Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2004-0417HistoryAug 06, 2004 - 4:00 a.m.
CVE-2004-0417
2004-08-0604:00:00
Debian Security Bug Tracker
security-tracker.debian.org
12
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.931 High
EPSS
Percentile
99.1%
Integer overflow in the “Max-dotdot” CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cvs | < 1:1.12.9-1 | cvs_1:1.12.9-1_all.deb |
| Debian | 11 | all | cvs | < 1:1.12.9-1 | cvs_1:1.12.9-1_all.deb |
| Debian | 999 | all | cvs | < 1:1.12.9-1 | cvs_1:1.12.9-1_all.deb |
| Debian | 13 | all | cvs | < 1:1.12.9-1 | cvs_1:1.12.9-1_all.deb |
Related
cve
cve
CVE-2004-0417
2004-08-06 04:00:00
checkpoint_advisories
checkpoint_advisories
CVS Max-dotdot Protocol Command Integer Overflow - Ver2 (CVE-2004-0417)
2014-12-28 00:00:00
CVS Max-dotdot Protocol Command Integer Overflow (CVE-2004-0417)
2009-11-15 00:00:00
cvelist
cvelist
CVE-2004-0417
2004-06-11 04:00:00
nvd
nvd
CVE-2004-0417
2004-08-06 04:00:00
ubuntucve
ubuntucve
CVE-2004-0417
2004-08-06 00:00:00
openvas
openvas
Debian Security Advisory DSA 519-1 (cvs)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-519)
2008-01-17 00:00:00
CVS malformed entry lines flaw
2005-11-03 00:00:00
debian
debian
osv
osv
cvs - several vulnerabilities
2004-06-15 00:00:00
nessus
nessus
GLSA-200406-06 : CVS: additional DoS and arbitrary code execution vulnerabilities
2004-08-30 00:00:00
Debian DSA-519-1 : cvs - several vulnerabilities
2004-09-29 00:00:00
Debian DSA-517-1 : cvs - buffer overflow
2004-09-29 00:00:00
securityvulns
securityvulns
[Full-Disclosure] Advisory 09/2004: More CVS remote vulnerabilities
2004-06-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package cvs version 1.11.15-alt4
2004-06-08 00:00:00
gentoo
gentoo
CVS: additional DoS and arbitrary code execution vulnerabilities
2004-06-10 00:00:00
slackware
slackware
cvs
2004-06-09 14:05:46
redhat
redhat
(RHSA-2004:233) cvs security update
2004-06-09 00:00:00
freebsd
freebsd
cvs -- numerous vulnerabilities
2004-05-20 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-04:14.cvs
2004-09-19 00:00:00
suse
suse
remote command execution in cvs
2004-06-09 13:52:11
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.931 High
EPSS
Percentile
99.1%
Related for DEBIANCVE:CVE-2004-0417