CVE-2000-0680

CVS 1.10.8 - Authenticated Arbitrary Program Creation via Checkin.prog or Update.prog

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0680. PoCs published by Tanaka Akira.

AI-analyzed exploit summary This exploit demonstrates how a malicious CVS committer can execute arbitrary binaries by modifying or creating a Checkin.prog file in the working directory. The attacker can add a binary file using 'cvs add -kb' and commit it, then trigger its execution via Checkin.prog during the commit process.

Description

The CVS 1.10.8 server does not properly restrict users from creating arbitrary Checkin.prog or Update.prog programs, which allows remote CVS committers to modify or create Trojan horse programs with the Checkin.prog or Update.prog names, then performing a CVS commit action.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Tanaka Akira · textlocalunix
https://www.exploit-db.com/exploits/20108

This exploit demonstrates how a malicious CVS committer can execute arbitrary binaries by modifying or creating a Checkin.prog file in the working directory. The attacker can add a binary file using 'cvs add -kb' and commit it, then trigger its execution via Checkin.prog during the commit process.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: CVS (Concurrent Versions System)
Auth required
Prerequisites: Access to a CVS repository with commit privileges
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1524

Scores

EPSS 0.0134
EPSS Percentile 67.7%

Details

Status published
Products (1)
cvs/cvs 1.10.8
Published Oct 20, 2000
Tracked Since Feb 18, 2026