Loading
Generated remediation guidance and an executive summary. No account required.
Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.
Use Subversion vendor hub and Subversion product page to widen CVE-2004-0397 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2004-0413, CVE-2009-2411 and CVE-2007-3846 for nearby disclosures in the same product family.