This application requires Javascript for optimal performance.

Subversion.Exploit

Alias(es)

Subversion.Bypass.Access.Control

Release Date

Sep 11, 2006

Severity

medium

Impact

Unauthorized access to protected files

Description

This indicates a potential vulnerability with the Subversion system installed on your machine.



Subversion is an open-source project for version control purpose. Due to access control implementation errors, a low-privilege user can access to high-privilege information stored in the depository.

Affected Products

Subversion versions up to and including 1.0.5

Recommended Actions

Apply appropriate patches or upgrade the system to the latest non-vulnerable version

Coverage

IPS
VCM

Common Vulnerabilities and Exposures (CVE)

CVE-2004-9998

Reference/s

http://www.securityfocus.com/bid/10800 (BugTraq)
http://securitytracker.com/id?1010779
http://subversion.tigris.org/security/mod_authz_svn-copy-advisory.txt

Reference: VID-12284