CVE-2003-0977 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2003-0977
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-0977

Description: CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/13929 SGI SAID Secunia Advisory: SA10601 REDHAT http://www.redhat.com/support/errata/RHSA-2004-004.html http://www.redhat.com/support/errata/RHSA-2004-003.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:855 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:866 MANDRAKE http://www.mandriva.com/security/advisories?name=MDKSA-2003:112 DEBIAN http://www.debian.org/security/2004/dsa-422 CONFIRM http://ccvs.cvshome.org/servlets/NewsItemView?newsID=84&JServSessionIdservlets=8u3x1myav1 CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000808 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=107168035515554&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=107540163908129&w=2

Return to the previous page.