CVE-2004-0397

EPSS 86.6%

Published: 7/7/2004Modified: 4/28/2026

Description

Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.

Affected packages (1)

Debian/subversionfrom 0, < 1.0.3-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-0397