Author: joeyh Date: 2005-05-01 03:48:47 +0000 (Sun, 01 May 2005) New Revision: 941 Modified: sarge-checks/CAN/list Log: process Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-05-01 03:21:33 UTC (rev 940) +++ sarge-checks/CAN/list 2005-05-01 03:48:47 UTC (rev 941) @@ -1,47 +1,46 @@ -begin claimed by joeyh CAN-2005-1364 (Multiple SQL injection vulnerabilities in MetaBid Auctions allow ...) - TODO: check + NOTE: not-for-us (MetaBid Auctions) CAN-2005-1363 (Multiple SQL injection vulnerabilities in MetaCart 2.0 for PayFlow ...) - TODO: check + NOTE: not-for-us (MetaCart) CAN-2005-1362 (Multiple SQL injection vulnerabilities in MetaCart 2.0 for Paypal ...) - TODO: check + NOTE: not-for-us (MetaCart) CAN-2005-1361 (Multiple SQL injection vulnerabilities in MetaCart e-Shop 8.0 allow ...) - TODO: check + NOTE: not-for-us (MetaCart) CAN-2005-1360 (PHP remote code injection vulnerability in error.php in GrayCMS 1.1 ...) - TODO: check + NOTE: not-for-us (GrayCMS) CAN-2005-1359 (Cross-site scripting (XSS) vulnerability in text.cgi script allows ...) - TODO: check + NOTE: not-for-us (text.cgi) CAN-2005-1358 (text.cgi script allows remote attackers to execute arbitrary commands ...) - TODO: check + NOTE: not-for-us (text.cgi) CAN-2005-1357 (text.cgi script allows remote attackers to read arbitrary files via a ...) - TODO: check + NOTE: not-for-us (text.cgi) CAN-2005-1356 (Cross-site scripting (XSS) vulnerability in includer.cgi script allows ...) - TODO: check + NOTE: not-for-us (includer.cgi) CAN-2005-1355 (includer.cgi in The Includer allows remote attackers to read arbitrary ...) - TODO: check + NOTE: not-for-us (includer.cgi) CAN-2005-1354 (The forum.pl script allows remote attackers to execute arbitrary ...) - TODO: check + NOTE: not-for-us (forum.pl) CAN-2005-1353 (The forum.pl script allows remote attackers to read arbitrary files ...) - TODO: check + NOTE: not-for-us (forum.pl) CAN-2005-1352 (Cross-site scripting (XSS) vulnerability in the ad.cgi script allows ...) - TODO: check + NOTE: not-for-us (ad.cgi) CAN-2005-1351 (The ad.cgi script allows remote attackers to execute arbitrary ...) - TODO: check + NOTE: not-for-us (ad.cgi) CAN-2005-1350 (The ad.cgi script allows remote attackers to read arbitrary files via ...) - TODO: check + NOTE: not-for-us (ad.cgi) CAN-2005-1349 (Buffer overflow in Convert-UUlib (Convert::UUlib) before 1.051 allows ...) - TODO: check + - libconvert-uulib-perl 1.05.1 CAN-2005-1348 (Buffer overflow in HTTPMail in MailEnable Enterprise 1.04 and earlier ...) - TODO: check + NOTE: not-for-us (MailEnable) CAN-2005-1347 (Adobe Acrobat reader (AcroRd32.exe) 6.0 and earlier allows remote ...) - TODO: check + NOTE: not-for-us (acrobat) CAN-2005-1346 (Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 ...) - TODO: check + NOTE: not-for-us (Symantec) CAN-2005-1345 (Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it ...) - TODO: check + - squid (unfixed; bug filed) CAN-2005-1344 (Buffer overflow in htdigest in Apache 2.0.52 may allow attackers to ...) - TODO: check -end claimed by joeyh + - apache2 (unfixed; bug filed) + TODO: check htaccess in apache 1 CAN-2005-1343 NOTE: reserved CAN-2005-1342