{"id":"CVE-2013-4277","details":"Svnserve in Apache Subversion 1.4.0 through 1.7.12 and 1.8.0 through 1.8.1 allows local users to overwrite arbitrary files or kill arbitrary processes via a symlink attack on the file specified by the --pid-file option.","modified":"2026-04-16T01:38:41.654316316Z","published":"2013-09-16T19:14:39Z","withdrawn":"2026-01-27T04:11:43.913047Z","related":["SUSE-SU-2015:0709-1","openSUSE-SU-2024:10538-1"],"references":[{"type":"ADVISORY","url":"http://subversion.apache.org/security/CVE-2013-4277-advisory.txt"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2013-09/msg00031.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2013-09/msg00054.html"},{"type":"WEB","url":"http://www.securityfocus.com/bid/62266"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/86972"},{"type":"WEB","url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18554"}],"schema_version":"1.7.3"}