[Secure-testing-commits] r1489 - data/CAN
Joey Hess
joeyh at costa.debian.org
Fri Jul 29 22:06:28 UTC 2005
Author: joeyh
Date: 2005-07-29 22:06:25 +0000 (Fri, 29 Jul 2005)
New Revision: 1489
Modified:
data/CAN/list
Log:
automatic CAN database update
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-07-29 17:55:27 UTC (rev 1488)
+++ data/CAN/list 2005-07-29 22:06:25 UTC (rev 1489)
@@ -1,3 +1,388 @@
+CAN-2005-2404 (SQL injection vulnerability in sendcard.php in Sendcard 3.2.3 allows ...)
+ TODO: check
+CAN-2005-2403 (The login protocol in RealChat 3.5.1b does not use authentication, ...)
+ TODO: check
+CAN-2005-2402 (Cross-site scripting (XSS) vulnerability in search.php in ...)
+ TODO: check
+CAN-2005-2401 (PHP-Fusion allows remote attackers to inject arbitrary Cascading Style ...)
+ TODO: check
+CAN-2005-2400 (The inc.login.php scripts in PHPFinance 0.3 allows remote attackers to ...)
+ TODO: check
+CAN-2005-2399 (PHP Surveyor 0.98 allows remote attackers to trigger SQL errors via ...)
+ TODO: check
+CAN-2005-2398 (Multiple SQL injection vulnerabilities in PHP Surveyor 0.98 allows ...)
+ TODO: check
+CAN-2005-2397 (Cross-site scripting (XSS) vulnerability in guestbook.php in phpBook ...)
+ TODO: check
+CAN-2005-2396 (Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and ...)
+ TODO: check
+CAN-2005-2395 (Mozilla Firefox 1.0.4 and 1.0.5 does not choose the challenge with the ...)
+ TODO: check
+CAN-2005-2394 (show_news.php in CuteNews 1.3.6 allows remote attackers to obtain the ...)
+ TODO: check
+CAN-2005-2393 (Cross-site scripting (XSS) vulnerability in CuteNews 1.3.6 allows ...)
+ TODO: check
+CAN-2005-2392 (Cross-site scripting (XSS) vulnerability in index.php for CMSimple 2.4 ...)
+ TODO: check
+CAN-2005-2391 (Unknown vulnerability in 3Com OfficeConnect Wireless 11g Access Point ...)
+ TODO: check
+CAN-2005-2390 (Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 ...)
+ TODO: check
+CAN-2005-2389 (NDMP server in Veritas NetBackup 5.1 allows attackers to cause a ...)
+ TODO: check
+CAN-2005-2388 (Buffer overflow in a certain USB driver, as used on Windows, allows ...)
+ TODO: check
+CAN-2005-2387 (Multiple stack-based buffer overflows in GoodTech SMTP server 5.16 ...)
+ TODO: check
+CAN-2005-2386 (Cross-site scripting (XSS) vulnerability in viewCart.asp in CartWIZ ...)
+ TODO: check
+CAN-2005-2385 (Buffer overflow in a third-party compression library (UNACEV2.DLL), as ...)
+ TODO: check
+CAN-2005-2384 (Directory traversal vulnerability in a third-party compression library ...)
+ TODO: check
+CAN-2005-2383 (SQL injection vulnerability in auth.php in PHPNews 1.2.5 allows remote ...)
+ TODO: check
+CAN-2005-2382 (Oray PeanutHull 3.0.1.0 and earlier does not properly drop SYSTEM ...)
+ TODO: check
+CAN-2005-2381 (PHP Surveyor 0.98 allows remote attackers to obtain sensitive ...)
+ TODO: check
+CAN-2005-2380 (Multiple cross-site scripting vulnerabilities in PHP Surveyor 0.98 ...)
+ TODO: check
+CAN-2005-2379 (Multiple cross-site scripting (XSS) vulnerabilities in Oracle Reports ...)
+ TODO: check
+CAN-2005-2378 (Oracle Reports allows remote attackers to read arbitrary files via an ...)
+ TODO: check
+CAN-2005-2377 (nss_ldap in Mandrake Corporate Server and Mandrake 10.0 (crond and ...)
+ TODO: check
+CAN-2005-2376 (Buffer overflow in Race Driver 1.20 and earlier allows remote ...)
+ TODO: check
+CAN-2005-2375 (Format string vulnerability in Race Driver 1.20 and earlier allows ...)
+ TODO: check
+CAN-2005-2374 (Belkin 54g wireless routers do not properly set an administrative ...)
+ TODO: check
+CAN-2005-2373 (Buffer overflow in SlimFTPd 3.15 and 3.16 allows remote authenticated ...)
+ TODO: check
+CAN-2005-2372 (Oracle Forms 4.5 through 10g starts form executables from arbitrary ...)
+ TODO: check
+CAN-2005-2371 (Unknown vulnerability in Oracle Reports 6.0, 6i, 9i, and 10g allows ...)
+ TODO: check
+CAN-2005-2370 (Multiple "memory alignment errors" in libgadu, as used in ekg before ...)
+ {DSA-769-1}
+ TODO: check
+CAN-2005-2369 (Multiple integer signedness errors in libgadu, as used in ekg before ...)
+ TODO: check
+CAN-2005-2368 (vim 6.3 before 6.3.082, with modelines enabled, allows attackers to ...)
+ TODO: check
+CAN-2005-2367
+ NOTE: reserved
+CAN-2005-2366
+ NOTE: reserved
+CAN-2005-2365
+ NOTE: reserved
+CAN-2005-2364
+ NOTE: reserved
+CAN-2005-2363
+ NOTE: reserved
+CAN-2005-2362
+ NOTE: reserved
+CAN-2005-2361
+ NOTE: reserved
+CAN-2005-2360
+ NOTE: reserved
+CAN-2005-2359
+ NOTE: reserved
+CAN-2005-2358
+ NOTE: reserved
+CAN-2005-2357
+ NOTE: reserved
+CAN-2005-2355
+ NOTE: rejected
+ TODO: check
+CAN-2005-2347
+ NOTE: reserved
+CAN-2005-2346
+ NOTE: reserved
+CAN-2005-2345
+ NOTE: reserved
+CAN-2005-2344
+ NOTE: reserved
+CAN-2005-2343
+ NOTE: reserved
+CAN-2005-2342
+ NOTE: reserved
+CAN-2005-2341
+ NOTE: reserved
+CAN-2005-2340
+ NOTE: reserved
+CAN-2005-2339
+ NOTE: reserved
+CAN-2005-2338
+ NOTE: reserved
+CAN-2005-2337
+ NOTE: reserved
+CAN-2005-2336
+ NOTE: reserved
+CAN-2005-2334 (Y.SAK allows remote attackers to execute arbitrary commands via shell ...)
+ TODO: check
+CAN-2005-2333 (Cross-site scripting (XSS) vulnerability in smilies_popup.php in ...)
+ TODO: check
+CAN-2005-2332 (Cross-site scripting (XSS) vulnerability in PHPPageProtect 1.0.0a ...)
+ TODO: check
+CAN-2005-2331 (PHP remote file inclusion vulnerability in display.php in MooseGallery ...)
+ TODO: check
+CAN-2005-2330 (Directory traversal vulnerability in update.php in osCommerce 2.2 ...)
+ TODO: check
+CAN-2005-2329 (MRV Communications In-Reach LX-8000S, LX-4000S, and LX-1000S 3.5.0, ...)
+ TODO: check
+CAN-2005-2328 (PHP remote file inclusion vulnerability in im.php in Laffer 0.3.2.6 ...)
+ TODO: check
+CAN-2005-2327 (Cross-site scripting (XSS) vulnerability in e107 0.617 and earlier ...)
+ TODO: check
+CAN-2005-2326 (Cross-site scripting (XSS) vulnerability in Clever Copy 2.0 and 2.0a ...)
+ TODO: check
+CAN-2005-2325 (Clever Copy 2.0 and 2.0a allows remote attackers to obtain the full ...)
+ TODO: check
+CAN-2005-2324 (Cross-site scripting (XSS) vulnerability in Clever Copy 2.0 and 2.0a ...)
+ TODO: check
+CAN-2005-2323 (Multiple SQL injection vulnerabilities in Class-1 Forum 0.24.4 and ...)
+ TODO: check
+CAN-2005-2322 (Cross-site scripting (XSS) vulnerability in Class-1 Forum 0.24.4 and ...)
+ TODO: check
+CAN-2005-2321 (PHP remote file inclusion vulnerability in CaLogic 1.2.2 allows remote ...)
+ TODO: check
+CAN-2005-2319 (PHP remote file include vulnerability in Yawp library 1.0.6 and ...)
+ TODO: check
+CAN-2005-2318 (Cross-site scripting (XSS) vulnerability in showerr.asp in DVBBS 7.1 ...)
+ TODO: check
+CAN-2005-2317 (Shorewall 2.4.x before 2.4.1, 2.2.x before 2.2.5, and 2.0.x before ...)
+ TODO: check
+CAN-2005-2316
+ NOTE: reserved
+CAN-2005-2315
+ NOTE: reserved
+CAN-2005-2314 (inc.login.php in PHPsFTPd 0.2 through 0.4 allows remote attackers to ...)
+ TODO: check
+CAN-2005-2313 (Check Point SecuRemote NG with Application Intelligence R54 allows ...)
+ TODO: check
+CAN-2005-2312 (management.php in Realnode Emilda 1.2.2 and earlier allows remote ...)
+ TODO: check
+CAN-2005-2311 (SMS 1.9.2m and earlier allows local users to overwrite arbitrary files ...)
+ TODO: check
+CAN-2005-2310 (Buffer overflow in Winamp 5.03a, 5.09 and 5.091 allows remote ...)
+ TODO: check
+CAN-2005-2309 (Opera 8.01 allows remote attackers to cause a denial of service (CPU ...)
+ TODO: check
+CAN-2005-2308 (The JPEG decoder in Microsoft Internet Explorer allows remote ...)
+ TODO: check
+CAN-2005-2307 (netman.dll in Microsoft Windows Connections Manager Library allows ...)
+ TODO: check
+CAN-2005-2306 (Race condition in Macromedia JRun 4.0, ColdFusion MX 6.1 and 7.0, when ...)
+ TODO: check
+CAN-2005-2305 (DG Remote Control Server 1.6.2 allows remote attackers to cause a ...)
+ TODO: check
+CAN-2005-2304 (Microsoft MSN Messenger 9.0 and Internet Explorer 6.0 allows remote ...)
+ TODO: check
+CAN-2005-2303 (Unknown vulnerability in the Microsoft Windows kernel allows remote ...)
+ TODO: check
+CAN-2005-2302 (PowerDNS before 2.9.18, when allowing recursion to a restricted range ...)
+ TODO: check
+CAN-2005-2301 (PowerDNS before 2.9.18, when running with an LDAP backend, does not ...)
+ TODO: check
+CAN-2005-2300 (Skype 1.1.0.20 and earlier allows local users to overwrite arbitrary ...)
+ TODO: check
+CAN-2005-2299 (Multiple cross-site scripting (XSS) vulnerabilities in Simple Message ...)
+ TODO: check
+CAN-2005-2298 (BitDefender Engine 1.6.1 and earlier does not properly scan all ...)
+ TODO: check
+CAN-2005-2297 (Stack-based buffer overflow in TreeAction.do in Sybase EAServer 4.2.5 ...)
+ TODO: check
+CAN-2005-2296 (YabbSE 1.5.5c allows remote attackers to obtain sensitive information ...)
+ TODO: check
+CAN-2005-2295 (NetPanzer 0.8 and earlier allows remote attackers to cause a denial of ...)
+ TODO: check
+CAN-2005-2294 (Oracle Forms 4.5, 6.0, 6i, and 9i on Unix, when a large number of ...)
+ TODO: check
+CAN-2005-2293 (Oracle Formsbuilder 9.0.4 stores database usernames and passwords in a ...)
+ TODO: check
+CAN-2005-2292 (Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 stores cleartext passwords ...)
+ TODO: check
+CAN-2005-2291 (Oracle JDeveloper 9.0.4, 9.0.5, and 10.1.2 passes the cleartext ...)
