Oval Definition:	oval:org.mitre.oval:tst:30704
Comment: cvs is earlier than 0:1.11.2-18 Type: rpminfo_test Namespace: linux Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:14275 State: oval:org.mitre.oval:ste:9342 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:9462 V The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405. 2013-04-29 oval:org.mitre.oval:def:10818 V CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client requests, a different vulnerability than CVE-2004-0180. 2013-04-29
BACK