Oval Definition:
oval:org.opensuse.security:def:20081291
Revision Date
:
2017-09-27
Version
:
1
Title
:
CVE-2008-1291
Description
:
ViewVC before 1.0.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to read files and list folders under the hidden CVSROOT folder.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2008-1291
Platform(s)
:
openSUSE 10.2
openSUSE 10.3
openSUSE 11.0
SUSE Linux Enterprise SDK 10 SP2
Product(s)
:
Definition Synopsis
sles10-sp2-sdk is installed
AND
Package Information
cvs2svn less than 1.3.0-30.11
OR
subversion-devel less than 1.3.1-1.10
OR
subversion-python less than 1.3.1-1.10
OR
subversion-server less than 1.3.1-1.10
OR
subversion-tools less than 1.3.1-1.10
OR
subversion less than 1.3.1-1.10
OR
viewcvs less than 1.0.5-0.2
BACK