CVE-2004-0915 - Undrunk Stories
Description
Multiple unknown vulnerabilities in viewcvs before 0.9.2 when exporting a repository as a tar archive does not properly implement the hide_cvsroot and forbidden settings which could allow remote attackers to gain sensitive information.
Reference
http://www.debian.org/security/2004/dsa-605 https://exchange.xforce.ibmcloud.com/vulnerabilities/18369