CVS < 1.11.15 / 1.12.7 Client Traversal Arbitrary File Retrieval
Medium Nessus Network Monitor Plugin ID 1219
SynopsisThe remote host is vulnerable to a directory traversal flaw
DescriptionThe remote CVS server, according to its version number, might allow an attacker to checkout RCS archive files that are outside of the cvs root.
SolutionUpgrade to CVS 1.11.15, 1.12.7 or later.