CVE-2004-0749 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2004-0749 Interim 1 3 2021-06-09T08:31:29Z current 2021-05-30T12:30:24Z 2021-06-09T08:31:29Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2004-0749 The mod_authz_svn module in Subversion 1.0.7 and earlier does not properly restrict access to all metadata on unreadable paths, which could allow remote attackers to gain sensitive information via (1) svn log -v, (2) svn propget, or (3) svn blame, and other commands that follow renames. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings The mod_authz_svn module in Subversion 1.0.7 and earlier does not properly restrict access to all metadata on unreadable paths, which could allow remote attackers to gain sensitive information via (1) svn log -v, (2) svn propget, or (3) svn blame, and other commands that follow renames. CVE-2004-0749 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N