+ TODO: check
+CAN-2005-2290 (wps_shop.cgi in WPS Web Portal System 0.7.0 allows remote attackers to ...)
+ TODO: check
+CAN-2005-2289 (PHPCounter 7.2 allows remote attackers to obtain sensitive information ...)
+ TODO: check
+CAN-2005-2288 (Cross-site scripting (XSS) vulnerability in PHPCounter 7.2 allows ...)
+ TODO: check
+CAN-2005-2287 (SoftiaCom wMailServer 1.0 and 2.0 allows remote attackers to cause a ...)
+ TODO: check
+CAN-2005-2286 (WebEOC before 6.0.2 does not properly check user authorization, which ...)
+ TODO: check
+CAN-2005-2285 (WebEOC before 6.0.2 stores sensitive information in locations such as ...)
+ TODO: check
+CAN-2005-2284 (Multiple SQL injection vulnerabilities in WebEOC before 6.0.2 allow ...)
+ TODO: check
+CAN-2005-2283 (WebEOC before 6.0.2 does not properly restrict the size of an uploaded ...)
+ TODO: check
+CAN-2005-2282 (Multiple cross-site scripting (XSS) vulnerabilities in WebEOC 6.0.2 ...)
+ TODO: check
+CAN-2005-2281 (WebEOC before 6.0.2 uses a weak encryption scheme for passwords, which ...)
+ TODO: check
+CAN-2005-2280 (Cisco Security Agent (CSA) 4.5 allows remote attackers to cause a ...)
+ TODO: check
+CAN-2005-2279 (Cisco ONS 15216 Optical Add/Drop Multiplexer (OADM) running firmware ...)
+ TODO: check
+CAN-2005-2278 (Stack-based buffer overflow in the IMAP daemon (imapd) in MailEnable ...)
+ TODO: check
+CAN-2005-2277 (Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows ...)
+ {DSA-762-1}
+ TODO: check
+CAN-2005-2276 (Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess ...)
+ TODO: check
+CAN-2004-2284 (The read_list_from_file function in vacation.pl for OpenWebmail before ...)
+ TODO: check
+CAN-2004-2283 (Unknown vulnerability in DansGuardian before 2.6.1-13 allows remote ...)
+ TODO: check
+CAN-2004-2282 (DansGuardian before 2.7.7-2 allows remote attackers to bypass URL ...)
+ TODO: check
+CAN-2004-2281 (Multiple unknown vulnerabilities in IBM Lotus Notes 6.5.x before 6.5.4 ...)
+ TODO: check
+CAN-2004-2280 (Buffer overflow in IBM Lotus Notes 6.5.x before 6.5.3 and 6.0.x before ...)
+ TODO: check
+CAN-2004-2279 (Cross-site scripting (XSS) vulnerability in Invision Power Board 1.3 ...)
+ TODO: check
+CAN-2004-2278 (Unknown cross-site scripting (XSS) vulnerability in the web GUI in ...)
+ TODO: check
+CAN-2004-2277 (Buffer overflow in aGSM Half-Life client allows remote Half-Life ...)
+ TODO: check
+CAN-2004-2276 (F-Secure Anti-Virus 5.41 and 5.42 on Windows, Client Security 5.50 and ...)
+ TODO: check
+CAN-2004-2275 (i-mall.cgi in I-Mall Commerce allows remote attackers to execute ...)
+ TODO: check
+CAN-2004-2274 (Unknown vulnerability in Jigsaw before 2.2.4 has unknown impact and ...)
+ TODO: check
+CAN-2004-2273 (efFingerD 0.2.12 allows remote attackers to cause a denial of service ...)
+ TODO: check
+CAN-2004-2272 (Buffer overflow in the sockFinger_DataArrival function in efFingerD ...)
+ TODO: check
+CAN-2004-2271 (Buffer overflow in MiniShare 1.4.1 and earlier allows remote attackers ...)
+ TODO: check
+CAN-2004-2270 (Unknown vulnerability in IBM Parallel Environment (PE) 3.2 and 4.1 ...)
+ TODO: check
+CAN-2004-2269 (Stack-based buffer overflow in pads.c in Passive Asset Detection ...)
+ TODO: check
+CAN-2004-2268 (PimenGest2 before 1.1.1 allows remote attackers to obtain the database ...)
+ TODO: check
+CAN-2004-2267 (Cross-site scripting (XSS) vulnerability in Ansel 2.1 and earlier ...)
+ TODO: check
+CAN-2004-2266 (SQL injection vulnerability in Ansel 2.1 and earlier allows remote ...)
+ TODO: check
+CAN-2004-2265 (UUDeview 0.5.20 and earlier handles temporary files insecurely during ...)
+ TODO: check
+CAN-2004-2264 (** DISPUTED ** Format string bug in the open_altfile function in ...)
+ TODO: check
+CAN-2004-2263 (SQL injection vulnerability in the valid function in fr_left.php in ...)
+ TODO: check
+CAN-2004-2262 (ImageManager in e107 before 0.617 does not properly check the types of ...)
+ TODO: check
+CAN-2004-2261 (Cross-site scripting (XSS) vulnerability in e107 allows remote ...)
+ TODO: check
+CAN-2004-2260 (Opera Browser 7.23, and other versions before 7.50, updates the ...)
+ TODO: check
+CAN-2004-2259 (vsftpd before 1.2.2, when under heavy load, allows attackers to cause ...)
+ TODO: check
+CAN-2004-2258 (Xconfig in Hummingbird Exceed before 9.0.0.1, when the Screen ...)
+ TODO: check
+CAN-2004-2257 (phpMyFAQ 1.4.0 allows remote attackers to access the Image Manager to ...)
+ TODO: check
+CAN-2004-2256 (Directory traversal vulnerability in phpMyFAQ 1.4.0 alpha allows ...)
+ TODO: check
+CAN-2004-2255 (Directory traversal vulnerability in phpMyFAQ 1.3.12 allows remote ...)
+ TODO: check
+CAN-2004-2254 (SurgeLDAP 1.0g (Build 12), and possibly other versions before 1.0h, ...)
