7.5

CVE-2003-0977

CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CvsCvs Version1.10.7
CvsCvs Version1.10.8
CvsCvs Version1.11
CvsCvs Version1.11.1
CvsCvs Version1.11.1_p1
CvsCvs Version1.11.2
CvsCvs Version1.11.3
CvsCvs Version1.11.4
CvsCvs Version1.11.5
CvsCvs Version1.11.6
SlackwareSlackware Linux Version8.1
SlackwareSlackware Linux Version9.0
SlackwareSlackware Linux Version9.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.29% 0.81
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc
http://www.redhat.com/support/errata/RHSA-2004-004.html
ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc
http://ccvs.cvshome.org/servlets/NewsItemView?newsID=84&JServSessionIdservlets=8u3x1myav1
Patch
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000808
http://marc.info/?l=bugtraq&m=107168035515554&w=2
http://marc.info/?l=bugtraq&m=107540163908129&w=2
http://secunia.com/advisories/10601
http://www.debian.org/security/2004/dsa-422
Patch
Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2003:112
http://www.redhat.com/support/errata/RHSA-2004-003.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/13929
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11528
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A855
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A866