Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
Database
Search
Advisories by Product
Advisories by Vendor
Terminology
Report Vulnerability
Insecure Library Loading
Moderately critical

CVSNT Branch Name Arbitrary File Creation Vulnerability

-

Release Date:  2010-09-14    Views:  3,296

Secunia Advisory SA41345

Where:

From remote

Impact:

System access

Solution Status:

Vendor Patch

Software:

CVE Reference(s):

Description


A vulnerability has been reported in CVSNT, which can be exploited by malicious users to compromise a vulnerable system.

The vulnerability is caused due to an error in the processing of branch names during authentication. This can be exploited to gain write access to arbitrary directories by creating a branch name with a specially crafted branch name.

Successful exploitation allows e.g. to execute arbitrary code by modifying or adding administrative scripts in the CVSROOT.

The vulnerability is reported in versions prior to CVSNT 2.5.04 build 2862.


Solution:
Update to version CVSNT 2.5.04 build 2862 or later.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
CVSNT:
http://www.march-hare.com/cvspro/vuln.htm

Deep Links:
Links available to Secunia VIM customers

Do you have additional information related to this advisory?

Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com

Subject: CVSNT Branch Name Arbitrary File Creation Vulnerability

User Message
vh106 RE: CVSNT Branch Name Arbitrary File Creation Vulnerability
Member 28th May, 2011 01:47
Score: -6
Posts: 4
User Since: 5th Oct 2010
System Score: N/A
Location: DE
Last edited on 28th May, 2011 01:47
A free (as in free beer) and usable (as in unhampered speech) version is available at:

http://tortoisecvs.cvs.sourceforge.net/viewvc/tort...

Right click on the "download" link and save it to a file (or use wget).

Source can be found at http://packages.ubuntu.com/natty/cvsnt
Was this reply relevant?
+0
-0

-

You must be logged in to post a comment.



 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Factsheets
Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability