CVS Root Security Flaw

<< Search fresh added Google pages with FreshGoo | Opera 7.5 released >>

Mon, 05/24/2004 - 15:30 — Christoph C. Cemper

A wild CVS flaw has Linux vendors rushing out patches and allows unauthorized access to code.

"A successful exploit would give access to the system with the privileges of the user running CVS, who obviously has access to all the code," said Thomas Kristensen, CTO of security firm Secunia. "A developer would often connect to CVS before he starts working on a piece of code, and synchronize with what is held on the server. If that code has been (maliciously) modified he could end up working with modified code."

Average rating

(0 votes)

Similar entries

Critical 802.11 wireless flaw identified

Critical Wireless Security Flaw
User Authentication and Authorization - Java vs. .NET Security, Part 4

ONJava.com has the next part 4 of "Java vs. .NET Security" for User Authentication and Authorization up. The article compares the issues and techniques you can utilize in the respective technology. I like this article series….
Oracle warns of security flaw in 9i database R2

Oracle warns of security flaw in 9i database related to "a set" of buffer overflows in the XML Database (XDB) component of Oracle9i….
Java vs. .NET Security

Denis Piliptchouk provides a side-by-side technical comparison of security features of Java v1.4.2/J2EE v1.4 (beta2) and .NET v1.1 platforms in ONJava.com: Java vs. .NET Security, Part 1 – the first part considers Security Configuration and Code Containment – Cryptography and…
WMF Flaw - a new threat in town

WMF Flaw protection step-by-step – with a working download link

Search

Recent comments

Recent posts

Categories

Navigation

Backlinks

User login

CVS Root Security Flaw

Similar entries

Blog tags

Favorites

Blog entry

Page