New Search

CVS 1.11.x before 1.11.17 and 1.12.x before 1.12.9 allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file which causes different error messages to be returned.

oval:org.mitre.oval:def:10688

CVS 1.11.x before 1.11.17 and 1.12.x before 1.12.9 allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file which causes different error messages to be returned.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 3
  • CentOS Linux 3
Class:
vulnerability
Reference(s):
  • CVE-2004-0778
Product(s):