Subversion (SVN) < 1.0.6 Module File Restriction Bypass (deprecated)
Medium Nessus Network Monitor Plugin ID 1964
SynopsisThe remote host is vulnerable to a flaw that allows attackers to retrieve and modify sensitive files or data.
DescriptionThe remote host is running a version of Subversion which is older than 1.0.6. A flaw exists in the apache module mod_authz_svn in older versions. An attacker can access to any file in a given Subversion repository despite restrictions set by the administrator.
SolutionUpgrade to Subversion 1.0.6 or higher.