oval:org.mitre.oval:def:1001

Definition Id: oval:org.mitre.oval:def:1001

Oval ID:	oval:org.mitre.oval:def:1001
Title:	Integer overflow in the "Max-dotdot" CVS protocol command
Description:	Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0417	Version:	1
Platform(s):	Red Hat Enterprise Linux 3	Product(s):	CVS
Definition Synopsis:
Software section Red Hat Enterprise 3 is installed AND cvs rpm version prior to 1.11.2-24 is installed AND Configuration section /usr/bin/cvs is executable /usr/bin/cvs is executable AND /usr/bin/cvs is executable AND /usr/bin/cvs is executable