CVE-2000-0680 in CVS Serverinformazioni

Riassunto

di MITRE

The CVS 1.10.8 server does not properly restrict users from creating arbitrary Checkin.prog or Update.prog programs, which allows remote CVS committers to modify or create Trojan horse programs with the Checkin.prog or Update.prog names, then performing a CVS commit action.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgazione

20/10/2000

Moderazione

accettato

Voce

VDB-15822

CPE

pronto

CWE

CWE-269 (confermato)

Sfruttamento

Scaricare

CVSS

7.2 (NVD)

EPSS

0.00363

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2000-0680
NVD	https://nvd.nist.gov/vuln/detail/CVE-2000-0680
CVE Details	https://www.cvedetails.com/cve/CVE-2000-0680/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you need the next level of professionalism?

Upgrade your account now!