PT-2006-2563 · Apache+1 · Subversion+4

Bill Allombert

Published

2006-03-31

Updated

2017-07-20

CVE-2006-1564

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: libapache2-svn version 1.3.0-4

Description: The issue is related to an untrusted search path vulnerability in libapache2-svn for Subversion in Debian GNU/Linux. This vulnerability involves RPATH values under the /tmp/svn directory for the (1) mod authz svn.so and (2) mod dav svn.so modules. It might allow local users to gain privileges by installing malicious libraries in that directory.

Recommendations: For libapache2-svn version 1.3.0-4, consider restricting access to the /tmp/svn directory to prevent local users from installing malicious libraries. As a temporary workaround, restrict the use of the mod authz svn.so and mod dav svn.so modules until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-1564

Affected Products

Debian

Subversion

Libapache2-Svn

Mod Authz Svn.So

Mod Dav Svn.So

PT-2006-2563 · Apache+1 · Subversion+4

CVE-2006-1564

Related Identifiers

Affected Products

References · 7