Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
CVE ID: | CVE-2004-0749 |
Description: | The mod_authz_svn module in Subversion 1.0.7 and earlier does not properly restrict access to all metadata on unreadable paths, which could allow remote attackers to gain sensitive information via (1) svn log -v, (2) svn propget, or (3) svn blame, and other commands that follow renames. |
Test IDs: | 1.3.6.1.4.1.25623.1.0.51378 1.3.6.1.4.1.25623.1.0.50412 1.3.6.1.4.1.25623.1.0.52373 1.3.6.1.4.1.25623.1.0.14800 1.3.6.1.4.1.25623.1.0.54691 |
Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2004-0749 BugTraq ID: 11243 http://www.securityfocus.com/bid/11243 http://fedoranews.org/updates/FEDORA-2004-318.shtml http://www.gentoo.org/security/en/glsa/glsa-200409-35.xml XForce ISS Database: subversion-information-disclosure(17472) https://exchange.xforce.ibmcloud.com/vulnerabilities/17472 |