[Secure-testing-commits] r804 - sarge-checks/CAN
Joey Hess
joeyh@costa.debian.org
Wed, 13 Apr 2005 21:56:01 +0000
Author: joeyh
Date: 2005-04-13 21:55:58 +0000 (Wed, 13 Apr 2005)
New Revision: 804
Modified:
sarge-checks/CAN/list
Log:
claim some of this mass of new CANs
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-04-13 21:49:11 UTC (rev 803)
+++ sarge-checks/CAN/list 2005-04-13 21:55:58 UTC (rev 804)
@@ -1,7 +1,8 @@
+begin claimed by joeyh
CAN-2005-1098 (GetDataBack for NTFS 2.31 stores the username and license key in ...)
- TODO: check
+ NOTE: not-for-us (GetDataBack for NTFS (Windows))
CAN-2005-1097 (Rebrand P2P Share Spy 2.2 stores the user password in plaintext in the ...)
- TODO: check
+
CAN-2005-1096 (SQL injection vulnerability in main.asp for Ocean12 Membership Manager ...)
TODO: check
CAN-2005-1095 (Cross-site scripting (XSS) vulnerability in main.asp for Ocean12 ...)
@@ -86,6 +87,7 @@
TODO: check
CAN-2005-1055 (TowerBlog 0.6 and earlier stores the login data file under the web ...)
TODO: check
+end claimed by joeyh
CAN-2005-1054 (PHP remote code injection vulnerability in news.php in ModernBill ...)
TODO: check
CAN-2005-1053 (Multiple cross-site scripting (XSS) vulnerabilities in orderwiz.php in ...)