CVE-2004-0396

EPSS 86.6%

cvs - heap overflow

發布日:2004/6/14修改日:2026/4/28

描述

Heap-based buffer overflow in CVS 1.11.x up to 1.11.15, and 1.12.x up to 1.12.7, when using the pserver mechanism allows remote attackers to execute arbitrary code via Entry lines.

受影響套件(2)

Debian/cvsfrom 0, < 1:1.12.5-6
Debian/cvsfrom 0, < 1.11.1p1debian-9woody4

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-0396