+ TODO: check
+CAN-2004-2253 (Directory traversal vulnerability in user.cgi in SurgeLDAP 1.0g and ...)
+ TODO: check
+CAN-2004-2252 (The firewall in Astaro Security Linux before 4.024 sends responses to ...)
+ TODO: check
+CAN-2004-2251 (The PPTP server in Astaro Security Linux before 4.024 provides ...)
+ TODO: check
+CAN-2004-2250 (Unknown vulnerability in the "access code" in RemoteEditor before ...)
+ TODO: check
+CAN-2004-2249 (Unknown vulnerability in the "access code" in SecureEditor before ...)
+ TODO: check
+CAN-2004-2248 (Unknown vulnerability in RemoteEditor before 0.1.1 has unknown impact ...)
+ TODO: check
+CAN-2004-2247 (Unknown vulnerability in the "admin of paypal email addresses" in ...)
+ TODO: check
+CAN-2004-2246 (Cross-site scripting (XSS) vulnerability in Goollery before 0.04b ...)
+ TODO: check
+CAN-2004-2245 (Cross-site scripting (XSS) vulnerability in Goollery 0.03 allows ...)
+ TODO: check
+CAN-2004-2244 (The XML parser in Oracle 9i Application Server Release 2 9.0.3.0 and ...)
+ TODO: check
+CAN-2004-2243 (Phorum allows remote attackers to hijack sessions of other users by ...)
+ TODO: check
+CAN-2004-2242 (Cross-site scripting (XSS) vulnerability in search.php in Phorum, ...)
+ TODO: check
+CAN-2004-2241 (Cross-site scripting (XSS) vulnerability in Phorum 5.0.11 and earlier ...)
+ TODO: check
+CAN-2004-2240 (Multiple SQL injection vulnerabilities in Phorum 5.0.11 and earlier ...)
+ TODO: check
+CAN-2004-2239 (Buffer overflow in vsybase.c in vpopmail 5.4.2 and earlier might allow ...)
+ TODO: check
+CAN-2004-2238 (** DISPUTED ** ...)
+ TODO: check
+CAN-2004-2237 (Unknown vulnerability in Moodle before 1.3.4 has unknown impact and ...)
+ TODO: check
+CAN-2004-2236 (Unknown vulnerability in Moodle before 1.3.3 has unknown impact and ...)
+ TODO: check
+CAN-2004-2235 (Unknown vulnerability in Moodle before 1.2 has unknown impact and ...)
+ TODO: check
+CAN-2004-2234 (Unknown vulnerability in Moodle before 1.2 allows teachers to log in ...)
+ TODO: check
+CAN-2004-2233 (Unknown "front page vulnerability with Moodle servers" for Moodle ...)
+ TODO: check
+CAN-2004-2232 (SQL injection vulnerability in sql.php in the Glossary module in ...)
+ TODO: check
+CAN-2004-2231 (Zero G Software InstallAnywhere 5.0.6, 5.0.7, and earlier allows local ...)
+ TODO: check
+CAN-2004-2230 (Heap-based buffer overflow in isakmpd on OpenBSD 3.4 through 3.6 ...)
+ TODO: check
+CAN-2004-2229 (Multiple unknown vulnerabilities in Oracle 9i Lite Mobile Server ...)
+ TODO: check
+CAN-2004-2228 (Mozilla Firefox before 1.0 is installed with world-writable ...)
+ TODO: check
+CAN-2004-2227 (Mozilla Firefox before 1.0 truncates long filenames in the file ...)
+ TODO: check
+CAN-2004-2226 (Mozilla Mail 1.7.1 and 1.7.3, and Thunderbird before 0.9, when ...)
+ TODO: check
+CAN-2004-2225 (Mozilla Firefox before 0.10.1 allows remote attackers to delete ...)
+ TODO: check
+CAN-2004-2224 (Appfoundry Message Foundry 2.75 .0003 allows remote attackers to cause ...)
+ TODO: check
+CAN-2004-2223 (FsPHPGallery before 1.2 allows remote attackers to cause a denial of ...)
+ TODO: check
+CAN-2004-2222 (Directory traversal vulnerability in index.php in FsPHPGallery before ...)
+ TODO: check
+CAN-2004-2221 (Buffer overflow in SoftCart.exe in Mercantec SoftCart 4.00b allows ...)
+ TODO: check
+CAN-2004-2220 (F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not ...)
+ TODO: check
+CAN-2004-2219 (Microsoft Internet Explorer 6 allows remote attackers to spoof the ...)
+ TODO: check
+CAN-2004-2218 (SQL injection vulnerability in pmwh.php in PHPMyWebHosting 0.3.4 and ...)
+ TODO: check
+CAN-2004-2217 (Multiple unknown vulnerabilities in yhttpd in yChat before 0.7 allow ...)
+ TODO: check
+CAN-2004-2216 (Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and ...)
+ TODO: check
+CAN-2004-2215 (RXVT-Unicode 3.4 and 3.5 does not properly close file descriptors, ...)
+ TODO: check
+CAN-2004-2214 (Mbedthis AppWeb HTTP server before 1.1.3 allows remote attackers to ...)
+ TODO: check
+CAN-2004-2213 (Mbedthis AppWeb HTTP server before 1.1.3 allows remote attackers to ...)
+ TODO: check
CAN-2005-XXXX [Multiple security problems in ethereal]
- ethereal 0.10.12-1 (medium)
CAN-2005-XXXX [strobe reads file from unsafe directory]
@@ -19,10 +404,11 @@
- xemeraldia 0.4-1 (low)
CAN-2005-XXXX [tdiary cross-site request forgeries]
- tdiary 2.0.2-1 (medium)
-CAN-2005-2335 [remote exploitation of fetchmail by pop3 server]
+CAN-2005-2335 (Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows ...)
NOTE: CAN assigned but not published yet
- fetchmail 6.2.5-15 (medium)
-CAN-2005-2320 [webcalender: Inproper access control may lead to privilege escalation]
+CAN-2005-2320 (WebCalendar before 1.0.0 does not properly restrict access to ...)
