CVS pserver CVSROOT Passwd File Arbitrary Code Execution

High Nessus Network Monitor Plugin ID 1181

Synopsis

An attacker may execute arbitrary commands on the remote system.

Description

The remote CVS server, according to its version number, might allow an attacker to execute arbitrary commands on the remote system as cvs does not drop root privileges properly.

Solution

Upgrade to most recent version of CVS.

See Also

http://www.nessus.org/u?b3bb9c46

Plugin Details

Severity: High

ID: 1181

File Name: 1181.prm

Family: Generic

Published: 2004/08/20

Modified: 2016/02/05

Nessus ID: 11970

Risk Information

Risk Factor: High

CVSSv2

Base Score: 9

Temporal Score: 6.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSSv3

Base Score: 8.7

Temporal Score: 7.5

Vector: CVSS3#AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS3#E:U/RL:O/RC:C

Reference Information

BID: 9306