| VID |
23088 |
| Severity |
20 |
| Port |
2401 |
| Protocol |
TCP |
| Class |
CVS |
| Detailed Description |
The CVS server, according to its version number, has an information disclosure vulnerability via the history command.
CVS (Concurrent Versions System) is an open-source source code management and distribution system available for most Linux and Unix-based operating systems. CVS versions prior to 1.11.17, and prior to 1.12.9 could allow a remote authenticated attacker to determine whether arbitrary system files and directories exist and whether or not the CVS process has access to them. This vulnerability can be exploited by specifying the name of the history file with -X command.
* Note: This check solely relied on the version number of the remote CVS server to assess this vulnerability, so this might be a false positive.
* References:
http://www.kb.cert.org/vuls/id/579225
http://www.idefense.com/application/poi/display?id=130&type=vulnerabilities&flashstatus=true
* Platforms Affected:
CVS (Concurrent Versions System) prior to 1.11.17
CVS (Concurrent Versions System) prior to 1.12.9
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of CVS (1.11.17 or 1.12.9 or later), available from the CVS Web site at http://ccvs.cvshome.org/servlets/ProjectDownloadList |
| Related URL |
CVE-2004-0778 (CVE) |
| Related URL |
10955 (SecurityFocus) |
| Related URL |
17001 (ISS) |
|
