[Secure-testing-commits] r1190 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Thu, 02 Jun 2005 12:22:00 +0000
Author: jmm-guest
Date: 2005-06-02 12:21:57 +0000 (Thu, 02 Jun 2005)
New Revision: 1190
Modified:
sarge-checks/CAN/list
Log:
ettercap format string issue
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-06-02 09:57:30 UTC (rev 1189)
+++ sarge-checks/CAN/list 2005-06-02 12:21:57 UTC (rev 1190)
@@ -32,7 +32,7 @@
CAN-2005-1797 (The design of Advanced Encryption Standard (AES), aka Rijndael, allows ...)
NOTE: Cryptographic attack on AES, cannot be fixed
CAN-2005-1796 (Format string vulnerability in the curses_msg function in the Ncurses ...)
- TODO: check
+ - ettercap (unfixed; bug #311615)
CAN-2005-1795 (The filecopy function in misc.c in Clam AntiVirus (ClamAV) before ...)
NOTE: not-for-us (ClamAV on Mac OS X)
CAN-2005-1794 (Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 ...)
@@ -147,7 +147,7 @@
NOTE: not-for-us (Intra Forum)
begin claimed by jmm
CAN-2004-2121 (Multiple directory traversal vulnerabilities in Borland Web Server ...)
- TODO: check
+ NOTE: not-for-us (Borland Web Server)
CAN-2004-2120 (Reptile Web Server allows remote attackers to cause a denial of ...)
TODO: check
CAN-2004-2119 (Cross-site scripting (XSS) vulnerability in Tiny Server 1.1 allows ...)