[Secure-testing-commits] r941 - sarge-checks/CAN

Joey Hess joeyh@costa.debian.org
Sun, 01 May 2005 03:48:50 +0000 

Author: joeyh
Date: 2005-05-01 03:48:47 +0000 (Sun, 01 May 2005)
New Revision: 941

Modified:
   sarge-checks/CAN/list
Log:
process

Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-05-01 03:21:33 UTC (rev 940)
+++ sarge-checks/CAN/list	2005-05-01 03:48:47 UTC (rev 941)
@@ -1,47 +1,46 @@
-begin claimed by joeyh
 CAN-2005-1364 (Multiple SQL injection vulnerabilities in MetaBid Auctions allow ...)
-	TODO: check
+	NOTE: not-for-us (MetaBid Auctions)
 CAN-2005-1363 (Multiple SQL injection vulnerabilities in MetaCart 2.0 for PayFlow ...)
-	TODO: check
+	NOTE: not-for-us (MetaCart)
 CAN-2005-1362 (Multiple SQL injection vulnerabilities in MetaCart 2.0 for Paypal ...)
-	TODO: check
+	NOTE: not-for-us (MetaCart)
 CAN-2005-1361 (Multiple SQL injection vulnerabilities in MetaCart e-Shop 8.0 allow ...)
-	TODO: check
+	NOTE: not-for-us (MetaCart)
 CAN-2005-1360 (PHP remote code injection vulnerability in error.php in GrayCMS 1.1 ...)
-	TODO: check
+	NOTE: not-for-us (GrayCMS)
 CAN-2005-1359 (Cross-site scripting (XSS) vulnerability in text.cgi script allows ...)
-	TODO: check
+	NOTE: not-for-us (text.cgi)
 CAN-2005-1358 (text.cgi script allows remote attackers to execute arbitrary commands ...)
-	TODO: check
+	NOTE: not-for-us (text.cgi)
 CAN-2005-1357 (text.cgi script allows remote attackers to read arbitrary files via a ...)
-	TODO: check
+	NOTE: not-for-us (text.cgi)
 CAN-2005-1356 (Cross-site scripting (XSS) vulnerability in includer.cgi script allows ...)
-	TODO: check
+	NOTE: not-for-us (includer.cgi)
 CAN-2005-1355 (includer.cgi in The Includer allows remote attackers to read arbitrary ...)
-	TODO: check
+	NOTE: not-for-us (includer.cgi)
 CAN-2005-1354 (The forum.pl script allows remote attackers to execute arbitrary ...)
-	TODO: check
+	NOTE: not-for-us (forum.pl)
 CAN-2005-1353 (The forum.pl script allows remote attackers to read arbitrary files ...)
-	TODO: check
+	NOTE: not-for-us (forum.pl)
 CAN-2005-1352 (Cross-site scripting (XSS) vulnerability in the ad.cgi script allows ...)
-	TODO: check
+	NOTE: not-for-us (ad.cgi)
 CAN-2005-1351 (The ad.cgi script allows remote attackers to execute arbitrary ...)
-	TODO: check
+	NOTE: not-for-us (ad.cgi)
 CAN-2005-1350 (The ad.cgi script allows remote attackers to read arbitrary files via ...)
-	TODO: check
+	NOTE: not-for-us (ad.cgi)
 CAN-2005-1349 (Buffer overflow in Convert-UUlib (Convert::UUlib) before 1.051 allows ...)
-	TODO: check
+	- libconvert-uulib-perl 1.05.1
 CAN-2005-1348 (Buffer overflow in HTTPMail in MailEnable Enterprise 1.04 and earlier ...)
-	TODO: check
+	NOTE: not-for-us (MailEnable)
 CAN-2005-1347 (Adobe Acrobat reader (AcroRd32.exe) 6.0 and earlier allows remote ...)
-	TODO: check
+	NOTE: not-for-us (acrobat)
 CAN-2005-1346 (Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 ...)
-	TODO: check
+	NOTE: not-for-us (Symantec)
 CAN-2005-1345 (Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it ...)
-	TODO: check
+	- squid (unfixed; bug filed)
 CAN-2005-1344 (Buffer overflow in htdigest in Apache 2.0.52 may allow attackers to ...)
-	TODO: check
-end claimed by joeyh
+	- apache2 (unfixed; bug filed)
+	TODO: check htaccess in apache 1
 CAN-2005-1343
 	NOTE: reserved
 CAN-2005-1342