Unrated severityNVD Advisory· Published Sep 15, 2010· Updated Jun 16, 2026
CVE-2010-1326
CVE-2010-1326
Description
perms.cpp in March Hare Software CVSNT 2.0.58, 2.5.01, 2.5.02, 2.5.03 before build 3736, 2.5.04 before build 2862; CVS Suite 2.5.03, 2008 before build 3736, and 2009 before 3729 allows remote attackers to bypass the permissions check, modify arbitrary modules and directories within CVSROOT, and execute arbitrary code via a crafted branch name ACL, possibly related to incorrect inheritance.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:march-hare:cvsnt:2.0.58:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:march-hare:cvsnt:2.0.58:*:*:*:*:*:*:*
- cpe:2.3:a:march-hare:cvsnt:2.5.01:*:*:*:*:*:*:*
- cpe:2.3:a:march-hare:cvsnt:2.5.02:*:*:*:*:*:*:*
- cpe:2.3:a:march-hare:cvsnt:2.5.03:*:*:*:*:*:*:*
- cpe:2.3:a:march-hare:cvsnt:2.5.04:*:*:*:*:*:*:*
- (no CPE)range: 2.0.58, 2.5.01, 2.5.02, 2.5.03 before build 3736, 2.5.04 before build 2862
cpe:2.3:a:march-hare:cvs_suite:2008:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:march-hare:cvs_suite:2008:*:*:*:*:*:*:*
- cpe:2.3:a:march-hare:cvs_suite:2009:pre-release:*:*:*:*:*:*
- cpe:2.3:a:march-hare:cvs_suite:2.5.03:*:*:*:*:*:*:*
- (no CPE)range: 2.5.03, 2008 before build 3736, 2009 before 2862
Patches
Vulnerability mechanics
References
7- march-hare.com/cvspro/vuln.htmnvdVendor Advisory
- secunia.com/advisories/41345nvdVendor Advisory
- secunia.com/advisories/41358nvdVendor Advisory
- www.vupen.com/english/advisories/2010/2350nvdVendor Advisory
- bugs.debian.org/cgi-bin/bugreport.cginvd
- customer.march-hare.com/webtools/bugzilla/attachment.cginvd
- www.debian.org/security/2010/dsa-2108nvd
News mentions
0No linked articles in our index yet.