[Secure-testing-commits] r6997 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Wed Oct 17 19:51:26 UTC 2007


Author: nion
Date: 2007-10-17 19:51:25 +0000 (Wed, 17 Oct 2007)
New Revision: 6997

Modified:
   data/CVE/list
Log:
openserv vuln is unimportant, see 446956

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-17 17:53:48 UTC (rev 6996)
+++ data/CVE/list	2007-10-17 19:51:25 UTC (rev 6997)
@@ -3,7 +3,7 @@
 CVE-2007-5470 (Microsoft Expression Media stores the catalog password in cleartext in ...)
 	NOT-FOR-US: Microsoft Expression Media
 CVE-2007-5469 (OpenSER 1.2.2 does not verify the Digest authentication header URI ...)
-	- openser <unfixed> (low; bug #446956)
+	- openser <unfixed> (unimportant; bug #446956)
 	NOTE: should be only "exploitable" in local network with untrusted users
 CVE-2007-5468 (Cisco CallManager 5.1.1.3000-5 does not verify the Digest ...)
 	NOT-FOR-US: Cisco




More information about the Secure-testing-commits mailing list