CVE: CVE-2004-0778

Export to Word

CVS 1.11.x before 1.11.17, and 1.12.x before 1.12.9, allows remote attackers to determine the existence of arbitrary files and directories via the -X command for an alternate history file, which causes different error messages to be returned.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.04739
Percentile: 0.88958

CVSS Scoring

CVSS v2 Score: 5.0

Severity:

Mapped CWE(s)

CWE-203 : Observable Discrepancy

All CAPEC(s)

CAPEC-189: Black Box Reverse Engineering

CAPEC(s) with Mapped TTPs

Mapped ATT&CK TTPs

Affected Products

cpe:2.3:a:gnu:cvs:*:*:*:*:*:*:*:*
cpe:2.3:a:gnu:cvs:*:*:*:*:*:*:*:*

← Back to Home