SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   CVS Vendors:   GNU [multiple authors]
CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
SecurityTracker Alert ID:  1008420
SecurityTracker URL:  http://securitytracker.com/id/1008420
CVE Reference:   CVE-2003-0977   (Links to External Site)
Updated:  Dec 11 2003
Original Entry Date:  Dec 9 2003
Impact:   Modification of system information, Modification of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 1.11.10
Description:   A vulnerability was reported in CVS. A remote user may be able to cause CVS to create files and directories in the root directory.

It is reported that a remote user can submit a specially crafted and malformed module request that may cause the CVS server to attempt to create directories and possibly files at the root of the filesystem where the CVS repository is located. The report indicates that the permissions of the underlying filesystem will usually prevent the creation of these "misplaced directories."

The vendor reports that there are no known exploits for this flaw.

Impact:   A remote user may be able to cause CVS to create directories and potentially files in the filesystem root directory.
Solution:   The vendor has released a fixed version (1.11.10), available at:

http://ccvs.cvshome.org/servlets/ProjectDownloadList
http://ccvs.cvshome.org/servlets/ProjectDownloadList?action=download&dlID=384

Vendor URL:  ccvs.cvshome.org/servlets/NewsItemView?newsID=84&JServSessionIdservlets=8u3x1myav1 (Links to External Site)
Cause:   Input validation error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Dec 9 2003 (Mandrake Issues Fix) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
Mandrake has released a fix.
Dec 10 2003 (Mandrake Issues Fix) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
Mandrake has released a fix.
Dec 11 2003 (Gentoo Issues Fix) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
Gentoo has released a fix.
Dec 12 2003 (Slackware Issues Fix) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
Slackware has released a fix.
Dec 18 2003 (Turbolinux Issues Fix) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
Turbolinux has issued a fix.
Jan 12 2004 (Red Hat Issues Fix for RH Linux) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
Red Hat has released a fix for Red Hat Linux 9.
Jan 13 2004 (Debian Issues Fix) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
Debian has released a fix.
Jan 14 2004 (Red Hat Issues Fix for RH Enteprise Linux) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
Red Hat has released a fix for Red Hat Enterprise Linux 2.1 and 3.
Jan 20 2004 (Conectiva Issues Fix) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
Conectiva has released a fix.
May 5 2004 (OpenBSD Issues Fix) CVS Input Validation Flaw May Let Remote Users Send Malformed Module Requests to Create Root Directories and Files
OpenBSD has released a fix.



 Source Message Contents

Subject:  http://ccvs.cvshome.org/servlets/NewsItemView?newsID=84&JServSessionIdservlets=8u3x1myav1


http://ccvs.cvshome.org/servlets/NewsItemView?newsID=84&JServSessionIdservlets=8u3x1myav1

 > 2003-12-04: Stable CVS Version 1.11.10 Released! (security update)
 >
 > Contributed by: Derek Price
 >
 > Stable CVS 1.11.10 has been released. Stable releases contain only bug fixes from
 > previous versions of CVS. This release fixes a security issue with no known exploits
 > that could cause previous versions of CVS to attempt to create files and directories
 > in the filesystem root. This release also fixes several issues relevant to case
 > insensitive filesystems and some other bugs. We recommend this upgrade for all
 > CVS clients and servers!




 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2022, SecurityGlobal.net LLC