Vulnerabilities > CVS > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-08-26 | CVE-2005-2693 | Unspecified vulnerability in CVS 1.12.12 cvsbug in CVS 1.12.12 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack. | 4.6 |
| 2004-12-31 | CVE-2004-1343 | Unspecified vulnerability in CVS CVS 1.12 and earlier on Debian GNU/Linux does not properly handle when a mapping for the current repository does not exist in the cvs-repouids file, which allows remote attackers to cause a denial of service (server crash). | 5.0 |
| 2004-08-06 | CVE-2004-0417 | Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space. | 5.0 |
| 2004-06-01 | CVE-2004-0405 | Unspecified vulnerability in CVS CVS before 1.11 allows CVS clients to read arbitrary files via .. | 5.0 |
| 2002-03-15 | CVE-2002-0092 | Denial Of Service vulnerability in CVS Server Global Variable CVS before 1.10.8 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (server crash) via the diff capability. | 5.0 |