Oval Definition:	oval:org.mitre.oval:def:18999
Revision Date: 2015-05-04 Version: 7 Title: Apache Subversion vulnerability 1.5.x and 1.6.x before 1.6.17 in VisualSVN Server (CVE-2011-1921) Description: The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is disabled, does not properly enforce permissions for files that had been publicly readable in the past, which allows remote attackers to obtain sensitive information via a replay REPORT operation. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2011-1921 Platform(s): Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Vista Microsoft Windows XP Product(s): VisualSVN Server Definition Synopsis VisualSVN Server is installed AND Check if Apache Subversion version is greater than or equals to 1.5.0 in VisualSVN Server AND Check if Apache Subversion version is less than 1.6.17 in VisualSVN Server
BACK