFields": [], "lastseen": "2020-06-01T02:09:43", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2020-06-01T02:09:43", "references": [{"idList": ["DEBIAN:DSA-605-1:4AE98"], "type": "debian"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OPENVAS:54785", "OPENVAS:53293", "OPENVAS:52281"], "type": "openvas"}, {"idList": ["CVE-2004-1062", "CVE-2004-0915"], "type": "cve"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OSVDB:12682", "OSVDB:12235", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "DEBIAN_DSA-605.NASL"], "type": "nessus"}, {"idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"], "type": "freebsd"}], "rev": 2}, "score": {"modified": "2020-06-01T02:09:43", "rev": 2, "value": 5.3, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16068", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200412-26.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(16068);\n script_version(\"1.17\");\n script_cvs_date(\"Date: 2019/08/02 13:32:42\");\n\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_bugtraq_id(12112);\n script_xref(name:\"GLSA\", value:\"200412-26\");\n\n script_name(english:\"GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200412-26\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All ViewCVS users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:viewcvs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/12/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"www-apps/viewcvs\", unaffected:make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable:make_list(\"le 0.9.2_p20041207\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ViewCVS\");\n}\n", "naslFamily": "Gentoo Local Security Checks", "cpe": ["p-cpe:/a:gentoo:linux:viewcvs", "cpe:/o:gentoo:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-06-01T02:09:43", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "GENTOO_GLSA-200412-26.NASL", "hash": "233b295e5ec99251659edb05782d73ef38b2139fda5e426202935716fdaf6e43", "type": "nessus", "bulletinFamily": "scanner", "title": "GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities", "description": "The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the ", "published": "2004-12-28T00:00:00", "modified": "2020-09-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16068", "reporter": "This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.", "references": ["https://security.gentoo.org/glsa/200412-26"], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "immutableFields": [], "lastseen": "2020-09-04T02:26:15", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2020-09-04T02:26:15", "references": [{"idList": ["DEBIAN:DSA-605-1:4AE98"], "type": "debian"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OPENVAS:54785", "OPENVAS:53293", "OPENVAS:52281"], "type": "openvas"}, {"idList": ["CVE-2004-1062", "CVE-2004-0915"], "type": "cve"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OSVDB:12682", "OSVDB:12235", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "DEBIAN_DSA-605.NASL"], "type": "nessus"}, {"idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"], "type": "freebsd"}], "rev": 2}, "score": {"modified": "2020-09-04T02:26:15", "rev": 2, "value": 5.3, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16068", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200412-26.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(16068);\n script_version(\"1.17\");\n script_cvs_date(\"Date: 2019/08/02 13:32:42\");\n\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_bugtraq_id(12112);\n script_xref(name:\"GLSA\", value:\"200412-26\");\n\n script_name(english:\"GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200412-26\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All ViewCVS users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:viewcvs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/12/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"www-apps/viewcvs\", unaffected:make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable:make_list(\"le 0.9.2_p20041207\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ViewCVS\");\n}\n", "naslFamily": "Gentoo Local Security Checks", "cpe": ["p-cpe:/a:gentoo:linux:viewcvs", "cpe:/o:gentoo:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-09-04T02:26:15", "differentElements": ["description", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "GENTOO_GLSA-200412-26.NASL", "hash": "f0190a81b96e10ba5da8284f3d1d291f633bee015a00ac33edbd08759bf18701", "type": "nessus", "bulletinFamily": "scanner", "title": "GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities", "description": "The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.", "published": "2004-12-28T00:00:00", "modified": "2004-12-28T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16068", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["https://security.gentoo.org/glsa/200412-26"], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "immutableFields": [], "lastseen": "2021-01-07T10:51:53", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2021-01-07T10:51:53", "references": [{"idList": ["DEBIAN:DSA-605-1:4AE98"], "type": "debian"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OPENVAS:54785", "OPENVAS:53293", "OPENVAS:52281"], "type": "openvas"}, {"idList": ["CVE-2004-1062", "CVE-2004-0915"], "type": "cve"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["UB:CVE-2004-1062", "UB:CVE-2004-0915"], "type": "ubuntucve"}, {"idList": ["OSVDB:12682", "OSVDB:12235", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "DEBIAN_DSA-605.NASL"], "type": "nessus"}, {"idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"], "type": "freebsd"}], "rev": 2}, "score": {"modified": "2021-01-07T10:51:53", "rev": 2, "value": 6.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16068", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200412-26.