CVE-2004-0396

Current Description

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines.

Basic Data

PublishedJune 14, 2004
Last ModifiedOctober 11, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score7.5
SeverityHIGH
Exploitability Score10.0
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegetrue

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationCvsCvs1.11*******
    2.3ApplicationCvsCvs1.12*******

Vulnerable Software List

VendorProductVersions
Cvs Cvs 1.11, 1.12

References

NameSourceURLTags
FreeBSD-SA-04:10ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:10.cvs.ascFREEBSD
NetBSD-SA2004-008ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2004-008.txt.ascNETBSD
20040519 Advisory 07/2004: CVS remote vulnerabilityhttp://archives.neohapsis.com/archives/fulldisclosure/2004-05/0980.htmlFULLDISC
20040519 Advisory 07/2004: CVS remote vulnerabilityhttp://cert.uni-stuttgart.de/archive/bugtraq/2004/05/msg00219.htmlBUGTRAQ
SuSE-SA:2004:013http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021742.htmlSUSE
20040519 Advisory 07/2004: CVS remote vulnerabilityhttp://marc.info/?l=bugtraq&m=108498454829020&w=2BUGTRAQ
20040519 [OpenPKG-SA-2004.022] OpenPKG Security Advisory (cvs)http://marc.info/?l=bugtraq&m=108500040719512&w=2BUGTRAQ
FEDORA-2004-1620http://marc.info/?l=bugtraq&m=108636445031613&w=2FEDORA
20040520 cvs server buffer overflow vulnerabilityhttp://marc.info/?l=openbsd-security-announce&m=108508894405639&w=2OPENBSD
11641http://secunia.com/advisories/11641SECUNIA
11647http://secunia.com/advisories/11647SECUNIA
11651http://secunia.com/advisories/11651SECUNIA
11652http://secunia.com/advisories/11652SECUNIA
11674http://secunia.com/advisories/11674SECUNIA
http://security.e-matters.de/advisories/072004.htmlhttp://security.e-matters.de/advisories/072004.htmlMISC
GLSA-200405-12http://security.gentoo.org/glsa/glsa-200405-12.xmlGENTOO
O-147http://www.ciac.org/ciac/bulletins/o-147.shtmlCIAC
DSA-505http://www.debian.org/security/2004/dsa-505DEBIANPATCH Vendor Advisory
VU#192038http://www.kb.cert.org/vuls/id/192038CERT-VNPATCH Third Party Advisory US Government Resource
MDKSA-2004:048http://www.mandriva.com/security/advisories?name=MDKSA-2004:048MANDRAKE
6305http://www.osvdb.org/6305OSVDB
RHSA-2004:190http://www.redhat.com/support/errata/RHSA-2004-190.htmlREDHATPATCH Vendor Advisory
10384http://www.securityfocus.com/bid/10384BID
SSA:2004-140-01http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.395865SLACKWARE
TA04-147Ahttp://www.us-cert.gov/cas/techalerts/TA04-147A.htmlCERTUS Government Resource
cvs-entry-line-bo(16193)https://exchange.xforce.ibmcloud.com/vulnerabilities/16193XF
oval:org.mitre.oval:def:9058https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9058OVAL
oval:org.mitre.oval:def:970https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A970OVAL