| VID |
23090 |
| Severity |
30 |
| Port |
3690 |
| Protocol |
TCP |
| Class |
Subversion |
| Detailed Description |
The Subversion, according to its version number, has an information disclosure vulnerability via mod_authz_svn module. Subversion versions prior to 1.0.8 and 1.1.0-rc4 could allow a remote attacker to obtain sensitive information, caused by a flaw in the mod_authz_svn module. The mod_authz_svn module does not properly restrict access to metadata on unreadable paths, which can contain sensitive information such as logs and paths. If an administrator has marked a path as 'unreadable', then a remote attacker can still invoke certain commands to determine the existence of the unreadable path and show any associated commit log messages. The commands include 'svn log -v', 'svn propget', and 'svn blame'.
In versions 1.1-rc2 and 1.1-rc3, a remote attacker can also invoke the 'svn blame' command to cause an unreadable arbitrary file to be sent over the network, though the information will not be displayed on the client.
* Note: This check solely relied on the version number of the remote Subversion server to assess this vulnerability, so this might be a false positive.
* References:
http://subversion.tigris.org/security/CAN-2004-0749-advisory.txt
http://www.securitytracker.com/alerts/2004/Sep/1011390.html
http://secunia.com/advisories/12621/
* Platforms Affected:
Tigris.org, Subversion prior to 1.0.8
Tigris.org, Subversion 1.1.0-rc1
Tigris.org, Subversion 1.1.0-rc2
Tigris.org, Subversion 1.1.0-rc3
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of Subversion (1.0.8 or 1.1.0-rc4 or later), available from the Subversion Web site at http://subversion.tigris.org/servlets/ProjectDocumentList?folderID=260
For Gentoo Linux:
Upgrade to the latest version of Subversion (1.0.8 or later), as listed in Gentoo Linux Security Advisory GLSA 200409-35 at http://www.gentoo.org/security/en/glsa/glsa-200409-35.xml
For other distributions:
Contact your vendor for upgrade or patch information. |
| Related URL |
CVE-2004-0749 (CVE) |
| Related URL |
11243 (SecurityFocus) |
| Related URL |
17472 (ISS) |
|
