module
Subversion Date Svnserve
| Disclosed | Created |
|---|---|
| May 19, 2004 | May 30, 2018 |
Disclosed
May 19, 2004
Created
May 30, 2018
Description
This is an exploit for the Subversion date parsing overflow. This
exploit is for the svnserve daemon (svn:// protocol) and will not work
for Subversion over webdav (http[s]://). This exploit should never
crash the daemon, and should be safe to do multi-hits.
**WARNING** This exploit seems to (not very often, I've only seen
it during testing) corrupt the subversion database, so be careful!
exploit is for the svnserve daemon (svn:// protocol) and will not work
for Subversion over webdav (http[s]://). This exploit should never
crash the daemon, and should be safe to do multi-hits.
**WARNING** This exploit seems to (not very often, I've only seen
it during testing) corrupt the subversion database, so be careful!
Author
spoonm spoonm@no$email.com
Platform
BSD,Linux
Architectures
x86
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.