[Secure-testing-commits] r1495 - data/CAN
Joey Hess
joeyh at costa.debian.org
Sat Jul 30 03:59:57 UTC 2005
Author: joeyh
Date: 2005-07-30 03:59:53 +0000 (Sat, 30 Jul 2005)
New Revision: 1495
Modified:
data/CAN/list
Log:
claim more
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-07-30 03:51:07 UTC (rev 1494)
+++ data/CAN/list 2005-07-30 03:59:53 UTC (rev 1495)
@@ -127,46 +127,45 @@
NOTE: reserved
CAN-2005-2336
NOTE: reserved
-begin claimed by joeyh
CAN-2005-2334 (Y.SAK allows remote attackers to execute arbitrary commands via shell ...)
- TODO: check
+ NOTE: not-for-us (Y.SAK)
CAN-2005-2333 (Cross-site scripting (XSS) vulnerability in smilies_popup.php in ...)
- TODO: check
+ NOTE: not-for-us (smilies_popup.php)
CAN-2005-2332 (Cross-site scripting (XSS) vulnerability in PHPPageProtect 1.0.0a ...)
- TODO: check
+ NOTE: not-for-us (PHPPageProtect)
CAN-2005-2331 (PHP remote file inclusion vulnerability in display.php in MooseGallery ...)
- TODO: check
+ NOTE: not-for-us (MooseGallery)
CAN-2005-2330 (Directory traversal vulnerability in update.php in osCommerce 2.2 ...)
- TODO: check
+ NOTE: not-for-us (osCommerce)
CAN-2005-2329 (MRV Communications In-Reach LX-8000S, LX-4000S, and LX-1000S 3.5.0, ...)
- TODO: check
+ NOTE: not-for-us (MRV Communications In-Reach LX-8000S, LX-4000S, and LX-1000S)
CAN-2005-2328 (PHP remote file inclusion vulnerability in im.php in Laffer 0.3.2.6 ...)
- TODO: check
+ NOTE: not-for-us (Laffer)
CAN-2005-2327 (Cross-site scripting (XSS) vulnerability in e107 0.617 and earlier ...)
- TODO: check
+ NOTE: not-for-us (e107)
CAN-2005-2326 (Cross-site scripting (XSS) vulnerability in Clever Copy 2.0 and 2.0a ...)
- TODO: check
+ NOTE: not-for-us (Clever Copy)
CAN-2005-2325 (Clever Copy 2.0 and 2.0a allows remote attackers to obtain the full ...)
- TODO: check
+ NOTE: not-for-us (Clever Copy)
CAN-2005-2324 (Cross-site scripting (XSS) vulnerability in Clever Copy 2.0 and 2.0a ...)
- TODO: check
+ NOTE: not-for-us (Clever Copy)
CAN-2005-2323 (Multiple SQL injection vulnerabilities in Class-1 Forum 0.24.4 and ...)
- TODO: check
+ NOTE: not-for-us (Class-1 Forum)
CAN-2005-2322 (Cross-site scripting (XSS) vulnerability in Class-1 Forum 0.24.4 and ...)
- TODO: check
+ NOTE: not-for-us (Class-1 Forum)
CAN-2005-2321 (PHP remote file inclusion vulnerability in CaLogic 1.2.2 allows remote ...)
- TODO: check
+ NOTE: not-for-us (CaLogic)
CAN-2005-2319 (PHP remote file include vulnerability in Yawp library 1.0.6 and ...)
- TODO: check
+ NOTE: not-for-us (Yawp)
CAN-2005-2318 (Cross-site scripting (XSS) vulnerability in showerr.asp in DVBBS 7.1 ...)
- TODO: check
-end claimed by joeyh
+ NOTE: not-for-us (DVBBS)
CAN-2005-2317 (Shorewall 2.4.x before 2.4.1, 2.2.x before 2.2.5, and 2.0.x before ...)
- shorewall 2.4.1-2 (medium)
CAN-2005-2316
NOTE: reserved
CAN-2005-2315
NOTE: reserved
+begin claimed by joeyh
CAN-2005-2314 (inc.login.php in PHPsFTPd 0.2 through 0.4 allows remote attackers to ...)
TODO: check
CAN-2005-2313 (Check Point SecuRemote NG with Application Intelligence R54 allows ...)
@@ -223,6 +222,7 @@
TODO: check
CAN-2005-2287 (SoftiaCom wMailServer 1.0 and 2.0 allows remote attackers to cause a ...)
TODO: check
+end claimed by joeyh
CAN-2005-2286 (WebEOC before 6.0.2 does not properly check user authorization, which ...)
TODO: check
CAN-2005-2285 (WebEOC before 6.0.2 stores sensitive information in locations such as ...)
More information about the Secure-testing-commits
mailing list