CVE-2004-0413

Loading...

General

Score:10.0/10.0
Severity:High
Category:N/A

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 06/08/04 - Updated on 11/07/17

Description

libsvn_ra_svn in Subversion 1.0.4 trusts the length field of (1) svn://, (2) svn+ssh://, and (3) other svn protocol URL strings, which allows remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via an integer overflow that leads to a heap-based buffer overflow.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2004-0413

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
openpkgopenpkg
subversionsubversion

Share this vulnerability with:

Twitter Facebook LinkedIn Mail