7.5 - RHSA-2004:004

Executive Summary

Summary
Title	Updated CVS packages fix minor security issue

Informations
Name	RHSA-2004:004	First vendor Publication	2004-01-14
Vendor	RedHat	Last vendor Modification	2004-01-14
Severity (Vendor)	N/A	Revision	01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2004-004.html

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-193	Off-by-one Error

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:11478

Oval ID:	oval:org.mitre.oval:def:11478
Title:	Off-by-one overflow in the CVS PreservePermissions of rcs.c for CVSD before 1.11.2 allows local users to execute arbitrary code.
Description:	Off-by-one overflow in the CVS PreservePermissions of rcs.c for CVSD before 1.11.2 allows local users to execute arbitrary code.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2002-0844	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3	Product(s):
Definition Synopsis:
RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND cvs is earlier than 0:1.11.2-14

Definition Id: oval:org.mitre.oval:def:11528

Oval ID:	oval:org.mitre.oval:def:11528
Title:	CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests.
Description:	CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2003-0977	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3	Product(s):
Definition Synopsis:
RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND cvs is earlier than 0:1.11.2-14

Definition Id: oval:org.mitre.oval:def:855

Oval ID:	oval:org.mitre.oval:def:855
Title:	Red Hat CVS Server root Directory Access Vulnerability
Description:	CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2003-0977	Version:	2
Platform(s):	Red Hat Linux 9	Product(s):	CVS server
Definition Synopsis:
Software section Red Hat 9 is installed AND ix86 architecture AND cvs version is less than 1.11.2-13 AND Configuration section / is world-writable

Definition Id: oval:org.mitre.oval:def:866

Oval ID:	oval:org.mitre.oval:def:866
Title:	Red Hat Enterprise 3 CVS Server root Directory Access Vulnerability
Description:	CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2003-0977	Version:	2
Platform(s):	Red Hat Enterprise Linux 3	Product(s):	CVS server
Definition Synopsis:
Software section Red Hat Enterprise 3 is installed AND ix86 architecture AND cvs version is less than 1.11.2-14 AND Configuration section / is world-writable

CPE : Common Platform Enumeration

Type	Description	Count
Application	Cvs cpe:2.3:a:cvs:cvs:1.11.6:::::::* cpe:2.3:a:cvs:cvs:1.11.5:::::::* cpe:2.3:a:cvs:cvs:1.11.4:::::::* cpe:2.3:a:cvs:cvs:1.11.3:::::::* cpe:2.3:a:cvs:cvs:1.11.2:::::::* cpe:2.3:a:cvs:cvs:1.11.1_p1:::::::* cpe:2.3:a:cvs:cvs:1.11.1:::::::* cpe:2.3:a:cvs:cvs:1.11:::::::* cpe:2.3:a:cvs:cvs:1.10.8:::::::* cpe:2.3:a:cvs:cvs:1.10.7:::::::*	10
Application	Distrotech Cvs cpe:2.3:a:distrotech:cvs::::::::	1
Os	Slackware Slackware Linux cpe:2.3:o:slackware:slackware_linux:9.1:::::::* cpe:2.3:o:slackware:slackware_linux:9.0:::::::* cpe:2.3:o:slackware:slackware_linux:8.1:::::::*	3

OpenVAS Exploits

Date	Description
2008-09-24	Name : Gentoo Security Advisory GLSA 200312-04 (CVS) File : nvt/glsa_200312_04.nasl
2008-01-17	Name : Debian Security Advisory DSA 422-1 (cvs) File : nvt/deb_422_1.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
7409	CVS rcs.c PreservePermissions for CVSD Overflow
2941	CVS pserver Crafted Module Request Arbitrary File / Directory Creation CVS contains a flaw that allows a remote attacker to create arbitrary files and directories on a vulnerable server. This is due to CVS not checking attempts to create files or directories.

Snort® IPS/IDS

Date	Description
2014-01-10	CVS non-relative path access attempt RuleID : 2318-community - Revision : 8 - Type : SERVER-OTHER
2014-01-10	CVS non-relative path access attempt RuleID : 2318 - Revision : 8 - Type : SERVER-OTHER
2014-01-10	CVS non-relative path error response RuleID : 2317-community - Revision : 10 - Type : INDICATOR-COMPROMISE
2014-01-10	CVS non-relative path error response RuleID : 2317 - Revision : 10 - Type : INDICATOR-COMPROMISE

Nessus® Vulnerability Scanner

Date	Description
2004-07-31	Name : The remote Mandrake Linux host is missing a security update. File : mandrake_MDKSA-2003-112.nasl - Type : ACT_GATHER_INFO
2004-07-06	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2004-004.nasl - Type : ACT_GATHER_INFO
2003-12-11	Name : The revision control service running on the remote host has an arbitrary file... File : cvs_dir_create.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:48:19	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	2
Oval ID(s)	4
CPE ID(s)	14
osvdb(s)	2
Openvas Exploit(s)	2
Snort® Rule(s)	4
Nessus® Exploit(s)	3

	Related
7.8	CVE-2002-0844
7.5	CVE-2003-0977
2.6	RHSA-2004:153
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 3 more Alert(s)

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0588s

Facebook rss twitter linkedin mail