CVE-2004-0778
published 2004-10-20CVE-2004-0778: CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command…
PriorityP424medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
2.40%
81.9th percentile
CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cvs | cvs | >= 0 < 1:1.12.9 | 1:1.12.9 |
| cvs | cvs | >= 0 < 1:1.12.9 | 1:1.12.9 |
| cvs | cvs | >= 0 < 1:1.12.9 | 1:1.12.9 |
| cvs | cvs | >= 0 < 1:1.12.9 | 1:1.12.9 |
| debian | cvs | < cvs 1:1.12.9 (bookworm) | cvs 1:1.12.9 (bookworm) |
| gnu | cvs | >= 1.11.0 < 1.11.17 | 1.11.17 |
| gnu | cvs | >= 1.12.0 < 1.12.9 | 1.12.9 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vq86-43rv-wrv5: CVS 1
ghsa_unreviewed·2022-04-29
CVE-2004-0778 [MEDIUM] CWE-203 GHSA-vq86-43rv-wrv5: CVS 1
CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.
OSV
CVE-2004-0778: CVS 1
osv·2004-10-20·CVSS 5.0
CVE-2004-0778 [MEDIUM] CVE-2004-0778: CVS 1
CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.
Red Hat
security flaw
vendor_redhat·2004-06-09·CVSS 5.0
CVE-2004-0778 [MEDIUM] security flaw
security flaw
CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.
Debian
CVE-2004-0778: cvs - CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to ...
vendor_debian·2004·CVSS 5.0
CVE-2004-0778 [MEDIUM] CVE-2004-0778: cvs - CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to ...
CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.
Scope: local
bookworm: resolved (fixed in 1:1.12.9)
bullseye: resolved (fixed in 1:1.12.9)
forky: resolved (fixed in 1:1.12.9)
sid: resolved (fixed in 1:1.12.9)
trixie: resolved (fixed in 1:1.12.9)
No detection rules found.
No public exploits indexed.
CWE
Exposure of Sensitive Information to an Unauthorized Actor
mitre_cwe
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
There are many different kinds of mistakes that introduce information exposures. The severity of the error can range widely, depending on the context in which the product operates, the type of sensitive information that is revealed, and the benefits it may provide to an attacker. Some kinds of sensitive information include: private, personal information, such as personal messages, financial data, health records, geographic location, or contact details system status and environment, such as the operating system and installed packages business secrets and intellectual property network status and confi
CWE
Observable Discrepancy
mitre_cwe
CWE-203 Observable Discrepancy
CWE-203: Observable Discrepancy
The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor, which exposes security-relevant information about the state of the product, such as whether a particular operation was successful or not.
Discrepancies can take many forms, and variations may be detectable in timing, control flow, communications such as replies or requests, or general behavior. These discrepancies can reveal information about the product's operation or internal state to an unauthorized actor. In some cases, discrepancies can be used by attackers to form a side channel.
Modes of Introduction:
Phase: Architecture and Design
Phase: Implementation
Common Consequences:
Scope: Confidentiality, Access
CWE
Observable Response Discrepancy
mitre_cwe
CWE-204 Observable Response Discrepancy
CWE-204: Observable Response Discrepancy
The product provides different responses to incoming requests in a way that reveals internal state information to an unauthorized actor outside of the intended control sphere.
Modes of Introduction:
Phase: Architecture and Design
Note: An observable response discrepancy frequently occurs during authentication, where a difference in failed-login messages could allow an attacker to determine if the username is valid or not. The discrepancy could be inadvertent (bug) or intentional (design).
Phase: Implementation
Note: An observable response discrepancy frequently occurs during authentication, where a difference in failed-login messages could allow an attacker to determine if the username is valid or not. The discrepancy could be inadvertent (bug) or
CWE
Path Equivalence: 'filename ' (Trailing Space)
mitre_cwe·CVSS 5.0
[MEDIUM] CWE-46 Path Equivalence: 'filename ' (Trailing Space)
CWE-46: Path Equivalence: 'filename ' (Trailing Space)
The product accepts path input in the form of trailing space ('filedir ') without appropriate validation, which can lead to ambiguous path resolution and allow an attacker to traverse the file system to unintended locations or access arbitrary files.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Confidentiality, Integrity. Impact: Read Files or Directories, Modify Files or Directories.
Observed Examples:
CVE-2001-0693: Source disclosure via trailing encoded space "%20"
CVE-2001-0778: Source disclosure via trailing encoded space "%20"
CVE-2001-1248: Source disclosure via trailing encoded space "%20"
CVE-2004-0280: Source disclosure via trailing encoded space "%20"
CVE-2004-2213: Source disclosure via trail
http://www.idefense.com/application/poi/display?id=130&type=vulnerabilitieshttp://www.kb.cert.org/vuls/id/579225http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:108http://www.securityfocus.com/bid/10955https://exchange.xforce.ibmcloud.com/vulnerabilities/17001https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10688http://www.idefense.com/application/poi/display?id=130&type=vulnerabilitieshttp://www.kb.cert.org/vuls/id/579225http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:108http://www.securityfocus.com/bid/10955https://exchange.xforce.ibmcloud.com/vulnerabilities/17001https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10688
2004-10-20
Published