thr3ads.net - Secure testing commits - [Secure-testing-commits] r405

If this information is useful, please help other people find it:
Share via:
Joey Hess
2005-Feb-14 20:14 UTC
[Secure-testing-commits] r405 - sarge-checks/CAN

Author: joeyh
Date: 2005-02-14 21:14:17 +0100 (Mon, 14 Feb 2005)
New Revision: 405

Modified:
   sarge-checks/CAN/list
Log:
automatic CAN database update

Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list	2005-02-14 17:24:09 UTC (rev 404)
+++ sarge-checks/CAN/list	2005-02-14 20:14:17 UTC (rev 405)
@@ -1,8 +1,268 @@
-CAN-2005-0365
+CAN-2005-0383 (Trend Micro Control Manager 3.0 Enterprise Edition allows remote
...)
+	TODO: check
+CAN-2005-0382 (Breed patch 1 and earlier allows remote attackers to cause a
denial of ...)
+	TODO: check
+CAN-2005-0381 (Cross-site scripting (XSS) vulnerability in f.aspx in forumKIT
1.0 ...)
+	TODO: check
+CAN-2005-0380 (Multiple PHP remote code injection vulnerabilities in (1) ...)
+	TODO: check
+CAN-2005-0379 (Multiple directory traversal vulnerabilities in ZeroBoard 4.1pl5
and ...)
+	TODO: check
+CAN-2005-0378 (Multiple cross-site scripting (XSS) vulnerabilities in Horde 3.0
allow ...)
+	TODO: check
+CAN-2005-0377 (SQL injection vulnerability in imageview.php for SGallery 1.01
allows ...)
+	TODO: check
+CAN-2005-0376 (PHP remote code injection vulnerability in SGallery 1.01 allows
local ...)
+	TODO: check
+CAN-2005-0375 (imageview.php in SGallery 1.01 allows remote attackers to obtain
...)
+	TODO: check
+CAN-2005-0374 (Cross-site scripting (XSS) vulnerability in Bitboard 2.5 and
earlier ...)
+	TODO: check
+CAN-2005-0373 (Buffer overflow in digestmda5.c in Cyrus-SASL before 2.1.18-r1
allows ...)
+	TODO: check
+CAN-2005-0372
+	NOTE: reserved
+CAN-2005-0371 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0
and ...)
+	TODO: check
+CAN-2005-0370 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0
and ...)
+	TODO: check
+CAN-2005-0369 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0
earlier ...)
+	TODO: check
+CAN-2005-0368 (Multiple SQL injection vulnerabilities in CMScore allow remote
...)
+	TODO: check
+CAN-2005-0367 (Multiple directory traversal vulnerabilities in ArGoSoft Mail
Server ...)
+	TODO: check
+CAN-2005-0366 (The integrity check feature in OpenPGP, when handling a message
that ...)
+	TODO: check
+CAN-2005-0364 (Unknown vulnerability in BIND 9.2.0 in HP-UX B.11.00, B.11.11,
and ...)
+	TODO: check
+CAN-2005-0361
+	NOTE: reserved
+CAN-2005-0360
+	NOTE: reserved
+CAN-2005-0359
+	NOTE: reserved
+CAN-2005-0358
+	NOTE: reserved
+CAN-2005-0357
+	NOTE: reserved
+CAN-2005-0356
+	NOTE: reserved
+CAN-2005-0355
+	NOTE: reserved
+CAN-2005-0354
+	NOTE: reserved
+CAN-2005-0353
+	NOTE: reserved
+CAN-2005-0352
+	NOTE: reserved
+CAN-2005-0351
+	NOTE: reserved
+CAN-2005-0350 (Heap-based buffer overflow in multiple F-Secure Anti-Virus and
...)
+	TODO: check
+CAN-2005-0349 (The production release of the UniversalAgent for UNIX in
BrightStor ...)
+	TODO: check
+CAN-2004-9999
+	NOTE: rejected
+	TODO: check
+CAN-2004-9998
+	NOTE: rejected
+	TODO: check
+CAN-2004-1486 (Unknown vulnerability in Serviceguard A.11.13 through A.11.16.00
and ...)
