[Secure-testing-commits] r746 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Mon, 04 Apr 2005 21:32:40 +0000
Author: jmm-guest
Date: 2005-04-04 21:32:37 +0000 (Mon, 04 Apr 2005)
New Revision: 746
Modified:
sarge-checks/CAN/list
Log:
not-for-us.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-04-04 21:24:43 UTC (rev 745)
+++ sarge-checks/CAN/list 2005-04-04 21:32:37 UTC (rev 746)
@@ -1,57 +1,57 @@
CAN-2005-XXXX [Cross Site Scripting in phpmyadmin's handling of the convcharsetparameter]
- phpmyadmin (unfixed; pending)
CAN-2005-0964 (Unknown vulnerability in Kerio Personal Firewall 4.1.2 and earlier ...)
- TODO: check
+ NOTE: not-for-us (Kerio firewall)
CAN-2005-0963 (An error in the Toshiba ACPI BIOS 1.6 causes the BIOS to only examine ...)
- TODO: check
+ NOTE: not-for-us (ACPI BIOS hardware issue)
CAN-2005-0962 (SQL injection vulnerability in index.php for Lighthouse Squirrelcart ...)
- TODO: check
+ NOTE: not-for-us (SquirrelCart)
CAN-2005-0961 (Cross-site scripting (XSS) vulnerability in Horde 3.0.4 before ...)
TODO: check
CAN-2005-0960 (Multiple vulnerabilities in the SACK functionality in (1) tcp_input.c ...)
- TODO: check
+ NOTE: not-for-us (OpenBSD)
CAN-2005-0959 (Buffer overflow in the mt_do_dir function in YepYep mtftpd 0.0.3 may ...)
- TODO: check
+ NOTE: not-for-us (YepYep mtftpd)
CAN-2005-0958 (Format string vulnerability in the log_do function in log.c for YepYep ...)
- TODO: check
+ NOTE: not-for-us (YepYep mtftpd)
CAN-2005-0957 (Bay Technical Associates RPC-3 Telnet Host 3.05 allows remote ...)
- TODO: check
+ NOTE: not-for-us (BayTech RPC)
CAN-2005-0956 (Multiple SQL injection vulnerabilities in index.php in InterAKT MX ...)
- TODO: check
+ NOTE: not-for-us (InterAKT MX Kart)
CAN-2005-0955 (SQL injection vulnerability in InterAKT MX Shop 1.1.1 allows remote ...)
- TODO: check
+ NOTE: not-for-us (InterAKT MX Shop)
CAN-2005-0954 (Windows Explorer and Internet Explorer in Windows 2000 SP1 allows ...)
- TODO: check
+ NOTE: not-for-us (Windows)
CAN-2005-0953 (Race condition in bzip2 1.0.2 and earlier allows local users to modify ...)
TODO: check
CAN-2005-0952 (Cross-site scripting vulnerability in pafiledb.php in PaFileDB 3.1 ...)
- TODO: check
+ NOTE: not-for-us (PafileDB)
CAN-2005-0951 (SQL injection vulnerability in pafiledb.php in PaFileDB 3.1 allow ...)
- TODO: check
+ NOTE: not-for-us (PafileDB)
CAN-2005-0950 (Directory traversal vulnerability in FastStone 4in1 Browser 1.2 allows ...)
- TODO: check
+ NOTE: not-for-us (FastStone 4in1 Browser)
CAN-2005-0949 (Multiple cross-site scripting (XSS) vulnerabilities in content.asp in ...)
- TODO: check
+ NOTE: not-for-us (PortalApp)
CAN-2005-0948 (SQL injection vulnerability in ad_click.asp for PortalApp allows ...)
- TODO: check
+ NOTE: not-for-us (PortalApp)
CAN-2005-0947 (Directory traversal vulnerability in auxpage.php in phpCoin 1.2.1b and ...)
- TODO: check
+ NOTE: not-for-us (phpCoin)
CAN-2005-0946 (SQL injection vulnerability in phpCoin 1.2.1b and earlier allows ...)
- TODO: check
+ NOTE: not-for-us (phpCoin)
CAN-2005-0945 (Cross-site scripting (XSS) vulnerability in ACS Blog 1.1.1 allows ...)
- TODO: check
+ NOTE: not-for-us (ACS Blog)
CAN-2005-0944 (Unknown vulnerability in Microsoft Jet DB engine (msjet40.dll), ...)
- TODO: check
+ NOTE: not-for-us (Microsoft)
CAN-2005-0943 (Cisco VPN 3000 series Concentrator running firmware 4.1.7.A and ...)
- TODO: check
+ NOTE: not-for-us (Cisco Hardware issue)
CAN-2005-0942 (Unknown vulnerability in Sybase Adaptive Server Enterprise (ASE) XP ...)
- TODO: check
+ NOTE: not-for-us (Sybase ASE)
CAN-2005-0941
NOTE: reserved
CAN-2005-0939
NOTE: reserved
CAN-2005-0938 (Ublog Reload 1.0 through 1.0.4 stores ublogreload.mdb under the web ...)
- TODO: check
+ NOTE: not-for-us (UBlog)
CAN-2005-0937 (Some futex functions in futex.c for Linux kernel 2.6.x perform ...)
TODO: check
CAN-2005-XXXX [Insecure tempfile usage in sharutils]