Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2004-1342
cve
2004
1342
cvs
debian
gnu
linux
authentication
bypass
pserver
access
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.3%
CVS 1.12 and earlier on Debian GNU/Linux, when using the repouid patch, allows remote attackers to bypass authentication via the pserver access method.
Affected configurations
Node
cvscvsMatch1.10
ORcvscvsMatch1.10.6
ORcvscvsMatch1.10.7
ORcvscvsMatch1.10.8
ORcvscvsMatch1.11
ORcvscvsMatch1.11.1
ORcvscvsMatch1.11.1_p1
ORcvscvsMatch1.11.2
ORcvscvsMatch1.11.3
ORcvscvsMatch1.11.4
ORcvscvsMatch1.11.5
ORcvscvsMatch1.11.6
ORcvscvsMatch1.11.10
ORcvscvsMatch1.11.11
ORcvscvsMatch1.11.14
ORcvscvsMatch1.11.15
ORcvscvsMatch1.11.16
ORcvscvsMatch1.12
References
Related
cvelist
cvelist
CVE-2004-1342
2022-10-03 16:14:12
ubuntucve
ubuntucve
CVE-2004-1342
2005-04-27 00:00:00
cert
cert
Debian CVS "pserver" remote access authentication bypass vulnerability
2005-05-05 00:00:00
debiancve
debiancve
CVE-2004-1342
2022-10-03 16:14:12
nvd
nvd
CVE-2004-1342
2005-04-27 04:00:00
openvas
openvas
Debian Security Advisory DSA 715-1 (cvs)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-715-1)
2008-01-17 00:00:00
osv
osv
cvs - several
2005-04-27 00:00:00
debian
debian
[SECURITY] [DSA 715-1] New cvs packages fix unauthorised repository access
2005-04-27 06:00:01
[SECURITY] [DSA 715-1] New cvs packages fix unauthorised repository access
2005-04-27 06:00:01
nessus
nessus
Debian DSA-715-1 : cvs - several vulnerabilities
2005-04-28 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.3%
Related for CVE-2004-1342