|
Family: Remote file access --> Category: infos
Subversion Module unreadeable path information disclosure Vulnerability Scan
Vulnerability Scan Summary Check for Subversion version
Detailed Explanation for this Vulnerability Test
You are running a version of Subversion which is older than 1.0.8 or
1.1.0-rc4.
A flaw exist in older version, in the apache module mod_authz_svn,
which fails to properly restrict access to metadata within unreadable
paths.
A possible hacker can read metadata in unreadable paths, which can contain
sensitive information such as logs and paths.
Solution : Upgrade to subversion 1.0.8, 1.1.0-rc4 or newer
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|