- Home
- CVEs with nessus.description==The remote host is affected by the vulnerability described in GLSA-200406-06 (CVS: additional DoS and arbitrary code execution vulnerabilities)
A team audit of the CVS source code performed by Stefan Esser and Sebastian Krahmer resulted in the discovery of several remotely exploitable vulnerabilities including:
no-null-termination of 'Entry' lines error_prog_name 'double-free()' Argument integer overflow serve_notify() out of bounds writes Impact :
An attacker could use these vulnerabilities to cause a Denial of Service or execute arbitrary code with the permissions of the user running cvs.
Workaround :
There is no known workaround at this time. All users are advised to upgrade to the latest available version of CVS.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top