Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

CVS < 1.11.16 / 1.12.8 pserver Line Entry Handling Remote Overflow

Critical

Synopsis

The remote host is vulnerable to a heap overflow

Description

The remote CVS server, according to its version number, might allow an attacker to execute arbitrary commands on the remote system because of a heap overflow in the cvs pserver code.

Solution

Upgrade to CVS 1.11.16, 1.12.8, or later.