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(16068);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_bugtraq_id(12112);\n script_xref(name:\"GLSA\", value:\"200412-26\");\n\n script_name(english:\"GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200412-26\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All ViewCVS users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:viewcvs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/12/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"www-apps/viewcvs\", unaffected:make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable:make_list(\"le 0.9.2_p20041207\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ViewCVS\");\n}\n", "naslFamily": "Gentoo Local Security Checks", "cpe": ["p-cpe:/a:gentoo:linux:viewcvs", "cpe:/o:gentoo:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-07T10:51:53", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "GENTOO_GLSA-200412-26.NASL", "hash": "63413558c15eddeba241da22d3706094", "type": "nessus", "bulletinFamily": "scanner", "title": "GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities", "description": "The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.", "published": "2004-12-28T00:00:00", "modified": "2004-12-28T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16068", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["https://security.gentoo.org/glsa/200412-26"], "cvelist": ["CVE-2004-1062", "CVE-2004-0915"], "immutableFields": [], "lastseen": "2021-07-29T00:18:06", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-1062", "CVE-2004-0915"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2004-1062", "UB:CVE-2004-0915"]}, {"type": "openvas", "idList": ["OPENVAS:54785", "OPENVAS:52281", "OPENVAS:53293"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:16195", "SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291"]}, {"type": "osvdb", "idList": ["OSVDB:12682", "OSVDB:12235", "OSVDB:13449", "OSVDB:3230"]}, {"type": "debian", "idList": ["DEBIAN:DSA-605-1:4AE98"]}, {"type": "freebsd", "idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"]}, {"type": "nessus", "idList": ["VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "DEBIAN_DSA-605.NASL"]}], "modified": "2021-07-29T00:18:06", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-07-29T00:18:06", "rev": 2}}, "objectVersion": "1.6", "pluginID": "16068", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200412-26.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(16068);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_bugtraq_id(12112);\n script_xref(name:\"GLSA\", value:\"200412-26\");\n\n script_name(english:\"GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200412-26\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All ViewCVS users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:viewcvs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/12/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"www-apps/viewcvs\", unaffected:make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable:make_list(\"le 0.9.2_p20041207\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ViewCVS\");\n}\n", "naslFamily": "Gentoo Local Security Checks", "cpe": ["p-cpe:/a:gentoo:linux:viewcvs", "cpe:/o:gentoo:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T00:18:06", "differentElements": ["cvss2", "cvss3", "description", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "GENTOO_GLSA-200412-26.NASL", "hash": "4b396a02974474064eb67eedaf88a8a5", "type": "nessus", "bulletinFamily": "scanner", "title": "GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities", "description": "The remote host is affected by the vulnerability described in GLSA-200412-26 (ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and 'forbidden' settings and therefore expose information that should be kept secret (CAN-2004-0915). Furthermore, some error messages in ViewCVS do not filter user-provided information, making it vulnerable to a cross-site scripting attack (CAN-2004-1062).\n Impact :\n\n By using the tar export functions, a remote attacker could access information that is configured as restricted. Through the use of a malicious request, an attacker could also inject and execute malicious script code, potentially compromising another user's browser.\n Workaround :\n\n There is no known workaround at this time.", "published": "2004-12-28T00:00:00", "modified": "2021-01-06T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/16068", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0915", "https://security.gentoo.org/glsa/200412-26"], "cvelist": ["CVE-2004-0915", "CVE-2004-1062"], "immutableFields": [], "lastseen": "2021-08-12T13:27:11", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2004-0915", "UB:CVE-2004-1062"]}, {"type": "cve", "idList": ["CVE-2004-0915", "CVE-2004-1062"]}, {"type": "openvas", "idList": ["OPENVAS:54785", "OPENVAS:52281", "OPENVAS:53293"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "nessus", "idList": ["2446.PRM", "2478.PRM", "DEBIAN_DSA-605.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL"]}, {"type": "osvdb", "idList": ["OSVDB:12235", "OSVDB:3230", "OSVDB:12682", "OSVDB:13449"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:16195", "SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:7291"]}, {"type": "debian", "idList": ["DEBIAN:DSA-605-1:4AE98"]}, {"type": "freebsd", "idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"]}], "modified": "2021-08-12T13:27:11", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-08-12T13:27:11", "rev": 2}}, "objectVersion": "1.6", "pluginID": "16068", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200412-26.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(16068);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_bugtraq_id(12112);\n script_xref(name:\"GLSA\", value:\"200412-26\");\n\n script_name(english:\"GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200412-26\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All ViewCVS users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:viewcvs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/12/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"www-apps/viewcvs\", unaffected:make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable:make_list(\"le 0.9.2_p20041207\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ViewCVS\");\n}\n", "naslFamily": "Gentoo Local Security Checks", "cpe": ["p-cpe:/a:gentoo:linux:viewcvs", "cpe:/o:gentoo:linux"], "solution": "All ViewCVS users should upgrade to the latest version:\n # emerge --sync # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "3.4"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2004-12-28T00:00:00", "vulnerabilityPublicationDate": "2003-12-29T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-12T13:27:11", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2004-1062", "UB:CVE-2004-0915"]}, {"type": "cve", "idList": ["CVE-2004-1062", "CVE-2004-0915"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "openvas", "idList": ["OPENVAS:53293", "OPENVAS:52281", "OPENVAS:54785"]}, {"type": "nessus", "idList": ["VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "FREEBSD_PKG_323784CF48A611D9A9E70001020EED82.NASL", "2478.PRM", "DEBIAN_DSA-605.NASL", "2446.PRM"]}, {"type": "freebsd", "idList": ["323784CF-48A6-11D9-A9E7-0001020EED82"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195", "SECURITYVULNS:DOC:7291"]}, {"type": "debian", "idList": ["DEBIAN:DSA-605-1:4AE98"]}, {"type": "osvdb", "idList": ["OSVDB:3230", "OSVDB:12682", "OSVDB:13449", "OSVDB:12235"]}], "modified": "2021-08-19T13:18:18", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-08-19T13:18:18", "rev": 2}}, "objectVersion": "1.6", "pluginID": "16068", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 200412-26.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(16068);\n script_version(\"1.18\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/06\");\n\n script_cve_id(\"CVE-2004-0915\", \"CVE-2004-1062\");\n script_bugtraq_id(12112);\n script_xref(name:\"GLSA\", value:\"200412-26\");\n\n script_name(english:\"GLSA-200412-26 : ViewCVS: Information leak and XSS vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-200412-26\n(ViewCVS: Information leak and XSS vulnerabilities)\n\n The tar export functions in ViewCVS bypass the 'hide_cvsroot' and\n 'forbidden' settings and therefore expose information that should be\n kept secret (CAN-2004-0915). Furthermore, some error messages in\n ViewCVS do not filter user-provided information, making it vulnerable\n to a cross-site scripting attack (CAN-2004-1062).\n \nImpact :\n\n By using the tar export functions, a remote attacker could access\n information that is configured as restricted. Through the use of a\n malicious request, an attacker could also inject and execute malicious\n script code, potentially compromising another user's browser.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/200412-26\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All ViewCVS users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:viewcvs\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/12/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"www-apps/viewcvs\", unaffected:make_list(\"ge 0.9.2_p20041207-r1\"), vulnerable:make_list(\"le 0.9.2_p20041207\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ViewCVS\");\n}\n", "naslFamily": "Gentoo Local Security Checks", "cpe": ["p-cpe:/a:gentoo:linux:viewcvs", "cpe:/o:gentoo:linux"], "solution": "All ViewCVS users should upgrade to the latest version:\n # emerge --sync # emerge --ask --oneshot --verbose '>=www-apps/viewcvs-0.9.2_p20041207-r1'", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "3.4"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2004-12-28T00:00:00", "vulnerabilityPublicationDate": "2003-12-29T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "2478.PRM", "hash": "8db434aa6b6d7af1bc36225ce1013c4a", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 HTTP Response Splitting", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories over the web. There is a flaw in the remote ViewCVS server that may allow an attacker to steal the credentials of third-party users via an HTTP response splitting attack.", "published": "2004-12-28T00:00:00", "modified": "2019-03-06T00:00:00", "cvss": {"score": 7.6, "vector": "CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.1, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nnm/2478", "reporter": "Tenable", "references": ["http://www.securityfocus.com/archive/1/archive/1/461382/100/0/threaded", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4831", "http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030514.html", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4830"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2021-08-19T13:18:16", "history": [{"bulletin": {"id": "2478.PRM", "hash": "323dd3096b83544f0860015e79bd3bea", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 HTTP Response Splitting", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories over the web. There is a flaw in the remote ViewCVS server that may allow an attacker to steal the credentials of third-party users via an HTTP response splitting attack.", "published": "2004-12-28T00:00:00", "modified": "2019-03-06T00:00:00", "cvss": {"score": 7.6, "vector": "CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.1, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nnm/2478", "reporter": "Tenable", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "http://www.securityfocus.com/archive/1/archive/1/461382/100/0/threaded", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4830", "http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030514.html", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4831"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2021-08-12T13:27:09", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-4830", "CVE-2005-4831", "CVE-2004-1062"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2005-4830", "UB:CVE-2004-1062"]}, {"type": "nessus", "idList": ["2446.PRM", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "GENTOO_GLSA-200412-26.NASL"]}, {"type": "osvdb", "idList": ["OSVDB:34725", "OSVDB:34726", "OSVDB:13449", "OSVDB:12682", "OSVDB:3230"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}], "modified": "2021-08-12T13:27:09", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-08-12T13:27:09", "rev": 2}}, "objectVersion": "1.6", "pluginID": "2478", "sourceData": "Binary data 2478.prm", "naslFamily": "CGI", "cpe": ["cpe:2.3:a:viewcvs:viewcvs:*:*:*:*:*:*:*:*"], "solution": "Upgrade to version 1.0.0 or higher.