+	TODO: check
+CAN-2004-1485 (Buffer overflow in the TFTP client in InetUtils 1.4.2 allows
remote ...)
+	TODO: check
+CAN-2004-1484 (Format string vulnerability in the _msg function in error.c in
socat ...)
+	TODO: check
+CAN-2004-1483 (Multiple unknown vulnerabilities in the ActiveX and HTML file
browsers ...)
+	TODO: check
+CAN-2004-1482 (The sbuf_getmsg function in BNC incorrectly handles backspace
...)
+	TODO: check
+CAN-2004-1481 (Integer overflow in pnen3260.dll in RealPlayer 8 through 10.5
...)
+	TODO: check
+CAN-2004-1480 (Unknown vulnerability in the management station in HP
StorageWorks ...)
+	TODO: check
+CAN-2004-1479 (The Microsoft IIS Connector in JRun 4.0 and Macromedia
ColdFusion MX ...)
+	TODO: check
+CAN-2004-1478 (JRun 4.0 does not properly generate and handle the JSESSIONID,
which ...)
+	TODO: check
+CAN-2004-1477 (Cross-site scripting (XSS) vulnerability in the Management
Console in ...)
+	TODO: check
+CAN-2004-1476 (Stack-based buffer overflow in the VideoCD (VCD) code in
xine-lib ...)
+	TODO: check
+CAN-2004-1475 (Multiple stack-based buffer overflows in xine-lib 1-rc2 through
1-rc5 ...)
+	TODO: check
+CAN-2004-1474 (Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R
running ...)
+	TODO: check
+CAN-2004-1473 (Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R
running ...)
+	TODO: check
+CAN-2004-1472 (Symantec Enterprise Firewall/VPN Appliances 100, 200, and 200R
running ...)
+	TODO: check
+CAN-2004-1471 (Format string vulnerability in wrapper.c in CVS 1.12.x through
1.12.8, ...)
+	TODO: check
+CAN-2004-1470 (CRLF injection vulnerability in SnipSnap 0.5.2a, and other
versions ...)
+	TODO: check
+CAN-2004-1469 (Format string vulnerability in the log function in SUS 2.0.2,
and ...)
+	TODO: check
+CAN-2004-1468 (The web mail functionality in Usermin 1.x and Webmin 1.x allows
remote ...)
+	TODO: check
+CAN-2004-1467 (Multiple cross-site scripting (XSS) vulnerabilities in
eGroupWare ...)
+	TODO: check
+CAN-2004-1466 (The set_time_limit function in Gallery before 1.4.4_p2 deletes
...)
+	TODO: check
+CAN-2004-1465 (Multiple buffer overflows in WinZip 9.0 and earlier may allow
...)
+	TODO: check
+CAN-2004-1464 (Cisco IOS 12.2(15) and earlier allows remote attackers to cause
a ...)
+	TODO: check
+CAN-2004-1463 (Unknown vulnerability in the PageEditor in MoinMoin 1.2.2 and
earlier, ...)
+	TODO: check
+CAN-2004-1462 (Unknown vulnerability in MoinMoin 1.2.2 and earlier allows
remote ...)
+	TODO: check
+CAN-2004-1461 (Cisco Secure Access Control Server (ACS) 3.2(3) and earlier
spawns a ...)
+	TODO: check
+CAN-2004-1460 (Cisco Secure Access Control Server (ACS) 3.2(3) and earlier,
when ...)
+	TODO: check
+CAN-2004-1459 (Cisco Secure Access Control Server (ACS) 3.2, when configured as
a ...)
+	TODO: check
+CAN-2004-1458 (The CSAdmin web administration interface for Cisco Secure Access
...)
+	TODO: check
+CAN-2004-1457 (The Virtual Private Network (VPN) capability in Novell
Bordermanager ...)
+	TODO: check
+CAN-2004-1456 (filediff in CVStrac allows remote attackers to execute arbitrary
...)
+	TODO: check
+CAN-2004-1455 (Stack-based buffer overflow in Xine-lib-rc5 in xine-lib 1_rc5-r2
and ...)
+	TODO: check
+CAN-2004-1454 (Cisco IOS 12.0S, 12.2, and 12.3, with Open Shortest Path First
(OSPF) ...)
+	TODO: check
+CAN-2004-1453 (GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before
2.3.3.20040420, ...)
+	TODO: check
+CAN-2004-1452 (Tomcat before 5.0.27-r3 in Gentoo Linux sets the default
permissions ...)
+	TODO: check
+CAN-2004-1451 (Mozilla before 1.6 does not display the entire URL in the status
bar ...)
+	TODO: check
+CAN-2004-1450 (Unknown vulnerability in LiveConnect in Mozilla 1.7 beta allows
remote ...)
+	TODO: check
+CAN-2004-1449 (Mozilla before 1.7, Firefox before 0.9, and Thunderbird before
0.7 ...)
+	TODO: check
+CAN-2004-1448 (Jetbox One 2.0.8 and possibly other versions allow remote
attackers ...)
+	TODO: check
+CAN-2004-1447 (Jetbox One 2.0.8 and possibly other versions stores passwords in
the ...)
+	TODO: check
+CAN-2004-1446 (Unknown vulnerability in ScreenOS in Juniper Networks NetScreen
...)
+	TODO: check
+CAN-2004-1445 (A race condition in nessus-adduser in Nessus 2.0.11 and possibly
...)
+	TODO: check
+CAN-2004-1444 (Directory traversal vulnerability in Roundup 0.6.4 and earlier
allows ...)
+	TODO: check
+CAN-2004-1443 (Cross-site scripting (XSS) vulnerability in the inline MIME
viewer in ...)
+	TODO: check
+CAN-2004-1442 (Cross-site scripting (XSS) vulnerability in db2www CGI
interpreter in ...)
+	TODO: check
+CAN-2004-1441 (Cross-site scripting (XSS) vulnerability in icq.cgi in Board
Power ...)
+	TODO: check
+CAN-2004-1440 (Multiple heap-based buffer overflows in the modpow function in
PuTTY ...)
+	TODO: check
+CAN-2004-1439 (Buffer overflow in BlackJumboDog 3.x allows remote attackers to
...)
+	TODO: check
+CAN-2004-1438 (The mod_authz_svn Apache module for Subversion 1.0.4-r1 and
earlier ...)
+	TODO: check
+CAN-2004-1437 (Multiple buffer overflows in the digest authentication
functionality ...)
+	TODO: check
+CAN-2004-1436 (The Transaction Language 1 (TL1) login interface in Cisco ONS
15327 ...)
+	TODO: check
+CAN-2004-1435 (Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454
SDH, ...)
+	TODO: check
+CAN-2004-1434 (Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454
SDH, ...)
+	TODO: check
+CAN-2004-1433 (Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454
SDH, ...)
+	TODO: check
+CAN-2004-1432 (Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454
SDH, ...)
+	TODO: check
+CAN-2004-1431 (FormMail.php 5.0, and possibly other versions, allows remote
attackers ...)
+	TODO: check
+CAN-2004-1430 (SQL injection vulnerability in Arcade.php in IbProArcade allows
remote ...)
+	TODO: check
+CAN-2004-1429 (ArGoSoft FTP 1.4.2.4 and earlier does not limit the number of
times ...)
+	TODO: check
+CAN-2004-1428 (ArGoSoft FTP before 1.4.2.1 generates an error message if the
user ...)
+	TODO: check
+CAN-2004-1427 (PHP remote code injection vulnerability in main.inc in KorWeblog
...)
+	TODO: check
+CAN-2004-1426 (Directory traversal vulnerability in index.php in KorWeblog
1.6.2-cvs ...)
+	TODO: check
+CAN-2004-1425 (Directory traversal vulnerability in file.php in Moodle 1.4.2
and ...)
+	TODO: check
+CAN-2004-1424 (Cross-site scripting (XSS) vulnerability in Moodle 1.4.2 and
earlier ...)
+	TODO: check
+CAN-2004-1423 (Multiple PHP remote code injection vulnerabilities in (1)
calendar.php ...)
+	TODO: check
+CAN-2004-1422 (WHM AutoPilot 2.4.6.5 and earlier allows remote attackers to
gain ...)
