thr3ads.net - Secure testing commits - [Secure-testing-commits] r9492

If this information is useful, please help other people find it:
Share via:

white at alioth.debian.org

2008-Aug-02 07:19 UTC

[Secure-testing-commits] r9492 - data/CVE

Author: white
Date: 2008-08-02 07:19:09 +0000 (Sat, 02 Aug 2008)
New Revision: 9492

Modified:
   data/CVE/list
Log:
pixelpost not affected, needs register_globals to pass variable

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-08-02 04:02:31 UTC (rev 9491)
+++ data/CVE/list	2008-08-02 07:19:09 UTC (rev 9492)
@@ -111,7 +111,7 @@
 CVE-2008-3366 (SQL injection vulnerability in story.php in Pligg CMS Beta 9.9.0
...)
 	NOT-FOR-US: Pligg CMS
 CVE-2008-3365 (Directory traversal vulnerability in index.php in Pixelpost
1.7.1 on ...)
-	TODO: check
+	- pixelpost <not-affected> (Exploit relies on register_globals to be on)
 CVE-2008-3364 (Buffer overflow in the ObjRemoveCtrl Class ActiveX control in
...)
 	NOT-FOR-US: Trend Micro OfficeScan Corp Edition Web-Deployment
 CVE-2008-3363 (Directory traversal vulnerability in user_portal.php in the
Dokeos ...)

Secure testing commits - Aug 2008 - r9492 - data/CVE

[Secure-testing-commits] r9492 - data/CVE