Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0413

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0413
Last Modified 05 Sep 2008 04:38:22
Published 06 Aug 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0413

Summary

libsvn_ra_svn in Subversion 1.0.4 trusts the length field of (1) svn://, (2) svn+ssh://, and (3) other svn protocol URL strings, which allows remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via an integer overflow that leads to a heap-based buffer overflow.

Vulnerable Systems

Application

  • Openpkg

  • Openpkg 2.0

  • Subversion 1.0

  • Subversion 1.0.1

  • Subversion 1.0.2

  • Subversion 1.0.3

  • Subversion 1.0.4


References

XF - subversion-svn-bo(16396)

BID - 10519

FEDORA - FLSA:1748

FEDORA - FEDORA-2004-165

SUSE - SuSE-SA:2004:018

GENTOO - GLSA-200406-07

CONFIRM - http://subversion.tigris.org/security/CAN-2004-0413-advisory.txt

BUGTRAQ - 20041012 [FMADV] Subversion <= 1.04 Heap Overflow


Last Updated: 27 May 2016 10:38:36