Check Point Advisories

CVS Annotate Command Revision String Buffer Overflow (CVE-2005-0753)

Vulnerability
Protection

Check Point Reference:	CPAI-2005-234
Date Published:	15 Nov 2009
Severity:	Medium
Last Updated:	Sunday 15 November, 2009
Source:
Industry Reference:	CVE-2005-0753
Protection Provided by:	Security Gateway R81, R80, R77, R75
Who is Vulnerable?
Vulnerability Description	Concurrent Versions System (CVS) is an open-source version control system. CVS allows access to source repository from local clients or from the remote clients over a network. There exists a buffer overflow vulnerability in the Concurrent Versions System (CVS). This issue is caused by improper bounds checking of user-supplied input. The vulnerable section of code is only exposed after user authentication. An attacker exploiting the vulnerability can cause a denial-of-service of the affected product. Since the attacker has essentially no control over the data that overruns the buffer, a code injection and execution attack is not feasible. However, this vulnerability can be used to perform a denial of service attack, a successful DoS attack may prevent any user from working on a specific file.

Protection Overview

This protection will detect and block attempts to exploit this vulnerability

In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.

Security Gateway R80 / R77 / R75

In the IPS tab, click Protections and find the CVS Annotate Command Revision String Buffer Overflow protection using the Search tool and Edit the protection's settings.
Install policy on all Security Gateways.

This protection's log will contain the following information:

Attack Name: Application Servers Protection Violation.
Attack Information: CVS Annotate command revision string buffer overflow