|
|
Log in / Subscribe / Register

viewvc: multiple vulnerabilities

Package(s):viewvc CVE #(s):CVE-2008-1290 CVE-2008-1291 CVE-2008-1292
Created:March 20, 2008 Updated:March 26, 2008
Description: From the Gentoo alert:

Multiple unspecified errors were reportedly fixed by the ViewVC development team. A remote attacker could send a specially crafted URL to the server to list CVS or SVN commits on "all-forbidden" files, access hidden CVSROOT folders, and view restricted content via the revision view, the log history, or the diff view.

Alerts:
Gentoo 200803-29 viewvc 2008-03-19
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds