[Secure-testing-commits] r498 - sarge-checks/CAN

Joey Hess joeyh@costa.debian.org
Sun, 27 Feb 2005 09:14:37 +0100


Author: joeyh
Date: 2005-02-27 09:14:31 +0100 (Sun, 27 Feb 2005)
New Revision: 498

Modified:
   sarge-checks/CAN/list
Log:
automatic CAN database update

Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-02-26 17:20:23 UTC (rev 497)
+++ sarge-checks/CAN/list	2005-02-27 08:14:31 UTC (rev 498)
@@ -1,3 +1,143 @@
+CAN-2005-0564
+	NOTE: reserved
+CAN-2005-0563
+	NOTE: reserved
+CAN-2005-0562
+	NOTE: reserved
+CAN-2005-0561
+	NOTE: reserved
+CAN-2005-0560
+	NOTE: reserved
+CAN-2005-0559
+	NOTE: reserved
+CAN-2005-0558
+	NOTE: reserved
+CAN-2005-0557
+	NOTE: reserved
+CAN-2005-0556
+	NOTE: reserved
+CAN-2005-0555
+	NOTE: reserved
+CAN-2005-0554
+	NOTE: reserved
+CAN-2005-0553
+	NOTE: reserved
+CAN-2005-0552
+	NOTE: reserved
+CAN-2005-0551
+	NOTE: reserved
+CAN-2005-0550
+	NOTE: reserved
+CAN-2005-0549
+	NOTE: reserved
+CAN-2005-0548
+	NOTE: reserved
+CAN-2004-1753 (The Apple Java plugin, as used in Netscape 7.1 and 7.2, Mozilla 1.7.2, ...)
+	TODO: check
+CAN-2004-1752 (Stack-based buffer overflow in Gaucho 1.4 Build 145 allows remote ...)
+	TODO: check
+CAN-2004-1751 (Ground Control II: Operation Exodus 1.0.0.7 and earlier allows remote ...)
+	TODO: check
+CAN-2004-1750 (RealVNC 4.0 and earlier allows remote attackers to cause a denial of ...)
+	TODO: check
+CAN-2004-1749 (Attack Mitigator IPS 5500 3.11.008, and possibly other versions, when ...)
+	TODO: check
+CAN-2004-1748 (NtRegmon before 6.12 allows local users to cause a denial of service ...)
+	TODO: check
+CAN-2004-1747 (Cross-site scripting (XSS) vulnerability in NetworkEverywhere NR041 ...)
+	TODO: check
+CAN-2004-1746 (Cross-site scripting (XSS) vulnerability in index.php in PHP Code ...)
+	TODO: check
+CAN-2004-1745 (Buffer overflow in Painkiller 1.3.1 and earlier allows remote ...)
+	TODO: check
+CAN-2004-1744 (Easy File Sharing (EFS) Webserver 1.25 allows remote attackers to ...)
+	TODO: check
+CAN-2004-1743 (Easy File Sharing (ESF) Webserver 1.25 allows remote attackers to view ...)
+	TODO: check
+CAN-2004-1742 (Directory traversal vulnerability in WebAPP 0.9.9 allows remote ...)
+	TODO: check
+CAN-2004-1741 (Music daemon (musicd) 0.0.3 and earlier allows remote attackers to ...)
+	TODO: check
+CAN-2004-1740 (Music daemon (musicd) 0.0.3 and earlier allows remote attackers to ...)
+	TODO: check
+CAN-2004-1739 (Bird Chat 1.61 allows remote attackers to cause a denial of service ...)
+	TODO: check
+CAN-2004-1738 (Cross-site scripting (XSS) vulnerability in page.php in JShop allows ...)
+	TODO: check
+CAN-2004-1737 (SQL injection vulnerability in auth_login.php in Cacti 0.8.5a allows ...)
+	TODO: check
+CAN-2004-1736 (Cacti 0.8.5a allows remote attackers to gain sensitive information via ...)
+	TODO: check
+CAN-2004-1735 (Cross-site scripting (XSS) vulnerability in the create list option in ...)
+	TODO: check
+CAN-2004-1734 (PHP remote code injection vulnerability in Mantis 0.19.0a allows ...)
+	TODO: check
+CAN-2004-1733 (Directory traversal vulnerability in MyDMS 1.4.2 and other versions ...)
+	TODO: check
+CAN-2004-1732 (SQL injection vulnerability in out.ViewFolder.php in MyDMS before ...)
+	TODO: check
+CAN-2004-1731 (signup_page.php in Mantis bugtracker allows remote attackers to send ...)
+	TODO: check
+CAN-2004-1730 (Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows ...)
+	TODO: check
+CAN-2004-1729 (Cross-site scripting (XSS) vulnerability in Nihuo Web Log Analyzer 1.6 ...)
+	TODO: check
+CAN-2004-1728 (Buffer overflow in British National Corpus SARA (sarad) allows remote ...)
