|Category:||Remote file access|
|Title:||Subversion Module unreadeable path information disclosure|
|Summary:||You are running a version of Subversion which is older than 1.0.8 or 1.1.0-rc4.;; A flaw exists in older version, in the apache module mod_authz_svn,; which fails to properly restrict access to metadata within unreadable paths.|
You are running a version of Subversion which is older than 1.0.8 or 1.1.0-rc4.
A flaw exists in older version, in the apache module mod_authz_svn,
which fails to properly restrict access to metadata within unreadable paths.
An attacker can read metadata in unreadable paths, which can contain sensitive
information such as logs and paths.
Upgrade to subversion 1.0.8, 1.1.0-rc4 or newer.
BugTraq ID: 11243|
Common Vulnerability Exposure (CVE) ID: CVE-2004-0749
XForce ISS Database: subversion-information-disclosure(17472)
|Copyright||Copyright (C) 2004 David Maciejak|
|This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.