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-12T13:27:09", "differentElements": ["nessusSeverity"], "edition": 1}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-4831", "CVE-2004-1062", "CVE-2005-4830"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2005-4830", "UB:CVE-2004-1062"]}, {"type": "nessus", "idList": ["2446.PRM", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "GENTOO_GLSA-200412-26.NASL"]}, {"type": "osvdb", "idList": ["OSVDB:3230", "OSVDB:34726", "OSVDB:34725", "OSVDB:13449", "OSVDB:12682"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}], "modified": "2021-08-19T13:18:16", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2021-08-19T13:18:16", "rev": 2}}, "objectVersion": "1.6", "pluginID": "2478", "sourceData": "Binary data 2478.prm", "naslFamily": "CGI", "cpe": ["cpe:2.3:a:viewcvs:viewcvs:*:*:*:*:*:*:*:*"], "solution": "Upgrade to version 1.0.0 or higher.", "nessusSeverity": "High", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "hash": "a32878dcbeb88048d2f25c7f54e45522", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 Multiple Vulnerabilities", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories over the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to launch cross-site scripting and/or HTTP response-splitting attacks against the remote install.", "published": "2004-12-28T00:00:00", "modified": "2021-01-19T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/16062", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4831", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4830", "http://www.nessus.org/u?c3821f3f"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2021-08-19T13:18:22", "history": [{"bulletin": {"id": "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "hash": "df8033fe21ab17ab068f4d8c1583670f1aec0107f2297ac023ded8eb2f92226e", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 Multiple Vulnerabilities", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories over the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to launch cross-site scripting and/or HTTP response-splitting attacks against the remote install.", "published": "2004-12-28T00:00:00", "modified": "2015-02-13T00:00:00", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=16062", "reporter": "Tenable", "references": ["http://www.nessus.org/u?c3821f3f"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2017-10-29T13:44:15", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 4.3, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16062", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude(\"compat.inc\");\n\nif(description)\n{\n script_id(16062);\n script_version(\"$Revision: 1.23 $\");\n script_cve_id(\"CVE-2004-1062\", \"CVE-2005-4830\", \"CVE-2005-4831\");\n script_bugtraq_id(12112, 11819);\n script_osvdb_id(3230, 12682, 13449, 34725, 34726);\n\n script_name(english:\"ViewCVS < 1.0.0 Multiple Vulnerabilities\");\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server is affected by cross-site scripting issues.\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.\" );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c3821f3f\" );\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ViewCVS 1.0.0 or newer.\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value: \"2003/12/29\");\n script_cvs_date(\"$Date: 2015/02/13 21:07:14 $\");\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_set_attribute(attribute:\"cpe\", value:\"cpe:/a:viewcvs:viewcvs\");\nscript_end_attributes();\n\n script_summary(english:\"viewcvs flaw\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2015 Tenable Network Security, Inc.\");\n script_family(english:\"CGI abuses\");\n script_dependencie(\"http_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\n# Check starts here\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\n\nport = get_http_port(default:80);\nif( ! can_host_php(port:port) ) exit(0);\nforeach dir (make_list( cgi_dirs() ) ) \n{\n r = http_send_recv3(method:\"GET\", item:dir + \"/viewcvs.cgi/\", port:port);\n if (isnull(r)) exit(0);\n res = strcat(r[0], r[1], '\\r\\n', r[2]);\n if ( 'Powered by<br><a href=\"http://viewcvs.sourceforge.net/\">ViewCVS 0.' >< res )\n {\n\t security_warning(port);\n\t set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n\t exit(0);\n }\n}\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:viewcvs:viewcvs"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2017-10-29T13:44:15", "differentElements": ["cvss", "description", "href", "modified", "reporter", "sourceData"], "edition": 1}, {"bulletin": {"id": "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "hash": "a1c9b4d7489391850bdcf50f816a963d8138802f11a6dcd20f6ef237fdf08486", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 Multiple Vulnerabilities", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.", "published": "2004-12-28T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 7.6, "vector": "AV:N/AC:H/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16062", "reporter": "This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.", "references": ["http://www.nessus.org/u?c3821f3f"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2019-12-13T09:57:28", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-12-13T09:57:28", "references": [{"idList": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OSVDB:34726", "OSVDB:12682", "OSVDB:34725", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OPENVAS:54785"], "type": "openvas"}, {"idList": ["GENTOO_GLSA-200412-26.NASL"], "type": "nessus"}]}, "score": {"modified": "2019-12-13T09:57:28", "value": 5.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16062", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude(\"compat.inc\");\n\nif(description)\n{\n script_id(16062);\n script_version(\"1.24\");\n script_cve_id(\"CVE-2004-1062\", \"CVE-2005-4830\", \"CVE-2005-4831\");\n script_bugtraq_id(12112, 11819);\n\n script_name(english:\"ViewCVS < 1.0.0 Multiple Vulnerabilities\");\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server is affected by cross-site scripting issues.\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.\" );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c3821f3f\" );\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ViewCVS 1.0.0 or newer.