[FD] CollabNet Subversion Edge Hook Script Privilege Escalation

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge Management Frontend SVN hook scripts # privilege escalation # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: Privilege escalation desi

[FD] CollabNet Subversion Edge Password Hash Leak

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge Management frontend user credential # (hash) leak # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: Credential leak # # Risk: Medium #

[FD] CollabNet Subversion Edge downloadHook local file inclusion

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: Local file inclusion in CollabNet Subversion Edge Management # Frontend via logfile "filename" parameter of the "downloadHook" action # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fe

[FD] CollabNet Subversion Edge show local file inclusion

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: Local file inclusion in CollabNet Subversion Edge Management # Frontend via "fileName" parameter of the show action # # Date: 10.10.2014 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type:

[FD] CollabNet Subversion Edge tail local file inclusion

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: Local file inclusion in CollabNet Subversion Edge Management # Frontend via logfile "fileName" parameter of the "tail" action # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Lin

[FD] CollabNet Subversion Edge insecure password change

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge management frontend does not require # current password upon password change # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: Insecure

[FD] CollabNet Subversion Edge missing brute force protection

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge does not protect against brute # forcing accounts # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: Lack of defensive measures # # Risk

[FD] CollabNet Subversion Edge autocomplete on

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge management frontend login page # password field has autocomplete enabled # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: Lack of defe

[FD] CollabNet Subversion Edge missing clickjacking protection

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge Management Frontend does not # implement clickjacking protection # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: Clickjacking # # Ris

[FD] CollabNet Subversion Edge weak password policy

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge Management Frontend does not # implement a strong password policy # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: Lack of defensive m

[FD] CollabNet Subversion Edge missing XSRF protection

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge Management Frontend does not implement XSRF protection tokens # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: XSRF # # Risk: Low # S

[FD] CollabNet Subversion Edge weak password storage mechanism

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge stores passwords as unsalted MD5 hashes # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: Insecure password storage # Risk: Medium # St

[FD] CollabNet Subversion Edge missing single login restriction

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: The CollabNet Subversion Edge management missing single login # restriction # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedora Linux # Type: No single login restriction # # Risk: L

[FD] CollabNet Subversion Edge index local file inclusion

2015-06-29 Thread Oliver-Tobias Ripka
# Vuln Title: Local file inclusion in CollabNet Subversion Edge Management # Frontend via logfile "listViewItem" parameter of the "index" action # # Date: 28.06.2015 # Author: otr # Software Link: https://www.open.collab.net/downloads/svnedge # Vendor: CollabNet # Version: 4.0.11 # Tested on: Fedor