QwikSec

Security Database

CVE

CWE

Training

CVE-2010-1326

Published: Sep 15, 2010

Modified: Sep 16, 2024

PUBLISHED

Description

perms.cpp in March Hare Software CVSNT 2.0.58, 2.5.01, 2.5.02, 2.5.03 before build 3736, 2.5.04 before build 2862; CVS Suite 2.5.03, 2008 before build 3736, and 2009 before 3729 allows remote attackers to bypass the permissions check, modify arbitrary modules and directories within CVSROOT, and execute arbitrary code via a crafted branch name ACL, possibly related to incorrect inheritance.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_VUPEN

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=593884

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

http://customer.march-hare.com/webtools/bugzilla/attachment.cgi?tt=1&id=1790&action=view

x_refsource_MISC

http://march-hare.com/cvspro/vuln.htm

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.