\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value: \"2003/12/29\");\n script_cvs_date(\"Date: 2018/08/06 14:03:14\");\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_set_attribute(attribute:\"cpe\", value:\"cpe:/a:viewcvs:viewcvs\");\nscript_end_attributes();\n\n script_summary(english:\"viewcvs flaw\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"CGI abuses\");\n script_dependencie(\"http_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\n# Check starts here\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\n\nport = get_http_port(default:80);\nif( ! can_host_php(port:port) ) exit(0);\nforeach dir (make_list( cgi_dirs() ) ) \n{\n r = http_send_recv3(method:\"GET\", item:dir + \"/viewcvs.cgi/\", port:port);\n if (isnull(r)) exit(0);\n res = strcat(r[0], r[1], '\\r\\n', r[2]);\n if ( 'Powered by<br><a href=\"http://viewcvs.sourceforge.net/\">ViewCVS 0.' >< res )\n {\n\t security_warning(port);\n\t set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n\t exit(0);\n }\n}\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:viewcvs:viewcvs"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T09:57:28", "differentElements": ["cvss", "modified"], "edition": 2}, {"bulletin": {"id": "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "hash": "4b1dfc8db5b5393ed1b014044e482564ab7fedc721c988132d68a7da185c79fd", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 Multiple Vulnerabilities", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.", "published": "2004-12-28T00:00:00", "modified": "2020-06-02T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16062", "reporter": "This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.", "references": ["http://www.nessus.org/u?c3821f3f"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2020-06-01T05:01:35", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2020-06-01T05:01:35", "references": [{"idList": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OSVDB:34726", "OSVDB:12682", "OSVDB:34725", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OPENVAS:54785"], "type": "openvas"}, {"idList": ["GENTOO_GLSA-200412-26.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2020-06-01T05:01:35", "rev": 2, "value": 5.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16062", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude(\"compat.inc\");\n\nif(description)\n{\n script_id(16062);\n script_version(\"1.24\");\n script_cve_id(\"CVE-2004-1062\", \"CVE-2005-4830\", \"CVE-2005-4831\");\n script_bugtraq_id(12112, 11819);\n\n script_name(english:\"ViewCVS < 1.0.0 Multiple Vulnerabilities\");\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server is affected by cross-site scripting issues.\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.\" );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c3821f3f\" );\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ViewCVS 1.0.0 or newer.\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value: \"2003/12/29\");\n script_cvs_date(\"Date: 2018/08/06 14:03:14\");\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_set_attribute(attribute:\"cpe\", value:\"cpe:/a:viewcvs:viewcvs\");\nscript_end_attributes();\n\n script_summary(english:\"viewcvs flaw\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"CGI abuses\");\n script_dependencie(\"http_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\n# Check starts here\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\n\nport = get_http_port(default:80);\nif( ! can_host_php(port:port) ) exit(0);\nforeach dir (make_list( cgi_dirs() ) ) \n{\n r = http_send_recv3(method:\"GET\", item:dir + \"/viewcvs.cgi/\", port:port);\n if (isnull(r)) exit(0);\n res = strcat(r[0], r[1], '\\r\\n', r[2]);\n if ( 'Powered by<br><a href=\"http://viewcvs.sourceforge.net/\">ViewCVS 0.' >< res )\n {\n\t security_warning(port);\n\t set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n\t exit(0);\n }\n}\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:viewcvs:viewcvs"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-06-01T05:01:35", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "hash": "57e2bbb06ce2f45a5988f73e1367e4dce4e6a98aa910dd90d45c8d9e9d9f9282", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 Multiple Vulnerabilities", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.", "published": "2004-12-28T00:00:00", "modified": "2020-12-02T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16062", "reporter": "This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.", "references": ["http://www.nessus.org/u?c3821f3f"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2020-12-01T15:27:42", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2020-12-01T15:27:42", "references": [{"idList": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OSVDB:34726", "OSVDB:12682", "OSVDB:34725", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OPENVAS:54785"], "type": "openvas"}, {"idList": ["GENTOO_GLSA-200412-26.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2020-12-01T15:27:42", "rev": 2, "value": 5.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16062", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude(\"compat.inc\");\n\nif(description)\n{\n script_id(16062);\n script_version(\"1.24\");\n script_cve_id(\"CVE-2004-1062\", \"CVE-2005-4830\", \"CVE-2005-4831\");\n script_bugtraq_id(12112, 11819);\n\n script_name(english:\"ViewCVS < 1.0.0 Multiple Vulnerabilities\");\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server is affected by cross-site scripting issues.\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.\" );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c3821f3f\" );\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ViewCVS 1.0.0 or newer.\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value: \"2003/12/29\");\n script_cvs_date(\"Date: 2018/08/06 14:03:14\");\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_set_attribute(attribute:\"cpe\", value:\"cpe:/a:viewcvs:viewcvs\");\nscript_end_attributes();\n\n script_summary(english:\"viewcvs flaw\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.