"Wadsworth, Eric (Contractor)" <WADSWORE@fhu.disa.mil> writes:
> ============
> Subversion is another version control system for Linux that is gaining
> popularity. The project was started with an aim of designing a better system
> than the CVS. A Subversion repository can be accessed via the "svn"
> protocol, if the repository is running "svnserve". The svn server runs on
> port 3690/tcp by default. The server contains the following vulnerabilities:
>
> * A heap-based overflow that can be exploited by an unauthenticated attacker
> to execute arbitrary code.
> * A stack-based overflow that can be triggered by a specially crafted
> get-dated-rev svn command. If the server is configured for anonymous access,
> an unauthenticated attacker may exploit arbitrary code on the server.
> Multiple exploits for this flaw have been posted to the Internet.
> ============
>
> These are non-issues if you're using apache instead of svnserve, right?
Right. There may be *other* issues, but not these ones.
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Tue Oct 12 22:09:10 2004