CVS server prior to 1.11.10 may allow malicious users to cause the CVS server to create directories and files in the file system root directory via malformed module requests.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cvs cvs 1.10.7 |
||
cvs cvs 1.10.8 |
||
cvs cvs 1.11 |
||
cvs cvs 1.11.6 |
||
cvs cvs 1.11.4 |
||
cvs cvs 1.11.5 |
||
cvs cvs 1.11.1 |
||
cvs cvs 1.11.1_p1 |
||
cvs cvs 1.11.2 |
||
cvs cvs 1.11.3 |
||
slackware slackware linux 8.1 |
||
slackware slackware linux 9.0 |
||
slackware slackware linux 9.1 |
Vulmon