CVE-2004-0915

NameCVE-2004-0915
DescriptionMultiple unknown vulnerabilities in viewcvs before 0.9.2, when exporting a repository as a tar archive, does not properly implement the hide_cvsroot and forbidden settings, which could allow remote attackers to gain sensitive information.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
ReferencesDSA-605-1
NVD severitymedium (attack range: remote)
Debian Bugs284237

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
viewcvssource(unstable)0.9.2+cvs.1.0.dev.2004.07.28-1.2medium284237
viewcvssourcewoody0.9.2-4woody1mediumDSA-605-1

Search for package or bug name: Reporting problems