[Secure-testing-commits] r1191 - sarge-checks/CAN

Moritz Muehlenhoff jmm-guest@costa.debian.org
Thu, 02 Jun 2005 12:35:44 +0000 

Author: jmm-guest
Date: 2005-06-02 12:35:41 +0000 (Thu, 02 Jun 2005)
New Revision: 1191

Modified:
   sarge-checks/CAN/list
Log:
More not-for-us.


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-06-02 12:21:57 UTC (rev 1190)
+++ sarge-checks/CAN/list	2005-06-02 12:35:41 UTC (rev 1191)
@@ -149,68 +149,67 @@
 CAN-2004-2121 (Multiple directory traversal vulnerabilities in Borland Web Server ...)
 	NOTE: not-for-us (Borland Web Server)
 CAN-2004-2120 (Reptile Web Server allows remote attackers to cause a denial of ...)
-	TODO: check
+	NOTE: not-for-us (Reptile Web Server)
 CAN-2004-2119 (Cross-site scripting (XSS) vulnerability in Tiny Server 1.1 allows ...)
-	TODO: check
+	NOTE: not-for-us (Tiny Server)
 CAN-2004-2118 (Tiny Server 1.1 allows remote attackers to cause a denial of service ...)
-	TODO: check
+	NOTE: not-for-us (Tiny Server)
 CAN-2004-2117 (Tiny Server 1.1 allows remote attackers to cause a denial of service ...)
-	TODO: check
+	NOTE: not-for-us (Tiny Server)
 CAN-2004-2116 (Directory traversal vulnerability in Tiny Server 1.1 allows remote ...)
-	TODO: check
+	NOTE: not-for-us (Tiny Server)
 CAN-2004-2115 (Multiple cross-site scripting (XSS) vulnerabilities in Oracle HTTP ...)
-	TODO: check
+	NOTE: not-for-us (Oracle)
 CAN-2004-2114 (Stack-based and heap-based buffer overflows in ProxyNow! 2.75 and ...)
-	TODO: check
+	NOTE: not-for-us (ProxyNow!)
 CAN-2004-2113 (Cross-site scripting (XSS) vulnerability in BremsServer 1.2.4 allows ...)
-	TODO: check
+	NOTE: not-for-us (BremsServer)
 CAN-2004-2112 (Directory traversal vulnerability in BremsServer 1.2.4 allows remote ...)
-	TODO: check
+	NOTE: not-for-us (BremsServer)
 CAN-2004-2111 (Stack-based buffer overflow in the site chmod command in Serv-U FTP ...)
-	TODO: check
+	NOTE: not-for-us (Serv-U FTP Server)
 CAN-2004-2110 (SQL injection vulnerability in register.php in Phorum before 3.4.6 ...)
-	TODO: check
+	NOTE: not-for-us (Phorum)
 CAN-2004-2109 (Multiple cross-site scripting (XSS) vulnerabilities in (1) ...)
-	TODO: check
+	NOTE: not-for-us (Q-Shop)
 CAN-2004-2108 (Multiple SQL injection vulnerabilities in QuadComm Q-Shop allow remote ...)
-	TODO: check
+	NOTE: not-for-us (Q-Shop)
 CAN-2004-2107 (Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not ...)
-	TODO: check
+	NOTE: not-for-us (Finjan SurfinGate)
 CAN-2004-2106 (Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote ...)
-	TODO: check
+	NOTE: not-for-us (Novell NetWare)
 CAN-2004-2105 (The webacc servlet in Novell NetWare Enterprise Web Server 5.1 and 6.0 ...)
-	TODO: check
+	NOTE: not-for-us (Novell NetWare)
 CAN-2004-2104 (Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote ...)
-	TODO: check
+	NOTE: not-for-us (Novell NetWare)
 CAN-2004-2103 (Cross-site scripting (XSS) vulnerability in Novell NetWare Enterprise ...)
-	TODO: check
+	NOTE: not-for-us (Novell NetWare)
 CAN-2004-2102 (Cross-site scripting (XSS) vulnerability in FREESCO 2.05, a modified ...)
-	TODO: check
+	NOTE: not-for-us (Freesco)
 CAN-2004-2101 (The sysinfo script in GeoHttpServer allows remote attackers to cause a ...)
-	TODO: check
+	NOTE: not-for-us (GeoHttpServer)
 CAN-2004-2100 (GeoHttpServer, when configured to authenticate users, allows remote ...)
-	TODO: check
+	NOTE: not-for-us (GeoHttpServer)
 CAN-2004-2099 (Buffer overflow in Need for Speed Hot Pursuit 2.0 client (NFSHP2), ...)
-	TODO: check
+	NOTE: not-for-us (Need for Speed game)
 CAN-2004-2098 (Cross-site scripting (XSS) vulnerability in the banner engine (TBE) ...)
-	TODO: check
+	NOTE: not-for-us (Banner engine)
 CAN-2004-2097 (Multiple scripts on SuSE Linux 9.0 allow local users to overwrite ...)
 	TODO: check
 CAN-2004-2096 (Cross-site scripting (XSS) vulnerability in Mephistoles httpd 0.6.0 ...)
-	TODO: check
+	NOTE: not-for-us (Mephistoles)
 CAN-2004-2095 (Honeyd before 0.8 replies to TCP packets with the SYN and RST flags ...)
-	TODO: check
+        - honeyd 0.8-1
 CAN-2004-2094 (Cross-site scripting (XSS) vulnerability in WebcamXP 1.06.945 allows ...)
-	TODO: check
+	NOTE: not-for-us (WebcamXP)
 CAN-2003-1216 (SQL injection vulnerability in search.php for phpBB 2.0.6 and earlier ...)
-	TODO: check
+        - phpbb2 2.0.8a-1
 CAN-2003-1215 (SQL injection vulnerability in groupcp.php for phpBB 2.0.6 and earlier ...)
-	TODO: check
+        - phpbb2 2.0.8a-1
 CAN-2002-1665 (Buffer overflow in Yahoo! Messenger before February 2002 allows remote ...)
-	TODO: check
+	NOTE: not-for-us (Yahoo Messenger)
 CAN-2002-1664 (Yahoo! Messenger before February 2002 allows remote attackers to add ...)
-	TODO: check
-end claimed by jmm
+	NOTE: not-for-us (Yahoo Messenger)
 CAN-2005-XXXX [Unspecified issue in moodle's admin/delete.php]
 	- moodle 1.4.4.dfsg.1-3
 CAN-2005-XXXX [Minor DoS condition in mutt due to preditable tempfiles]