+ {DSA-766-1}
- webcalender (unfixed; bug #315671; medium)
CAN-2005-2437 [xsupplicant leaks sensitive password information into logfile]
- xsupplicant (unfixed; bug #317703; medium)
@@ -51,7 +437,7 @@
- mozilla-firefox 1.0.5-1 (high)
- mozilla (unfixed; bug #318062; high)
- mozilla-thunderbird 1.0.6-1 (high)
-CAN-2005-2269 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly verify ...)
+CAN-2005-2269 (Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does ...)
- mozilla-firefox 1.0.5-1 (high)
- mozilla (unfixed; bug #318062; medium)
- mozilla-thunderbird 1.0.6-1 (medium)
@@ -64,7 +450,7 @@
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
- mozilla-thunderbird 1.0.6-1 (low)
-CAN-2005-2265 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote attackers ...)
+CAN-2005-2265 (Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 ...)
- mozilla-firefox 1.0.5-1 (high)
- mozilla (unfixed; bug #318062; medium)
- mozilla-thunderbird 1.0.6-1 (medium)
@@ -73,13 +459,13 @@
CAN-2005-2263 (The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla ...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
-CAN-2005-2262 (Firefox 1.0.3 and 1.0.4 allows remote attackers to execute arbitrary ...)
+CAN-2005-2262 (Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers ...)
- mozilla-firefox 1.0.5-1 (medium)
-CAN-2005-2261 (Firefox before 1.0.5, Thunderbird before 1.0.5, and Mozilla before ...)
+CAN-2005-2261 (Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before 1.7.9, ...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
- mozilla-thunderbird 1.0.6-1 (medium)
-CAN-2005-2260 (The browser user interface in Firefox before 1.0.5 and Mozilla before ...)
+CAN-2005-2260 (The browser user interface in Firefox before 1.0.5, Mozilla before ...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
CAN-2002-2086 (Multiple cross-site scripting (XSS) vulnerabilities in magicHTML of ...)
@@ -164,7 +550,7 @@
begin claimed by zobel
CAN-2002-2049 (configure for Dsniff 2.3, fragroute 1.2, and fragrouter 1.6, when ...)
TODO: check
-CAN-2002-2048 (** local / non-priv overflow only? ** ...)
+CAN-2002-2048 (Buffer overflow in PFinger 0.7.8 client allows remote attackers to ...)
TODO: check
CAN-2002-2047 (The file preview functionality in Sketch 0.6.12 and earlier allows ...)
TODO: check
@@ -457,6 +843,7 @@
CAN-2005-2257 (The saveProfile function in PhpSlash 0.8.0 allows remote attackers to ...)
NOTE: not-for-us (PhpSlash)
CAN-2005-2256 (Encoded directory traversal vulnerability in phpPgAdmin 3.1 to 3.5.3 ...)
+ {DSA-759-1}
- phppgadmin 3.5.4-1 (medium)
CAN-2005-2255 (Directory traversal vulnerability in PhpAuction 2.5 allows remote ...)
NOTE: not-for-us (PhpAuction)
@@ -469,6 +856,7 @@
CAN-2005-2251 (PHP remote file inclusion vulnerability in secure.php in ...)
NOTE: not-for-us (PHPSecurePages (phpSP))
CAN-2005-2250 (Buffer overflow in Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 ...)
+ {DSA-762-1}
- affix 2.1.2-2 (medium)
CAN-2005-2249 (Multiple unknown vulnerabilities in Jinzora 2.0.1 have unknown impact ...)
TODO: track ITP#289487
@@ -511,10 +899,11 @@
CAN-2005-2232 (Buffer overflow in invscout in IBM AIX 5.1.0 through 5.3.0 might allow ...)
NOTE: not-for-us (AIX)
CAN-2005-2231 (High Availability Linux Project Heartbeat 1.2.3 allows local users to ...)
+ {DSA-761-1}
- heartbeat 1.2.3-12 (medium)
CAN-2005-2230 (Electronic Mail Operator (elmo) 1.3.2-r1 and earlier creates the ...)
- elmo (unfixed; bug #318291; medium)
-CAN-2005-2229 (Blog Torrent 0.92 and earlier stores the data/newusers file under the ...)
+CAN-2005-2229 (Blog Torrent 0.92 and earlier stores sensitive files under the web ...)
NOTE: not-for-us (Blog Torrent)
CAN-2005-2228 (Web Wiz Forums 7.9 and 8.0 allows remote attackers to view message ...)
NOTE: not-for-us (Web Wiz Forums)
@@ -530,14 +919,13 @@
NOTE: not-for-us (MailEnable)
CAN-2005-2222 (Unknown vulnerability in the HTTPMail service in MailEnable Professional ...)
NOTE: not-for-us (MailEnable)
-CAN-2005-2221 (Multiple SQL injection vulnerabilities in Dragonfly Commerce allows ...)
+CAN-2005-2221 (** DISPUTED ** Multiple SQL injection vulnerabilities in Dragonfly ...)
NOTE: not-for-us (Dragonfly)
-CAN-2005-2220 (Dragonfly Commerce allows remote attackers to changing a product price ...)
+CAN-2005-2220 (** DISPUTED ** Dragonfly Commerce allows remote attackers to change a ...)
NOTE: not-for-us (Dragonfly)
CAN-2005-2219 (Hosting Controller 6.1 Hotfix 2.1 allows remote authenticated users to ...)
NOTE: not-for-us (Hosting Controller)
-CAN-2005-2218 [freebsd: Weak permissions permit exposal of devfs nodes in jails]
- NOTE: reserved
+CAN-2005-2218 (The device file system (devfs) in FreeBSD 5.x does not properly check ...)
- kfreebsd5-source 5.3-17 (medium)
CAN-2005-2217 (Dansie Shopping Cart stores the vars.dat file under the web root with ...)
NOTE: not-for-us (Dansie Shopping Cart
@@ -581,10 +969,10 @@
NOTE: not-for-us (SPiD)
CAN-2005-2197 (SQL injection vulnerability in sql.cls.php in Id Board 1.1.3 allows ...)
NOTE: not-for-us (Id Board)
-CAN-2005-2196
- NOTE: reserved
-CAN-2005-2195
- NOTE: reserved
+CAN-2005-2196 (The Apple AirPort card uses a default WEP key when not connected to a ...)
