Unauthorized Repository Access via mod_authz_svn in Subversion 1.0.4-r1 and Earlier

Unauthorized Repository Access via mod_authz_svn in Subversion 1.0.4-r1 and Earlier

CVE-2004-1438 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The mod_authz_svn Apache module for Subversion 1.0.4-r1 and earlier allows remote authenticated users, with write access to the repository, to read unauthorized parts of the repository via the svn copy command.

Learn more about our Cis Benchmark Audit For Apache Http Server.