\");\n script_family(english:\"CGI abuses\");\n script_dependencie(\"http_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\n# Check starts here\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\n\nport = get_http_port(default:80);\nif( ! can_host_php(port:port) ) exit(0);\nforeach dir (make_list( cgi_dirs() ) ) \n{\n r = http_send_recv3(method:\"GET\", item:dir + \"/viewcvs.cgi/\", port:port);\n if (isnull(r)) exit(0);\n res = strcat(r[0], r[1], '\\r\\n', r[2]);\n if ( 'Powered by<br><a href=\"http://viewcvs.sourceforge.net/\">ViewCVS 0.' >< res )\n {\n\t security_warning(port);\n\t set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n\t exit(0);\n }\n}\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:viewcvs:viewcvs"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-12-01T15:27:42", "differentElements": ["modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "hash": "13f62b31fbb404e53e096d5968d1e2d9dda1dce1c4207f7d309f9b7b57e78aae", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 Multiple Vulnerabilities", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.", "published": "2004-12-28T00:00:00", "modified": "2004-12-28T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16062", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.nessus.org/u?c3821f3f"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2021-01-20T15:45:33", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-01-20T15:45:33", "references": [{"idList": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "type": "cve"}, {"idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"], "type": "securityvulns"}, {"idList": ["OSVDB:34726", "OSVDB:12682", "OSVDB:34725", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["OPENVAS:54785"], "type": "openvas"}, {"idList": ["GENTOO_GLSA-200412-26.NASL"], "type": "nessus"}, {"idList": ["UB:CVE-2004-1062", "UB:CVE-2005-4830"], "type": "ubuntucve"}], "rev": 2}, "score": {"modified": "2021-01-20T15:45:33", "rev": 2, "value": 5.8, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "16062", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif(description)\n{\n script_id(16062);\n script_version(\"1.25\");\n script_cve_id(\"CVE-2004-1062\", \"CVE-2005-4830\", \"CVE-2005-4831\");\n script_bugtraq_id(12112, 11819);\n\n script_name(english:\"ViewCVS < 1.0.0 Multiple Vulnerabilities\");\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server is affected by cross-site scripting issues.\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.\" );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c3821f3f\" );\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ViewCVS 1.0.0 or newer.\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value: \"2003/12/29\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_set_attribute(attribute:\"cpe\", value:\"cpe:/a:viewcvs:viewcvs\");\nscript_end_attributes();\n\n script_summary(english:\"viewcvs flaw\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"CGI abuses\");\n script_dependencie(\"http_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\n# Check starts here\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\n\nport = get_http_port(default:80);\nif( ! can_host_php(port:port) ) exit(0);\nforeach dir (make_list( cgi_dirs() ) ) \n{\n r = http_send_recv3(method:\"GET\", item:dir + \"/viewcvs.cgi/\", port:port);\n if (isnull(r)) exit(0);\n res = strcat(r[0], r[1], '\\r\\n', r[2]);\n if ( 'Powered by<br><a href=\"http://viewcvs.sourceforge.net/\">ViewCVS 0.' >< res )\n {\n\t security_warning(port);\n\t set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n\t exit(0);\n }\n}\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:viewcvs:viewcvs"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-20T15:45:33", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "hash": "6d3da70569e0d0e0baed6520a9752bb7", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 Multiple Vulnerabilities", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.", "published": "2004-12-28T00:00:00", "modified": "2004-12-28T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {"cvssV2": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/16062", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://www.nessus.org/u?c3821f3f"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2021-07-29T22:19:42", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-1062", "CVE-2005-4831", "CVE-2005-4830"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2004-1062", "UB:CVE-2005-4830"]}, {"type": "osvdb", "idList": ["OSVDB:13449", "OSVDB:12682", "OSVDB:34725", "OSVDB:3230", "OSVDB:34726"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "nessus", "idList": ["GENTOO_GLSA-200412-26.NASL"]}], "modified": "2021-07-29T22:19:42", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-07-29T22:19:42", "rev": 2}}, "objectVersion": "1.6", "pluginID": "16062", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif(description)\n{\n script_id(16062);\n script_version(\"1.25\");\n script_cve_id(\"CVE-2004-1062\", \"CVE-2005-4830\", \"CVE-2005-4831\");\n script_bugtraq_id(12112, 11819);\n\n script_name(english:\"ViewCVS < 1.0.0 Multiple Vulnerabilities\");\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server is affected by cross-site scripting issues.\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.\" );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c3821f3f\" );\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ViewCVS 1.0.0 or newer.\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value: \"2003/12/29\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_set_attribute(attribute:\"cpe\", value:\"cpe:/a:viewcvs:viewcvs\");\nscript_end_attributes();\n\n script_summary(english:\"viewcvs flaw\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"CGI abuses\");\n script_dependencie(\"http_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\n# Check starts here\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\n\nport = get_http_port(default:80);\nif( ! can_host_php(port:port) ) exit(0);\nforeach dir (make_list( cgi_dirs() ) ) \n{\n r = http_send_recv3(method:\"GET\", item:dir + \"/viewcvs.cgi/\", port:port);\n if (isnull(r)) exit(0);\n res = strcat(r[0], r[1], '\\r\\n', r[2]);\n if ( 'Powered by<br><a href=\"http://viewcvs.sourceforge.net/\">ViewCVS 0.' >< res )\n {\n\t security_warning(port);\n\t set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n\t exit(0);\n }\n}\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:viewcvs:viewcvs"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T22:19:42", "differentElements": ["cvss2", "cvss3", "description", "exploitEase", "modified", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "hash": "fbeaad015676a97bd3ff800ef4be21f8", "type": "nessus", "bulletinFamily": "scanner", "title": "ViewCVS < 1.0.0 Multiple Vulnerabilities", "description": "The remote host is running ViewCVS, a tool to browse CVS repositories over the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to launch cross-site