Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and previous versions allows remote malicious users to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
subversion subversion 1.0 |
||
subversion subversion 1.0.1 |
||
subversion subversion 1.0.2 |