+	TODO: check
+CAN-2004-1421 (Multiple PHP remote code injection vulnerabilities (1)
step_one.php, ...)
+	TODO: check
+CAN-2004-1420 (Multiple cross-site scripting (XSS) vulnerabilities in
header.php in ...)
+	TODO: check
+CAN-2004-1419 (PHP remote code injection vulnerability in ZeroBoard 4.1pl4 and
...)
+	TODO: check
+CAN-2004-1418 (Cross-site scripting (XSS) vulnerability in WPKontakt 3.0.1 and
...)
+	TODO: check
+CAN-2004-1417 (Cross-site scripting (XSS) vulnerability in login.php in
PsychoStats ...)
+	TODO: check
+CAN-2004-1416 (pnxr3260.dll in the RealOne 2.0 build 6.0.11.868 browser plugin,
as ...)
+	TODO: check
+CAN-2004-1415 (SQL injection vulnerability in (1) disp_album.php and possibly
(2) ...)
+	TODO: check
+CAN-2004-1414 (Gadu-Gadu 6.1 build 156 allows remote attackers to cause a
denial of ...)
+	TODO: check
+CAN-2004-1413 (Multiple SQL injection vulnerabilities in Kayako eSupport 2.x
allow ...)
+	TODO: check
+CAN-2004-1412 (Cross-site scripting (XSS) vulnerability in index.php in Kayako
...)
+	TODO: check
+CAN-2004-1411 (Gadu-Gadu build 155 and earlier allows remote attackers to cause
a ...)
+	TODO: check
+CAN-2004-1410 (Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155
and ...)
+	TODO: check
+CAN-2004-1409 (Multiple cross-site scripting vulnerabilities in Image Gallery
Web ...)
+	TODO: check
+CAN-2004-1408 (The addImage method for admin.class.php in Image Gallery Web
...)
+	TODO: check
+CAN-2004-1407 (Multiple directory traversal vulnerabilities in singapore Image
...)
+	TODO: check
+CAN-2004-1406 (SQL injection vulnerability in ikonboard.cgi in Ikonboard 3.1.0
...)
+	TODO: check
+CAN-2004-1405 (MediaWiki 1.3.8 and earlier, when used with Apache mod_mime,
does not ...)
+	TODO: check
+CAN-2004-1404 (Attachment Mod 2.3.10 module for phpBB, when used with Apache
...)
+	TODO: check
+CAN-2004-1403 (PHP remote code injection vulnerability in index.php in GNUBoard
3.39 ...)
+	TODO: check
+CAN-2004-1402 (SQL injection vulnerability in iWebNegar allows remote attackers
to ...)
+	TODO: check
+CAN-2004-1401 (SQL injection vulnerability in verify.asp in Asp-rider allows
remote ...)
+	TODO: check
+CAN-2004-1400 (The control panel in ASP Calendar does not require
authentication to ...)
+	TODO: check
+CAN-2004-1399 (Directory traversal vulnerability in the Attachment module
2.3.10 and ...)
+	TODO: check
+CAN-2004-1398 (Format string vulnerability in TDIXSupport in Roxio Toast on Mac
OS X ...)
+	TODO: check
+CAN-2004-1397 (Cross-site scripting (XSS) vulnerability in UseModWiki 1.0
allows ...)
+	TODO: check
+CAN-2004-1396 (Winamp 5.07 and possibly other versions, allows remote attackers
to ...)
+	TODO: check
+CAN-2004-1395 (The Lithtech engine, as used in (1) Contract Jack 1.1 and
earlier, (2) ...)
+	TODO: check
+CAN-2003-1084 (Monit 1.4 to 4.1 allows remote attackers to cause a denial of
service ...)
+	TODO: check
+CAN-2003-1083 (Stack-based buffer overflow in Monit 1.4 to 4.1 allows remote
...)
+	TODO: check
+CAN-2005-0365 (The dcopidlng script in KDE 3.3.2 creates temporary files with
...)
