info
discussion
exploit
solution
references
ViewCVS Source View Input Validation Vulnerability
Solution:
The issue is reportedly addressed in ViewCVS 1.0-dev. Symantec has not confirmed this.
Please see the references for more information.
ViewCVS ViewCVS 0.9.2
SuSE subversion-viewcvs-0.27.0-211.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/subversion-viewcv s-0.27.0-211.i586.rpm
SuSE subversion-viewcvs-0.27.0-211.x86_64.rpm
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/subversion-vi ewcvs-0.27.0-211.x86_64.rpm
SuSE subversion-viewcvs-1.0.0-73.17.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/subversion-viewcv s-1.0.0-73.17.i586.rpm
SuSE subversion-viewcvs-1.0.0-73.17.x86_64.rpm
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/subversion-vi ewcvs-1.0.0-73.17.x86_64.rpm
SuSE subversion-viewcvs-1.0.8-2.2.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/subversion-viewcv s-1.0.8-2.2.i586.rpm
SuSE subversion-viewcvs-1.0.8-2.2.x86_64.rpm
ftp://ftp.suse.com/pub/suse/x86_64/update/9.2/rpm/x86_64/subversion-vi ewcvs-1.0.8-2.2.x86_64.rpm
Privacy Statement
Copyright 2010, SecurityFocus
