Loading
Generated remediation guidance and an executive summary. No account required.
Multiple integer overflows in the libsvn_delta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overflow, a related issue to CVE-2009-2412.
Use CWE-189, Subversion vendor hub and Subversion product page to widen CVE-2009-2411 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2004-0413, CVE-2004-0397 and CVE-2007-3846 for nearby disclosures in the same product family.