 	- kdelibs 4:3.3.2-2
 CAN-2005-0363
+	NOTE: reserved
 	- awstats 6.2-1.2
 CAN-2005-0362
+	NOTE: reserved
 	- awstats 6.2-1.2
 	NOTE: http://patches.ubuntu.com/patches/awstats.more-CAN-2005-0016.diff
 	NOTE: http://packetstormsecurity.nl/0501-exploits/AWStatsVulnAnalysis.pdf
@@ -176,9 +436,9 @@
 	NOTE: not-for-us (OWL intranet)
 CAN-2005-0264 (Multiple cross-site scripting (XSS) vulnerabilities in
browse.php in ...)
 	NOTE: not-for-us (OWL intranet)
-CAN-2005-0263 (Buffer overflow in netpmon on AIX 5.2, and possibly earlier
versions, ...)
+CAN-2005-0263 (Buffer overflow in netpmon on AIX 5.1, 5.2, and 5.3 allows local
users ...)
 	NOTE: not-for-us (AIX)
-CAN-2005-0262 (Buffer overflow in ipl_varyon on AIX 5.2, 5.3, and possibly
earlier ...)
+CAN-2005-0262 (Buffer overflow in ipl_varyon on AIX 5.1, 5.2, and 5.3 allows
local ...)
 	NOTE: not-for-us (AIX)
 CAN-2005-0261 (lspath in AIX 5.2, 5.3, and possibly earlier versions, does not
drop ...)
 	NOTE: not-for-us (AIX)
@@ -202,7 +462,7 @@
 	NOTE: reserved
 CAN-2005-0251
 	NOTE: reserved
-CAN-2005-0250 (Format string vulnerability in auditselect on IBM AIX 5.2 and
5.3 ...)
+CAN-2005-0250 (Format string vulnerability in auditselect on IBM AIX 5.1, 5.2,
and ...)
 	NOTE: not-for-us (AIX)
 CAN-2005-0249 (Heap-based buffer overflow in the DEC2EXE module for Symantec
...)
 	NOTE: not-for-us (Symantec AntiVirus Library)
@@ -491,6 +751,7 @@
 	NOTE: reserved
 CAN-2005-0159
 	NOTE: reserved
+	{DSA-679-1}
 CAN-2005-0158
 	NOTE: reserved
 CAN-2005-0157
@@ -595,8 +856,8 @@
 	- awstats 6.2-1.1
 CAN-2005-0115 (Stack-based buffer overflow in DataRescue Interactive
Disassembler ...)
 	NOTE: not-for-us (DataRescue Interactive Disassembler)
-CAN-2005-0114
-	NOTE: reserved
+CAN-2005-0114 (vsdatant.sys in Zone Lab ZoneAlarm before 5.5.062.011, ZoneAlarm
...)
+	TODO: check
 CAN-2005-0113 (inpview in SGI IRIX allows local users to execute arbitrary
commands ...)
 	NOTE: not-for-us (IRIX)
 CAN-2005-0112 (The web-based administrative interface for 3Com OfficeConnect
Wireless ...)
@@ -662,6 +923,7 @@
 	NOTE: not-for-us (redhat specific less bug)
 CAN-2005-0085
 	NOTE: reserved
+	{DSA-680-1}
 	- htdig 1:3.1.6-11
 CAN-2005-0084 (Buffer overflow in the X11 dissector in Ethereal 0.8.10 through
0.10.8 ...)
 	{DSA-653-1}
@@ -696,11 +958,9 @@
 	{DSA-672-1}
 CAN-2005-0075 (prefs.php in SquirrelMail before 1.4.4, with register_globals
enabled, ...)
 	- squirrelmail 2:1.4.4-1
-CAN-2005-0074
-	NOTE: reserved
+CAN-2005-0074 (Buffer overflow in pcdsvgaview in xpcd 2.08 allows local users
to ...)
 	{DSA-676-1}
-CAN-2005-0073
-	NOTE: reserved
+CAN-2005-0073 (Buffer overflow in queue.c in a support script for sympa 3.3.3,
when ...)
 	{DSA-677-1}
 CAN-2005-0072 (zhcon before 0.2 does not drop privileges before reading a user
...)
 	{DSA-655-1}
@@ -1295,8 +1555,7 @@
 CAN-2004-1181 (htmlheadline before 21.8 allows local users to overwrite
arbitrary ...)
