Subversion Remote Revision Property Information Disclosure Vulnerability

TITLE: Subversion Remote Revision Property Information Disclosure Vulnerability
CLASS: Access Validation Error
CVE: CVE-2007-2448

REMOTE: Yes
LOCAL: No
PUBLISHED: Jun 13 2007 12:00AM
UPDATE: Jun 14 2007 12:09AM
CREDIT: The vendor disclosed this issue.
VULNERABLE:

Subversion Subversion 1.4.3
Subversion Subversion 1.4.2
Subversion Subversion 1.4.1
Subversion Subversion 1.4
Subversion Subversion 1.3.2
Subversion Subversion 1.3.1
Subversion Subversion 1.3
Subversion Subversion 1.2.3
Subversion Subversion 1.2.1
Subversion Subversion 1.2
Subversion Subversion 1.1.4
Subversion Subversion 1.1.3
Subversion Subversion 1.1.2
Subversion Subversion 1.1.1
Subversion Subversion 1.1 .0-rc4
Subversion Subversion 1.1 .0-rc3
Subversion Subversion 1.1 .0-rc2
Subversion Subversion 1.1 .0-rc1
Subversion Subversion 1.1
Subversion Subversion 1.0.8
Subversion Subversion 1.0.7
Subversion Subversion 1.0.6
Subversion Subversion 1.0.5
Subversion Subversion 1.0.4
Subversion Subversion 1.0.3
Subversion Subversion 1.0.2
Subversion Subversion 1.0.1
+ Conectiva Linux 10.0
Subversion Subversion 1.0
Subversion Subversion 0.27
+ RedHat Linux 9.0 i386
+ RedHat Linux 9.0 i386
NOT VULNERABLE:
Subversion Subversion 1.4.4

Vai alla pagina originale su Security Focus

Discussion

Subversion is prone to a remote information-disclosure vulnerability because the application fails to properly enforce security restrictions during certain remote SVN operations.

Successfully exploiting this issue potentially allows remote attackers to access sensitive information contained in revision properties, such as log messages. This may aid in further attacks.

Versions prior to Subversion 1.4.4 are vulnerable to this issue.

Exploit

Attackers use the Subversion client binary itself to exploit this issue.

Solution

Solution:
The vendor has released an advisory along with version 1.4.4 to address this issue. Please see the references for more information.


Subversion Subversion 0.27


Subversion Subversion 1.0

Subversion Subversion 1.0.1

Subversion Subversion 1.0.2

Subversion Subversion 1.0.3

Subversion Subversion 1.0.4

Subversion Subversion 1.0.5

Subversion Subversion 1.0.6

Subversion Subversion 1.0.7

Subversion Subversion 1.0.8

Subversion Subversion 1.1

Subversion Subversion 1.1 .0-rc2

Subversion Subversion 1.1 .0-rc3

Subversion Subversion 1.1 .0-rc4

Subversion Subversion 1.1 .0-rc1

Subversion Subversion 1.1.1

Subversion Subversion 1.1.2

Subversion Subversion 1.1.3

Subversion Subversion 1.1.4

Subversion Subversion 1.2

Subversion Subversion 1.2.1

Subversion Subversion 1.2.3

Subversion Subversion 1.3

Subversion Subversion 1.3.1

Subversion Subversion 1.3.2

Subversion Subversion 1.4

Subversion Subversion 1.4.1

Subversion Subversion 1.4.2

Subversion Subversion 1.4.3

References

References:

PhpLog

BNLug Benevento Linux Users Group