scripting and/or HTTP response-splitting attacks against the remote install.", "published": "2004-12-28T00:00:00", "modified": "2021-01-19T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/16062", "reporter": "This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1062", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4831", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4830", "http://www.nessus.org/u?c3821f3f"], "cvelist": ["CVE-2004-1062", "CVE-2005-4830", "CVE-2005-4831"], "immutableFields": [], "lastseen": "2021-08-12T13:27:15", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-4830", "CVE-2005-4831", "CVE-2004-1062"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2005-4830", "UB:CVE-2004-1062"]}, {"type": "nessus", "idList": ["2478.PRM", "2446.PRM", "GENTOO_GLSA-200412-26.NASL"]}, {"type": "osvdb", "idList": ["OSVDB:34725", "OSVDB:34726", "OSVDB:13449", "OSVDB:12682", "OSVDB:3230"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:7479", "SECURITYVULNS:DOC:16195"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}], "modified": "2021-08-12T13:27:15", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-08-12T13:27:15", "rev": 2}}, "objectVersion": "1.6", "pluginID": "16062", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif(description)\n{\n script_id(16062);\n script_version(\"1.25\");\n script_cve_id(\"CVE-2004-1062\", \"CVE-2005-4830\", \"CVE-2005-4831\");\n script_bugtraq_id(12112, 11819);\n\n script_name(english:\"ViewCVS < 1.0.0 Multiple Vulnerabilities\");\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server is affected by cross-site scripting issues.\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.\" );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c3821f3f\" );\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ViewCVS 1.0.0 or newer.\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value: \"2003/12/29\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_set_attribute(attribute:\"cpe\", value:\"cpe:/a:viewcvs:viewcvs\");\nscript_end_attributes();\n\n script_summary(english:\"viewcvs flaw\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"CGI abuses\");\n script_dependencie(\"http_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\n# Check starts here\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\n\nport = get_http_port(default:80);\nif( ! can_host_php(port:port) ) exit(0);\nforeach dir (make_list( cgi_dirs() ) ) \n{\n r = http_send_recv3(method:\"GET\", item:dir + \"/viewcvs.cgi/\", port:port);\n if (isnull(r)) exit(0);\n res = strcat(r[0], r[1], '\\r\\n', r[2]);\n if ( 'Powered by<br><a href=\"http://viewcvs.sourceforge.net/\">ViewCVS 0.' >< res )\n {\n\t security_warning(port);\n\t set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n\t exit(0);\n }\n}\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:viewcvs:viewcvs"], "solution": "Upgrade to ViewCVS 1.0.0 or newer.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No exploit is required", "patchPublicationDate": null, "vulnerabilityPublicationDate": "2003-12-29T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-12T13:27:15", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2005-4831", "CVE-2005-4830", "CVE-2004-1062"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2005-4830", "UB:CVE-2004-1062"]}, {"type": "nessus", "idList": ["2478.PRM", "GENTOO_GLSA-200412-26.NASL", "2446.PRM"]}, {"type": "osvdb", "idList": ["OSVDB:12682", "OSVDB:13449", "OSVDB:3230", "OSVDB:34725", "OSVDB:34726"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:16195", "SECURITYVULNS:VULN:7479"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}], "modified": "2021-08-19T13:18:22", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-08-19T13:18:22", "rev": 2}}, "objectVersion": "1.6", "pluginID": "16062", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif(description)\n{\n script_id(16062);\n script_version(\"1.25\");\n script_cve_id(\"CVE-2004-1062\", \"CVE-2005-4830\", \"CVE-2005-4831\");\n script_bugtraq_id(12112, 11819);\n\n script_name(english:\"ViewCVS < 1.0.0 Multiple Vulnerabilities\");\n \n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server is affected by cross-site scripting issues.\" );\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running ViewCVS, a tool to browse CVS repositories\nover the web written in python. \n\nFlaws in the remote version of this website may allow an attacker to\nlaunch cross-site scripting and/or HTTP response-splitting attacks\nagainst the remote install.\" );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c3821f3f\" );\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ViewCVS 1.0.0 or newer.\" );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);\n\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2004/12/28\");\n script_set_attribute(attribute:\"vuln_publication_date\", value: \"2003/12/29\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/19\");\nscript_set_attribute(attribute:\"plugin_type\", value:\"remote\");\nscript_set_attribute(attribute:\"cpe\", value:\"cpe:/a:viewcvs:viewcvs\");\nscript_end_attributes();\n\n script_summary(english:\"viewcvs flaw\");\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.\");\n script_family(english:\"CGI abuses\");\n script_dependencie(\"http_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_exclude_keys(\"Settings/disable_cgi_scanning\");\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\n# Check starts here\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\n\nport = get_http_port(default:80);\nif( ! can_host_php(port:port) ) exit(0);\nforeach dir (make_list( cgi_dirs() ) ) \n{\n r = http_send_recv3(method:\"GET\", item:dir + \"/viewcvs.cgi/\", port:port);\n if (isnull(r)) exit(0);\n res = strcat(r[0], r[1], '\\r\\n', r[2]);\n if ( 'Powered by<br><a href=\"http://viewcvs.sourceforge.net/\">ViewCVS 0.' >< res )\n {\n\t security_warning(port);\n\t set_kb_item(name: 'www/'+port+'/XSS', value: TRUE);\n\t exit(0);\n }\n}\n", "naslFamily": "CGI abuses", "cpe": ["cpe:/a:viewcvs:viewcvs"], "solution": "Upgrade to ViewCVS 1.0.0 or newer.