CVS flag insertion heap exploit v1.25 Vulnerability exploited: CAN-2004-0396 - BID-10384 Category: Exploits/Remote Exploits a double free() vulnerability in CVS password authentication mode. CVS is prone to a remote heap overflow vulnerability during the handling of user-supplied input for entry lines with 'modified' and 'unchanged' flags. Supported Systems: RedHat Linux 6.2 (i386) RedHat Linux 7 (i386) RedHat Linux 7.2 (i386) RedHat Linux 7.3 (i386) RedHat Linux 8 (i386) Debian Linux 3 (i386) This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.