Summary
CVS is prone to a remote heap overflow vulnerability. This issue presents itself during the handling of user-supplied input for entry lines with 'modified' and 'unchanged' flags. This vulnerability can allow an attacker to overflow a vulnerable buffer on the heap, possibly leading to arbitrary code execution.
CVS versions 1.11.15 and prior and CVS feature versions 1.12.7 and prior are prone to this issue.
**UPDATE: Symantec has confirmed that this vulnerability is being actively exploited in the wild. Administrators are urged to upgrade and block external access to potentially vulnerable servers, if possible.
Solution
CVS versions 1.11.16 and 1.12.8 have been released to address this issue.
References
- http://marc.theaimsgroup.com/?l=openbsd-security-announce&m=108508894405639&w=2
- http://rhn.redhat.com/errata/RHSA-2004-190.html
- http://security.e-matters.de/advisories/072004.html?SID=384b888de96e3bce19306db8577fca26
- http://support.coresecurity.com/impact/exploits/62024ecea12fe1bbd01479065b3a1797.html
- http://www.securityfocus.com/bid/10384
- http://www.us-cert.gov/cas/techalerts/TA04-147A.html
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2004-0396 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Acrobat Multiple Vulnerabilities April-2012 (Windows)
- Adobe Air Multiple Vulnerabilities -01 August 12 (Windows)
- Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)
- 3S CoDeSys CmpWebServer Multiple Vulnerabilities
- Adobe Acrobat and Reader Multiple Vulnerabilities -Oct10 (Windows)