CVE-2000-0680

The CVS 1.10.8 server does not properly restrict users from creating arbitrary Checkin.prog or Update.prog programs, which allows remote CVS committers to modify or create Trojan horse programs with the Checkin.prog or Update.prog names, then performing a CVS commit action.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:cvs:cvs:1.10.8:*:*:*:*:*:*:*

Information

Published : 2000-10-19 21:00

Updated : 2008-09-05 13:21


NVD link : CVE-2000-0680

Mitre link : CVE-2000-0680


JSON object : View

Advertisement

dedicated server usa

Products Affected

cvs

  • cvs