+ TODO: check
+CAN-2005-2195 (Apple Darwin Streaming Server 5.5 and earlier allows remote attackers ...)
+ TODO: check
CAN-2005-2194
NOTE: reserved
CAN-2005-2193 (SQL injection vulnerability in the user profile edit module in ...)
@@ -759,6 +1147,7 @@
CAN-2004-2155 (Online-bookmarks before 0.4.6 allows remote attackers to bypass its ...)
NOTE: not-for-us (Online-bookmarks)
CAN-2005-2348 [base-config log should not be world readable]
+ NOTE: reserved
- base-config 2.68 (low)
CAN-2005-2169 (Directory traversal vulnerability in source.php in Quick & Dirty ...)
NOTE: not-for-us (PHPSource Printer)
@@ -777,6 +1166,7 @@
CAN-2005-2162 (PHP remote file inclusion vulnerability in form.inc.php3 in ...)
NOTE: not-for-us (MyGuestbook)
CAN-2005-2161 (Cross-site scripting (XSS) vulnerability in phpBB 2.0.16 allows remote ...)
+ {DSA-768-1}
- phpbb2 (unfixed; bug #317739; high)
CAN-2005-2160 (IMail stores usernames and passwords in cleartext in a cookie, which ...)
NOTE: not-for-us (IMail)
@@ -801,8 +1191,10 @@
CAN-2005-2150 (Windows NT 4.0 and Windows 2000 before URP1 for Windows 2000 SP4 does ...)
NOTE: not-for-us (Microsoft)
CAN-2005-2149 (config.php in Cacti 0.8.6e and earlier allows remote attackers to set ...)
+ {DSA-764-1}
- cacti 0.8.6f-1 (high)
CAN-2005-2148 (Cacti 0.8.6e and earlier does not perform proper input validation to ...)
+ {DSA-764-1}
- cacti 0.8.6f-1 (high)
CAN-2005-2147 (Trac before 0.8.4 allows remote attackers to read or upload arbitrary ...)
TODO: Check, whether this was covered by DSA-739 as well
@@ -1518,6 +1910,7 @@
CAN-2005-2041 (Buffer overflow in addschup in ViRobot 2.0 allows remote attackers to ...)
NOTE: not-for-us (ViRobot)
CAN-2005-2040 (Multiple buffer overflows in the getterminaltype function in telnetd ...)
+ {DSA-758-1}
TODO: Check telnetd from netkit, krb4, krb5, as they all seem to be derived from the same BSD code base
- heimdal 0.6.3-11 (high)
CAN-2005-2039 (Unknown vulnerability in "various plugins" for NanoBlogger 3.2.1 and ...)
@@ -2073,8 +2466,7 @@
- ewiki (unfixed; high)
- php4 (unfixed; bug #316447; high)
NOTE: horde3 is not affected by this issue, they ship different XMLRPC code
-CAN-2005-1920 [Information leak through insecure default perms on backup files in kate]
- NOTE: reserved
+CAN-2005-1920 (The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x through ...)
- kdebase (unfixed; bug #319016; medium)
NOTE: fixed in 4:3.4.1-1 in experimental, will reach unstable eventually
CAN-2005-1919
@@ -2085,11 +2477,11 @@
NOTE: not-for-us (kpopper)
NOTE: there is a kpopper in kerberos4kth-servers, but this is not the same one
CAN-2005-1916 (linki.py in ekg 2005-06-05 and earlier allows local users to overwrite ...)
+ {DSA-760-1}
- ekg 1:1.5+20050712+1.6rc2-1 (low)
CAN-2005-1915
NOTE: reserved
-CAN-2005-1914 [Insecure tempfile usage in centericq]
- NOTE: reserved
+CAN-2005-1914 (CenterICQ 4.20.0 and earlier creates temporary files with predictable ...)
{DSA-754-1}
- centericq 4.20.0-7 (medium)
CAN-2005-1913 [Kernel changelog for 2.6.12.1: Clean up subthread exec]
@@ -2218,20 +2610,21 @@
NOTE: reserved
CAN-2005-1853
NOTE: reserved
-CAN-2005-1852 [Integer overflow in ekg]
- NOTE: reserved
+ {DSA-770-1}
+CAN-2005-1852 (Multiple integer overflows in libgadu, as used in Kopete in KDE 3.2.3 ...)
+ {DSA-767-1}
NOTE: Kopete embeds the vulnerable code, but it's only used as a fallback when
NOTE: no shared lib version is found. As the Debian package has a dependency on
NOTE: it the maintainer does not intent to fix it, see # 319443
- ekg 1:1.5+20050712+1.6rc3-1 (medium)
-CAN-2005-1851 [Potential shell command injection in ekg contrib script]
- NOTE: reserved
+CAN-2005-1851 (A certain contributed script for ekg Gadu Gadu client 1.5 and earlier ...)
+ {DSA-760-1}
- ekg 1:1.5+20050712+1.6rc2-1 (low)
-CAN-2005-1850 [Insecure tmpfile generation in ekg's contrib scripts]
- NOTE: reserved
+CAN-2005-1850 (Certain contributed scripts for ekg Gadu Gadu client 1.5 and earlier ...)
+ {DSA-760-1}
- ekg 1:1.5+20050712+1.6rc2-1 (low)
-CAN-2005-1849 [Buffer overflow in in infback9 contrib code from zlib]
- NOTE: reserved
+CAN-2005-1849 (inftrees.h in zlib 1.2.2 allows remote attackers to cause a denial of ...)
+ {DSA-763-1}
NOTE: This is only contrib code not built in the binary packages AFAIK
- zlib 1:1.2.3-1 (low)
CAN-2005-1848 (The dhcpcd DHCP client before 1.3.22 allows remote attackers to cause ...)
