Vulnerabilities > CVE-2000-0679 - Unspecified vulnerability in CVS 1.10.8
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
The CVS 1.10.8 client trusts pathnames that are provided by the CVS server, which allows the server to force the client to create arbitrary files.
Exploit-Db
description | CVS Kit CVS Server 1.10 .8 Instructed File Create Vulnerability. CVE-2000-0679. Local exploit for unix platform |
id | EDB-ID:20107 |
last seen | 2016-02-02 |
modified | 2000-07-28 |
published | 2000-07-28 |
reporter | Tanaka Akira |
source | https://www.exploit-db.com/download/20107/ |
title | CVS Kit CVS Server 1.10.8 - Instructed File Create Vulnerability |