Vulnerabilities > CVE-2004-0778 - Information Exposure Through Discrepancy vulnerability in GNU CVS
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 6 |
Common Weakness Enumeration (CWE)
Nessus
NASL family FreeBSD Local Security Checks NASL id FREEBSD_CVS_11117.NASL description The following package needs to be updated: FreeBSD last seen 2016-09-26 modified 2011-10-02 plugin id 14282 published 2004-08-17 reporter Tenable source https://www.tenable.com/plugins/index.php?view=single&id=14282 title FreeBSD : cvs -- numerous vulnerabilities (29) NASL family Mandriva Local Security Checks NASL id MANDRAKE_MDKSA-2004-108.NASL description iDEFENSE discovered a flaw in CVS versions prior to 1.1.17 in an undocumented switch implemented in CVS last seen 2020-06-01 modified 2020-06-02 plugin id 15522 published 2004-10-20 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/15522 title Mandrake Linux Security Advisory : cvs (MDKSA-2004:108) NASL family Debian Local Security Checks NASL id DEBIAN_DSA-519.NASL description Sebastian Krahmer and Stefan Esser discovered several vulnerabilities in the CVS server, which serves the popular Concurrent Versions System. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2004-0416: double-free() in error_prog_name - CAN-2004-0417: argument integer overflow - CAN-2004-0418: out of bound writes in serve_notify() last seen 2020-06-01 modified 2020-06-02 plugin id 15356 published 2004-09-29 reporter This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/15356 title Debian DSA-519-1 : cvs - several vulnerabilities NASL family FreeBSD Local Security Checks NASL id FREEBSD_PKG_D2102505F03D11D881B0000347A4FA7D.NASL description A number of vulnerabilities were discovered in CVS by Stefan Esser, Sebastian Krahmer, and Derek Price. - Insufficient input validation while processing last seen 2020-06-01 modified 2020-06-02 plugin id 37427 published 2009-04-23 reporter This script is Copyright (C) 2009-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/37427 title FreeBSD : cvs -- numerous vulnerabilities (d2102505-f03d-11d8-81b0-000347a4fa7d) NASL family Misc. NASL id CVS_FILE_EXISTENCE_INFO_WEAK.NASL description The remote CVS server, according to its version number, can be exploited by malicious users to gain knowledge of certain system information. This behavior can be exploited to determine the existence and permissions of arbitrary files and directories on a vulnerable system. last seen 2020-06-01 modified 2020-06-02 plugin id 14313 published 2004-08-20 reporter This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/14313 title CVS history.c File Existence Information Disclosure NASL family Red Hat Local Security Checks NASL id REDHAT-RHSA-2004-233.NASL description An updated cvs package that fixes several server vulnerabilities, which could be exploited by a malicious client, is now available. CVS is a version control system frequently used to manage source code repositories. While investigating a previously fixed vulnerability, Derek Price discovered a flaw relating to malformed last seen 2020-06-01 modified 2020-06-02 plugin id 12500 published 2004-07-06 reporter This script is Copyright (C) 2004-2019 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/12500 title RHEL 2.1 / 3 : cvs (RHSA-2004:233)
Oval
| accepted | 2013-04-29T04:07:45.344-04:00 | ||||||||
| class | vulnerability | ||||||||
| contributors |
| ||||||||
| definition_extensions |
| ||||||||
| description | CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned. | ||||||||
| family | unix | ||||||||
| id | oval:org.mitre.oval:def:10688 | ||||||||
| status | accepted | ||||||||
| submitted | 2010-07-09T03:56:16-04:00 | ||||||||
| title | CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned. | ||||||||
| version | 26 |
Redhat
| rpms |
|
References
- http://www.idefense.com/application/poi/display?id=130&type=vulnerabilities
- http://www.kb.cert.org/vuls/id/579225
- http://www.securityfocus.com/bid/10955
- http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:108
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17001
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10688