#VU43807 Information disclosure in ViewVC - CVE-2012-3357

Cybersecurity Help s.r.o.

Published: 2012-07-22 | Updated: 2020-08-11

Vulnerability identifier: #VU43807

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2012-3357

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
ViewVC
Web applications / Modules and components for CMS

Vendor: ViewVC

Description

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

The SVN revision view (lib/vclib/svn/svn_repos.py) in ViewVC before 1.1.15 does not properly handle log messages when a readable path is copied from an unreadable path, which allows remote attackers to obtain sensitive information, related to a "log msg leak."

Mitigation
Install update from vendor's website.

Vulnerable software versions

ViewVC: 0.8, 0.9 - 0.9.4, 1.0.0 - 1.0.11, 1.1.0 - 1.1.13

External links
https://osvdb.org/83227
https://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2758
https://www.debian.org/security/2012/dsa-2563
https://www.mandriva.com/security/advisories?name=MDVSA-2013:134
https://www.openwall.com/lists/oss-security/2012/06/25/8
https://www.securityfocus.com/bid/54199
https://exchange.xforce.ibmcloud.com/vulnerabilities/76615
https://lwn.net/Articles/505096/
https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0175

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in ViewVC

Fedora EPEL 5 update for viewvc

Fedora EPEL 6 update for viewvc