@@ -2255,8 +2648,10 @@
{DSA-744-1}
- fuse 2.3.0-1
CAN-2005-2349 [Directory traversal in zoo]
+ NOTE: reserved
- zoo (unfixed; bug #309594; medium)
CAN-2005-2350 [Cross Site Scripting in websieve]
+ NOTE: reserved
- websieve (unfixed; bug #311838; low)
NOTE: second half of bug suggets lack of escaping of user data
NOTE: could be used to compromise program somehow
@@ -2422,8 +2817,8 @@
NOTE: Fixed in the 2.6.11 stable series and merged into 2.6.12
NOTE: 2.6 only, not in 2.4
CAN-2005-1764 [Unspecified DoS vulnerability on amd64]
+ NOTE: reserved
NOTE: horms says not vulnerable in 2.4.27 or 2.6.8 as far as he can tell
- NOTE: reserved
CAN-2005-1763 (Buffer overflow in ptrace in the Linux Kernel for 64-bit architectures ...)
- kernel-source-2.6.8 2.6.8-17
- kernel-source-2.6.8 2.6.8-16sarge1
@@ -2434,6 +2829,7 @@
- kernel-source-2.6.8 2.6.8-16sarge1
- kernel-source-2.4.27 2.4.27-11
CAN-2005-1761 [Kernel changelog for 2.6.12.1: ia64 ptrace + sigrestore_context]
+ NOTE: reserved
- linux-2.6 2.6.12-1 (medium)
- kernel-source-2.6.11 2.6.11-6 (normal)
- kernel-source-2.6.8 2.6.8-17
@@ -2442,7 +2838,7 @@
CAN-2005-1760 (sysreport 1.3.15 and earlier includes contents of the up2date file in ...)
NOTE: not-for-us (sysreport)
CAN-2005-1759 (Race condition in shtool 2.0.1 and earlier allows local users to ...)
- - shtool 2.0.1-2 (low)
+ - shtool 2.0.1-2 (low)
- mysql-ocaml 1.0.3-6 (low)
- php4 (unfixed; low)
NOTE: the patch applied to NMU #311206 fixes both CAN-2005-1759 and CAN-2005-1751
@@ -2557,6 +2953,7 @@
CAN-2005-XXXX [Unspecified issue in moodle's admin/delete.php]
- moodle 1.4.4.dfsg.1-3
CAN-2005-2351 [Minor DoS condition in mutt due to preditable tempfiles]
+ NOTE: reserved
- mutt (unfixed; bug #311296; low)
CAN-2005-XXXX [gforge arbitrary code execution through viewFile.php]
NOTE: viewFile.php has been removed along with other files in -26, so Debian is
@@ -2686,12 +3083,12 @@
CAN-2005-1692 (Format string vulnerability in gxine 0.4.1 through 0.4.4, and other ...)
NOTE: Not in sarge due to RC bugs
- gxine (unfixed; bug #310712)
-CAN-2005-1691
- NOTE: reserved
+CAN-2005-1691 (Directory traversal vulnerability in Internet Graphics Server in SAP ...)
+ TODO: check
CAN-2005-1690
NOTE: rejected
-CAN-2005-1689 [krb5 KDC double free()]
- NOTE: reserved
+CAN-2005-1689 (Double-free vulnerability in the krb5_recvauth function in MIT ...)
+ {DSA-757-1}
- krb5 1.3.6-4 (medium)
CAN-2005-1688 (Wordpress 1.5 and earlier allows remote attackers to obtain sensitive ...)
NOTE: Removed from Sarge due to intransparent handling of security issues by upstream
@@ -3118,8 +3515,8 @@
CAN-2005-1531 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not properly ...)
- mozilla-firefox 1.0.4
- mozilla-browser 2:1.7.8
-CAN-2005-1530
- NOTE: reserved
+CAN-2005-1530 (Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, ...)
+ TODO: check
CAN-2005-1529
NOTE: reserved
CAN-2005-1528
@@ -3127,10 +3524,13 @@
CAN-2005-1527
NOTE: reserved
CAN-2005-1526 (PHP file inclusion vulnerability in config_settings.php in Cacti ...)
+ {DSA-764-1}
- cacti 0.8.6e-1 (high)
CAN-2005-1525 (SQL injection vulnerability in config_settings.php for Cacti before ...)
+ {DSA-764-1}
- cacti 0.8.6e-1 (high)
CAN-2005-1524 (PHP file inclusion vulnerability in top_graph_header.php in Cacti ...)
+ {DSA-764-1}
- cacti 0.8.6e-1 (high)
CAN-2005-1523 (Format string vulnerability in imap4d server in GNU Mailutils 0.5 and ...)
{DSA-732-1}
@@ -3275,7 +3675,7 @@
- phpbb2 2.0.10-1
CAN-2004-2054 (CRLF injection vulnerability in PhpBB 2.0.4 and 2.0.9 allows remote ...)
- phpbb2 2.0.10-1
-CAN-2004-2053 (PHP remote code injection vulnerability in index.php in EasyIns ...)
+CAN-2004-2053 (PHP remote file inclusion vulnerability in index.php in EasyIns ...)
NOTE: not-for-us
CAN-2004-2052 (eSeSIX Thintune thin clients running firmware 2.4.38 and earlier ...)
NOTE: not-for-us
@@ -3990,10 +4390,12 @@
CAN-2005-XXXX [maradns: More frequent rekeying to mitigate possible AES attacks]
- maradns 1.0.27-1
CAN-2005-2352 [Temp file races in gs-gpl addons scripts]
+ NOTE: reserved
- gs-gpl (unfixed; bug #291373; low)
CAN-2005-XXXX [Possible SQL injection in freeradius]
- freeradius 1.0.2-4
CAN-2005-2353 [Insecure temp file handling in Thunderbird]
+ NOTE: reserved
- mozilla-thunderbird (unfixed; bug #306893; low)
CAN-2005-XXXX [Directory traversal in unzoo]
- unzoo 4.4-4
@@ -4056,12 +4458,14 @@
CAN-2005-XXXX [fai tempfile vulnerability]
- fai 2.8.2
CAN-2005-2354 [nvu uses old copy of mozilla xpcom]
+ NOTE: reserved
NOTE: have not checked to see which security holes re in it exatly
NOTE: Has been removed from Sarge
- nvu (unfixed; bug #306822)
CAN-2005-XXXX [eskuel: arbitrary file retreiving]
- eskuel 1.0.5-3.1 (low)
CAN-2005-2356 [eskuel: No authentication at all]
+ NOTE: reserved
- eskuel (unfixed; bug #163653; low)
CAN-2005-XXXX [Buffer overflow in elog's header buffer]
- elog 2.5.7+r1558-3
@@ -4806,12 +5210,12 @@
NOTE: and not the version in Sarge
CAN-2005-1176 (Race condition in JFS2 on AIX 5.2 and 5.3, when deleting a file while ...)