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Medium", "score": "5.9"}, "exploitAvailable": false, "exploitEase": "No exploit is required", "patchPublicationDate": null, "vulnerabilityPublicationDate": "2003-12-29T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}], "securityvulns": [{"id": "SECURITYVULNS:VULN:7479", "bulletinFamily": "software", "title": "Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)", "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "published": "2007-03-28T00:00:00", "modified": "2007-03-28T00:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:7479", "reporter": "BUGTRAQ", "references": ["https://vulners.com/securityvulns/securityvulns:doc:16495", "https://vulners.com/securityvulns/securityvulns:doc:16494", "https://vulners.com/securityvulns/securityvulns:doc:16505"], "cvelist": ["CVE-2004-1062", "CVE-2007-1725", "CVE-2007-1729", "CVE-2007-1720", "CVE-2007-1721", "CVE-2005-4831", "CVE-2007-1516", "CVE-2007-1726"], "type": "securityvulns", "lastseen": "2021-06-08T18:50:30", "history": [{"bulletin": {"affectedSoftware": [{"name": "ViewCVS", "operator": "eq", "version": "1.0"}, {"name": "C-Arbre", "operator": "eq", "version": "0.6"}, {"name": "CcMail", "operator": "eq", "version": "1.0"}, {"name": "ViewVC", "operator": "eq", "version": "1.0"}, {"name": "FlexBB", "operator": "eq", "version": "1.0"}, {"name": "IceBB", "operator": "eq", "version": "1.0"}], "bulletinFamily": "software", "cvelist": ["CVE-2004-1062", "CVE-2007-1725", "CVE-2007-1729", "CVE-2007-1720", "CVE-2007-1721", "CVE-2005-4831", "CVE-2007-1516", "CVE-2007-1726"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "edition": 1, "enchantments": {"dependencies": {"modified": "2018-08-31T11:09:24", "references": [{"idList": ["GENTOO_GLSA-200412-26.NASL", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL"], "type": "nessus"}, {"idList": ["CVE-2004-1062", "CVE-2007-1725", "CVE-2007-1729", "CVE-2007-1720", "CVE-2007-1721", "CVE-2005-4831", "CVE-2007-1516", "CVE-2007-1726"], "type": "cve"}, {"idList": ["GLSA-200412-26"], "type": "gentoo"}, {"idList": ["EDB-ID:3583", "EDB-ID:3487", "EDB-ID:3580", "EDB-ID:3582", "EDB-ID:3581"], "type": "exploitdb"}, {"idList": ["OPENVAS:54785"], "type": "openvas"}, {"idList": ["SECURITYVULNS:DOC:16495", "SECURITYVULNS:DOC:16494", "SECURITYVULNS:DOC:16195", "SECURITYVULNS:DOC:16505"], "type": "securityvulns"}, {"idList": ["OSVDB:35196", "OSVDB:35188", "OSVDB:12682", "OSVDB:34725", "OSVDB:35187", "OSVDB:35192", "OSVDB:35185", "OSVDB:35190", "OSVDB:13449", "OSVDB:3230"], "type": "osvdb"}], "rev": 2}, "score": {"modified": "2018-08-31T11:09:24", "rev": 2, "value": 5.0, "vector": "NONE"}}, "hash": "ea7d1cdcd2d28517218972775f295072265bdf7efa936925ace8c4c4244a428f", "hashmap": [{"hash": "b69e20224c25742b9be75e6457a20933", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "ad8ccd70e774869efe94ec1ead498e32", "key": "affectedSoftware"}, {"hash": "3e13e45b9003c06f0cf0efb03ea8636f", "key": "modified"}, {"hash": "c71de4d0becfd832639c1439702d0d67", "key": "title"}, {"hash": "f6ec9842551335896599484b84d1f92f", "key": "cvelist"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "c61e5d59aa5c4e535b518cca44e00a6f", "key": "description"}, {"hash": "f9fa10ba956cacf91d7878861139efb9", "key": "bulletinFamily"}, {"hash": "3e13e45b9003c06f0cf0efb03ea8636f", "key": "published"}, {"hash": "4fa01d312de3d36f880d89146c4412a3", "key": "href"}, {"hash": "2c5cca82a8670da097919f6160833daf", "key": "reporter"}, {"hash": "d54751dd75af2ea0147b462b3e001cd0", "key": "type"}], "history": [], "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:7479", "id": "SECURITYVULNS:VULN:7479", "immutableFields": [], "lastseen": "2018-08-31T11:09:24", "modified": "2007-03-28T00:00:00", "objectVersion": "1.5", "published": "2007-03-28T00:00:00", "references": ["https://vulners.com/securityvulns/securityvulns:doc:16495", "https://vulners.com/securityvulns/securityvulns:doc:16494", "https://vulners.com/securityvulns/securityvulns:doc:16505"], "reporter": "BUGTRAQ", "title": "Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)", "type": "securityvulns", "viewCount": 8}, "different_elements": ["affectedSoftware"], "edition": 1, "lastseen": "2018-08-31T11:09:24"}], "edition": 2, "hashmap": [{"key": "affectedSoftware", "hash": "e408c3e812e8a2416247a82ebebb4555"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "f6ec9842551335896599484b84d1f92f"}, {"key": "cvss", "hash": "2bdabeb49c44761f9565717ab0e38165"}, {"key": "description", "hash": "c61e5d59aa5c4e535b518cca44e00a6f"}, {"key": "href", "hash": "4fa01d312de3d36f880d89146c4412a3"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "3e13e45b9003c06f0cf0efb03ea8636f"}, {"key": "published", "hash": "3e13e45b9003c06f0cf0efb03ea8636f"}, {"key": "references", "hash": "b69e20224c25742b9be75e6457a20933"}, {"key": "reporter", "hash": "2c5cca82a8670da097919f6160833daf"}, {"key": "title", "hash": "c71de4d0becfd832639c1439702d0d67"}, {"key": "type", "hash": "d54751dd75af2ea0147b462b3e001cd0"}], "hash": "9ea2c94d93b2e241b8873ac697c5ae1187bd50f171decc6fd06b79acdccc8e16", "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2007-1725", "CVE-2005-4831", "CVE-2007-1729", "CVE-2007-1516", "CVE-2007-1720", "CVE-2007-1721", "CVE-2007-1726", "CVE-2004-1062"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2004-1062"]}, {"type": "nessus", "idList": ["2478.PRM", "2446.PRM", "VIEWCVS_HTTP_RESPONSE_SPLITTING.NASL", "GENTOO_GLSA-200412-26.NASL"]}, {"type": "exploitdb", "idList": ["EDB-ID:3583", "EDB-ID:3581", "EDB-ID:3582", "EDB-ID:3580", "EDB-ID:3487"]}, {"type": "osvdb", "idList": ["OSVDB:34725", "OSVDB:35189", "OSVDB:35185", "OSVDB:34311", "OSVDB:35192", "OSVDB:13449", "OSVDB:12682", "OSVDB:35187", "OSVDB:3230", "OSVDB:34498"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:16505", "SECURITYVULNS:DOC:16494", "SECURITYVULNS:DOC:16495", "SECURITYVULNS:DOC:16195"]}, {"type": "openvas", "idList": ["OPENVAS:54785"]}, {"type": "gentoo", "idList": ["GLSA-200412-26"]}], "modified": "2021-06-08T18:50:30", "rev": 2}, "score": {"value": 5.0, "vector": "NONE", "modified": "2021-06-08T18:50:30", "rev": 2}}, "objectVersion": "1.5", "affectedSoftware": [{"name": "icebb", "operator": "eq", "version": "1.0"}, {"name": "ccmail", "operator": "eq", "version": "1.0"}, {"name": "viewvc", "operator": "eq", "version": "1.0"}, {"name": "flexbb", "operator": "eq", "version": "1.0"}, {"name": "c-arbre", "operator": "eq", "version": "0.6"}, {"name": "viewcvs", "operator": "eq", "version": "1.0"}], "immutableFields": [], "scheme": null, "cvss2": {}, "cvss3": {}}]}
