Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Subversion (SVN) < 1.0.6 Module File Restriction Bypass (deprecated)

Medium

Synopsis

The remote host is vulnerable to a flaw that allows attackers to retrieve and modify sensitive files or data.

Description

The remote host is running a version of Subversion which is older than 1.0.6. A flaw exists in the apache module mod_authz_svn in older versions. An attacker can access to any file in a given Subversion repository despite restrictions set by the administrator.

Solution

Upgrade to Subversion 1.0.6 or higher.