+	TODO: check
+CAN-2004-1727 (BadBlue 2.5 allows remote attackers to cause a denial of service ...)
+	TODO: check
+CAN-2004-1726 (Multiple integer overflows in (1) xviris.c, (2) xvpcx.c, and (3) ...)
+	TODO: check
+CAN-2004-1725 (Stack-based buffer overflow in xvbmp.c in XV allows remote attackers ...)
+	TODO: check
+CAN-2004-1724 (The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the ...)
+	TODO: check
+CAN-2004-1723 (The (1) updateuser.php and (2) forums_prune.php scripts in PHP-Fusion ...)
+	TODO: check
+CAN-2004-1722 (SQL injection vulnerability in calendar.html in Merak Mail Server ...)
+	TODO: check
+CAN-2004-1721 (The (1) function.php or (2) function.view.php scripts in Merak Mail ...)
+	TODO: check
+CAN-2004-1720 (The (1) address.html or (2) calendar.html pages in Merak Mail Server ...)
+	TODO: check
+CAN-2004-1719 (Multiple cross-site scripting (XSS) vulnerabilities in Merak Webmail ...)
+	TODO: check
+CAN-2004-1718 (The ZwOpenSection function in Integrity Protection Driver (IPD) 1.4 ...)
+	TODO: check
+CAN-2004-1717 (Multiple buffer overflows in the psscan function in ps.c for gv ...)
+	TODO: check
+CAN-2004-1716 (Cross-site scripting (XSS) vulnerability in PForum before 1.26 allows ...)
+	TODO: check
+CAN-2004-1715 (Directory traversal vulnerability in MIMEsweeper for Web before 5.0.4 ...)
+	TODO: check
+CAN-2004-1714 (BlackICE PC Protection and Server Protection installs (1) ...)
+	TODO: check
+CAN-2004-1713 (Unknown vulnerability in HP Process Resource Manager (PRM) ...)
+	TODO: check
+CAN-2004-1712 (Cross-site scripting (XSS) vulnerability in TypePad allows remote ...)
+	TODO: check
+CAN-2004-1711 (Cross-site scripting (XSS) vulnerability in post.php in Moodle before ...)
+	TODO: check
+CAN-2004-1710 (page.cgi allows remote attackers to execute arbitrary commands via ...)
+	TODO: check
+CAN-2004-1709 (Datakey Rainbow iKey2032 USB token, when using the CIP client package, ...)
+	TODO: check
+CAN-2004-1708 (Webbsyte Chat 0.9.0 allows remote attackers to cause a denial of ...)
+	TODO: check
+CAN-2004-1707 (The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and ...)
+	TODO: check
+CAN-2004-1706 (The U.S. Robotics USR808054 wireless access point allows remote ...)
+	TODO: check
+CAN-2004-1705 (Buffer overflow in Citadel/UX 6.23 and earlier allows remote attackers ...)
+	TODO: check
+CAN-2004-1704 (WpQuiz 2.60b1 through 2.60b8 allows remote attackers to gain ...)
+	TODO: check
+CAN-2004-1703 (Fusion News 3.6.1 allows remote attackers to add user accounts, if the ...)
+	TODO: check
+CAN-2004-0838 (Lexar Safe Guard for JumpDrive Secure 1.0 stores the password ...)
+	TODO: check
+CAN-2003-1087 (Unknown vulnerability in diagmond and possibly other applications in ...)
+	TODO: check
 CAN-2005-0547 (Unknown vulnerability in ftpd on HP-UX B.11.00, B.11.04, B.11.11, ...)
 	TODO: check
 CAN-2005-0546 (Multiple buffer overflows in Cyrus IMAPd before 2.2.11 may allow ...)
@@ -8823,7 +8963,8 @@
 CAN-2001-1170 (AmTote International homebet program stores the homebet.log file in ...)
 CAN-2001-1169 (keyinit in S/Key does not require authentication to initialize a ...)
 CAN-2001-1168 (Directory traversal vulnerability in index.php in PhpMyExplorer before ...)
-CAN-2001-1167 (Vulnerability in /opt/prm/bin of HP Process Resource Manager (PRM) ...)
+CAN-2001-1167
+	NOTE: rejected
 CAN-2001-1165 (Intego FileGuard 4.0 uses weak encryption to store user information ...)
 CAN-2001-1164 (Buffer overflow in uucp utilities in UnixWare 7 allows local users to ...)
 CAN-2001-1163 (Buffer overflow in Munica Corporation NetSQL 1.0 allows remote ...)