Re: Tortoise SVN latest vulnerable to Windows DLL hijacking

From: Andy Levy <andy.levy_at_gmail.com>
Date: Mon, 30 Aug 2010 12:54:46 -0400

On Mon, Aug 30, 2010 at 12:43, Nikhil Mittal <nikhil_uitrgpv_at_yahoo.co.in> wrote:
>
> Hi There,
>
> TortoiseSVN 1.6.10, Build 19898 ( latest available on tigris.org) is vulnerable to Windows DLL Hijacking vulnerability.
> http://www.microsoft.com/technet/security/advisory/2269637.mspx
>
> I am able to gain a command shell with current user privileges using metasploit. This is to notify you please. Request your consent to make it public.
>

You just did make it public by posting it on a public mailing list.

------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2653165

To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2010-08-30 18:55:39 CEST

This message: [ Message body ]
Next message: Michael j. Hudgins: "SSH key does not not work for CVS checkout"
Previous message: Nikhil Mittal: "Tortoise SVN latest vulnerable to Windows DLL hijacking"
In reply to: Nikhil Mittal: "Tortoise SVN latest vulnerable to Windows DLL hijacking"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]