CVE-2004-0180
published 2004-06-01CVE-2004-0180: The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during…
PriorityP420low2.6CVSS 2.0
AVNACHAuNCNIPAN
EPSS
1.83%
76.2th percentile
The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cvs | cvs | <= 1.10 | — |
| cvs | cvs | >= 0 < 1:1.12.5-4 | 1:1.12.5-4 |
| cvs | cvs | >= 0 < 1:1.12.5-4 | 1:1.12.5-4 |
| cvs | cvs | >= 0 < 1:1.12.5-4 | 1:1.12.5-4 |
| cvs | cvs | >= 0 < 1:1.12.5-4 | 1:1.12.5-4 |
| debian | cvs | < cvs 1:1.12.5-4 (bookworm) | cvs 1:1.12.5-4 (bookworm) |
CVSS provenance
nvdv2.02.6LOWAV:N/AC:H/Au:N/C:N/I:P/A:N
osv2.6LOW
vendor_debian2.6MEDIUM
vendor_redhat2.6LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-8j85-5mm6-6h5p: CVS before 1
ghsa_unreviewed·2022-05-03·CVSS 2.6
CVE-2004-0405 [LOW] GHSA-8j85-5mm6-6h5p: CVS before 1
CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client requests, a different vulnerability than CVE-2004-0180.
GHSA
GHSA-83qc-2j7c-2vjq: The client for CVS before 1
ghsa_unreviewed·2022-05-03·CVSS 5.0
CVE-2004-0180 [MEDIUM] GHSA-83qc-2j7c-2vjq: The client for CVS before 1
The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405.
OSV
CVE-2004-0180: The client for CVS before 1
osv·2004-06-01·CVSS 2.6
CVE-2004-0180 [LOW] CVE-2004-0180: The client for CVS before 1
The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405.
OSV
CVE-2004-0405: CVS before 1
osv·2004-06-01·CVSS 2.6
CVE-2004-0405 [LOW] CVE-2004-0405: CVS before 1
CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client requests, a different vulnerability than CVE-2004-0180.
BSD
FreeBSD-SA-04:07.cvs: CVS path validation errors
bsd_advisories·2004-04-15
FreeBSD-SA-04:07.cvs: CVS path validation errors
FreeBSD-SA-04:07.cvs Security Advisory
The FreeBSD Project
Topic: CVS path validation errors
Category: contrib
Module: contrib_cvs
Announced: 2004-04-15
Revised: 2004-04-16
Credits: Sebastian Krahmer
Derek Robert Price
Affects: All FreeBSD versions prior to 4.10-RELEASE
Corrected: 2004-04-15 15:35:26 UTC (RELENG_4, 4.10-BETA)
2004-04-15 15:42:50 UTC (RELENG_5_2, 5.2.1-RELEASE-p5)
2004-04-15 15:59:05 UTC (RELENG_4_9, 4.9-RELEASE-p5)
2004-04-15 15:59:54 UTC (RELENG_4_8, 4.8-RELEASE-p18)
CVE Name: CAN-2004-0180, CAN-2004-0405
FreeBSD only: NO
For general information regarding FreeBSD Security Advisories,
including descriptions of the fields above, security branches, and the
following sections, please visit
.
0. Revision History
v1.0 2004-04-14 Initial release.
v1.1 2004-04-15 Added addit
Red Hat
security flaw
vendor_redhat·2004-04-14·CVSS 2.6
CVE-2004-0180 [LOW] security flaw
security flaw
The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405.
Red Hat
security flaw
vendor_redhat·2004-04-14·CVSS 2.6
CVE-2004-0405 [LOW] security flaw
security flaw
CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client requests, a different vulnerability than CVE-2004-0180.
Debian
CVE-2004-0180: cvs - The client for CVS before 1.11 allows a remote malicious CVS server to create ar...
vendor_debian·2004·CVSS 2.6
CVE-2004-0180 [LOW] CVE-2004-0180: cvs - The client for CVS before 1.11 allows a remote malicious CVS server to create ar...
The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405.
Scope: local
bookworm: resolved (fixed in 1:1.12.5-4)
bullseye: resolved (fixed in 1:1.12.5-4)
forky: resolved (fixed in 1:1.12.5-4)
sid: resolved (fixed in 1:1.12.5-4)
trixie: resolved (fixed in 1:1.12.5-4)
Debian
CVE-2004-0405: cvs - CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequ...
vendor_debian·2004·CVSS 2.6
CVE-2004-0405 [LOW] CVE-2004-0405: cvs - CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequ...
CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client requests, a different vulnerability than CVE-2004-0180.
Scope: local
bookworm: resolved (fixed in 1:1.12.5-4)
bullseye: resolved (fixed in 1:1.12.5-4)
forky: resolved (fixed in 1:1.12.5-4)
sid: resolved (fixed in 1:1.12.5-4)
trixie: resolved (fixed in 1:1.12.5-4)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2004-0405 security flaw
bugzilla·2018-08-16·CVSS 2.6
CVE-2004-0405 [LOW] CVE-2004-0405 security flaw
CVE-2004-0405 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
CVS before 1.11 allows CVS clients to read arbitrary files via .. (dot dot) sequences in filenames via CVS client requests, a different vulnerability than CVE-2004-0180.
Bugzilla
CVE-2004-0180 security flaw
bugzilla·2018-08-16·CVSS 2.6
CVE-2004-0180 [LOW] CVE-2004-0180 security flaw
CVE-2004-0180 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405.
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:07.cvs.ascftp://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/002_cvs.patchftp://patches.sgi.com/support/free/security/advisories/20040404-01-U.aschttp://marc.info/?l=bugtraq&m=108636445031613&w=2http://secunia.com/advisories/11368http://secunia.com/advisories/11371http://secunia.com/advisories/11374http://secunia.com/advisories/11375http://secunia.com/advisories/11377http://secunia.com/advisories/11380http://secunia.com/advisories/11391http://secunia.com/advisories/11400http://secunia.com/advisories/11405http://secunia.com/advisories/11548http://security.gentoo.org/glsa/glsa-200404-13.xmlhttp://www.debian.org/security/2004/dsa-486http://www.mandriva.com/security/advisories?name=MDKSA-2004:028http://www.redhat.com/support/errata/RHSA-2004-153.htmlhttp://www.redhat.com/support/errata/RHSA-2004-154.htmlhttp://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.400181https://exchange.xforce.ibmcloud.com/vulnerabilities/15864https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1042https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9462ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:07.cvs.ascftp://ftp.openbsd.org/pub/OpenBSD/patches/3.5/common/002_cvs.patchftp://patches.sgi.com/support/free/security/advisories/20040404-01-U.aschttp://marc.info/?l=bugtraq&m=108636445031613&w=2http://secunia.com/advisories/11368http://secunia.com/advisories/11371http://secunia.com/advisories/11374http://secunia.com/advisories/11375http://secunia.com/advisories/11377http://secunia.com/advisories/11380http://secunia.com/advisories/11391http://secunia.com/advisories/11400http://secunia.com/advisories/11405http://secunia.com/advisories/11548http://security.gentoo.org/glsa/glsa-200404-13.xmlhttp://www.debian.org/security/2004/dsa-486http://www.mandriva.com/security/advisories?name=MDKSA-2004:028http://www.redhat.com/support/errata/RHSA-2004-153.htmlhttp://www.redhat.com/support/errata/RHSA-2004-154.htmlhttp://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.400181https://exchange.xforce.ibmcloud.com/vulnerabilities/15864https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1042https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9462
2004-06-01
Published