NOTE: not-for-us (AIX)
-CAN-2005-1175 [MIT krb5 KDC heap overflow]
- NOTE: reserved
+CAN-2005-1175 (Heap-based buffer overflow in the Key Distribution Center (KDC) in MIT ...)
+ {DSA-757-1}
TODO: check krb4
- krb5 1.3.6-4 (medium)
-CAN-2005-1174 [MIT krb5 KDC free() DoS]
- NOTE: reserved
+CAN-2005-1174 (MIT Kerberos 5 (krb5) 1.3 through 1.4.1 Key Distribution Center (KDC) ...)
+ {DSA-757-1}
TODO: check krb4
- krb5 1.3.6-4 (medium)
CAN-2004-1774 (Buffer overflow in the SDO_CODE_SIZE peocedure of the MD2 package ...)
@@ -4885,7 +5289,7 @@
NOTE: not-for-us (CalenderScript)
CAN-2005-1145 (** DISPUTED ** ...)
NOTE: not-for-us (CalenderScript)
-CAN-2005-1144 (popup.php in EasyPHPCalendar allows remote attackers to obtain ...)
+CAN-2005-1144 (popup.php in EasyPHPCalendar before 6.2.8 allows remote attackers to ...)
NOTE: not-for-us (EasyPHPCalender)
CAN-2005-1143 (Cross-site scripting (XSS) vulnerability in index.php in ...)
NOTE: not-for-us (EasyPHPCalender)
@@ -7126,7 +7530,7 @@
CAN-2005-0470 (Buffer overflow in wpa_supplicant before 0.2.7 allows remote attackers ...)
- wpasupplicant 0.3.8-1
CAN-2005-0469 (Buffer overflow in the slc_add_reply function in various BSD-based ...)
- {DSA-703-1 DSA-699-1 DSA-697-1}
+ {DSA-765-1 DSA-703-1 DSA-699-1 DSA-697-1}
- krb4 1.2.2-11.2
- krb5 1.3.6-2
- heimdal 0.6.3-10
@@ -8509,7 +8913,7 @@
NOTE: not-for-us (Microsoft)
CAN-2005-0052
NOTE: reserved
-CAN-2005-0051 (Windows XP SP1 and SP2 allows remote attackers to obtain sensitive ...)
+CAN-2005-0051 (The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows ...)
NOTE: not-for-us (Microsoft)
CAN-2005-0050 (The License Logging service for Windows NT Server, Windows 2000 ...)
NOTE: not-for-us (Microsoft)
@@ -10688,7 +11092,7 @@
NOTE: not-for-us (Microsoft)
CAN-2004-0474 (Help Center (HelpCtr.exe) may allow remote attackers to read or ...)
NOTE: not-for-us (Help Center (HelpCtr.exe))
-CAN-2004-0473 (Opera before 7.50 does not properly filter "-" characters that begin a ...)
+CAN-2004-0473 (Argument injection vulnerability in Opera before 7.50 does not ...)
NOTE: not-for-us (opera)
CAN-2004-0472
NOTE: rejected
@@ -10968,7 +11372,7 @@
NOTE: not-for-us (YaBB SE)
CAN-2004-0343 (Multiple SQL injection vulnerabilities in YaBB SE 1.5.4 through 1.5.5b ...)
NOTE: not-for-us (YaBB SE)
-CAN-2004-0342 (WFTPD Pro Server 3.21 Release 1 allows local users to cause a denial ...)
+CAN-2004-0342 (WFTPD Pro Server 3.21 Release 1, with the XeroxDocutech option ...)
NOTE: not-for-us (WFPTD)
CAN-2004-0341 (WFTPD Pro Server 3.21 Release 1 allocates memory for a command until a ...)
NOTE: not-for-us (WFPTD)
@@ -10984,7 +11388,7 @@
NOTE: not-for-us (602LAN SUITE)
CAN-2004-0334 (AXIS 2100 Network Camera allows remote attackers to bypass Basic ...)
NOTE: not-for-us (AXIS 2100)
-CAN-2004-0333 (Buffer overflow in the UUDeview package for WinZip 6.2 through WinZip ...)
+CAN-2004-0333 (Buffer overflow in the UUDeview package, as used in WinZip 6.2 through ...)
NOTE: not-for-us (WinZip)
CAN-2004-0332 (Extremail 1.5.9 does not check passwords correctly when they are all ...)
NOTE: not-for-us (extremail)
@@ -11006,7 +11410,7 @@
NOTE: not-for-us (confirm 0.70)
CAN-2004-0323 (Multiple SQL injection vulnerabilities in XMB 1.8 Final SP2 allow ...)
NOTE: not-for-us (xmb 1.8 final sp2)
-CAN-2004-0322 (Cross-site scripting (XSS) vulnerability in XMB 1.8 Final SP2 allows ...)
+CAN-2004-0322 (Multiple cross-site scripting (XSS) vulnerabilities in XMB 1.8 Final ...)
NOTE: not-for-us (xmb 1.8 final sp2)
CAN-2004-0321 (Team Factor 1.25 and earlier allows remote attackers to cause a denial ...)
NOTE: not-for-us (Team Factor)
@@ -11695,7 +12099,7 @@
CAN-2003-0989 (tcpdump before 3.8.1 allows remote attackers to cause a denial of ...)
{DSA-425}
- tcpdump 3.8.1
-CAN-2003-0987 (mod_digest for Apache does not properly verify the nonce of a client ...)
+CAN-2003-0987 (mod_digest for Apache before 1.3.31 does not properly verify the nonce ...)
- apache 1.3.29.0.2-5
CAN-2003-0986
NOTE: reserved
More information about the Secure-testing-commits
mailing list