oval:org.mitre.oval:def:993

Definition Id: oval:org.mitre.oval:def:993

Oval ID:	oval:org.mitre.oval:def:993
Title:	CVS Improper Handling of Malformed Entry Lines
Description:	CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle malformed "Entry" lines, which prevents a NULL terminator from being used and may lead to a denial of service (crash), modification of critical program data, or arbitrary code execution.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2004-0414	Version:	1
Platform(s):	Red Hat Enterprise Linux 3	Product(s):	CVS
Definition Synopsis:
Software section Red Hat Enterprise 3 is installed AND cvs rpm version prior to 1.11.2-24 is installed AND Configuration section /usr/bin/cvs is executable /usr/bin/cvs is executable AND /usr/bin/cvs is executable AND /usr/bin/cvs is executable