 	{DSA-622-1}
 	NOTE: htmlheadline not in unstable
-CAN-2004-1180
-	NOTE: reserved
+CAN-2004-1180 (Unknown vulnerability in the rwho daemon (rwhod) before 0.17, on
...)
 	{DSA-678-1}
 CAN-2004-1179 (The debstd script in debmake 3.6.x before 3.6.10 and 3.7.x
before ...)
 	{DSA-615-1}
@@ -1907,8 +2166,8 @@
 	NOTE: not-for-us (MacOS)
 CAN-2004-0920 (Symantec Norton AntiVirus 2004, and earlier versions, allows a
virus ...)
 	NOTE: not-for-us (norton)
-CAN-2004-0919
-	NOTE: reserved
+CAN-2004-0919 (The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users
to ...)
+	TODO: check
 CAN-2004-0918 (The asn_parse_header function (asn1.c) in the SNMP module for
Squid ...)
 	{DSA-576-1}
 	- squid 2.5.7
@@ -2026,20 +2285,21 @@
 	NOTE: rejected
 CAN-2004-0873 (Apple iChat AV 2.1, AV 2.0, and 1.0.1 allows remote attackers to
...)
 	NOTE: not-for-us (apple)
-CAN-2004-0872
-	NOTE: reserved
-CAN-2004-0871
-	NOTE: reserved
-CAN-2004-0870
-	NOTE: reserved
-CAN-2004-0869
-	NOTE: reserved
-CAN-2004-0868 (Internet Explorer 6.0 allows web sites to set cookies for ...)
+CAN-2004-0872 (Opera does not prevent cookies that are sent over an insecure
...)
+	TODO: check
+CAN-2004-0871 (Mozilla does not prevent cookies that are sent over an insecure
...)
+	TODO: check
+CAN-2004-0870 (KDE Konqueror does not prevent cookies that are sent over an
insecure ...)
+	TODO: check
+CAN-2004-0869 (Internet Explorer does not prevent cookies that are sent over an
...)
+	TODO: check
+CAN-2004-0868
+	NOTE: rejected
 	NOTE: not-for-us (microsoft)
 CAN-2004-0867 (Mozilla Firefox 0.9.2 allows web sites to set cookies for ...)
 	- mozilla-firefox 0.9.3
-CAN-2004-0866
-	NOTE: reserved
+CAN-2004-0866 (Internet Explorer 6.0 allows web sites to set cookies for ...)
+	TODO: check
 CAN-2004-0865
 	NOTE: reserved
 CAN-2004-0864
@@ -2068,8 +2328,7 @@
 	NOTE: reserved
 CAN-2004-0852 (Buffer overflow in htget 0.93 allows remote attackers to execute
...)
 	{DSA-611-1}
-CAN-2004-0851
-	NOTE: reserved
+CAN-2004-0851 (The (1) write_list and (2) dump_curr_list functions in Net-Acct
before ...)
 	{DSA-559-1}
 CAN-2004-0850 (Star before 1.5_alpha46 does not drop the effective user ID
(euid) ...)
 	- star 1.5a46
@@ -2195,7 +2454,7 @@
 	NOTE: not-for-us (IBM DB2 DB2RCMD.EXE)
 CAN-2004-0794 (Multiple signal handler race conditions in lukemftpd (aka tnftpd
...)
 	{DSA-551-1}
-CAN-2004-0793 (The calendar program in bsdmainutils 6.0 through 6.0.14, when
executed ...)
+CAN-2004-0793 (The calendar program in bsdmainutils 6.0 through 6.0.14 does not
drop ...)
 	- bsdmainutils 6.0.15
 CAN-2004-0792 (Directory traversal vulnerability in the sanitize_path function
in ...)
 	- rsync 2.6.3
@@ -2697,7 +2956,7 @@
 	{DSA-544-1}
 CAN-2004-0558 (The Internet Printing Protocol (IPP) implementation in CUPS
before ...)
 	{DSA-545-1}
-CAN-2004-0557 (Multiple buffer overflows in Sound eXchange (SoX) 12.17.2
through ...)
+CAN-2004-0557 (Multiple buffer overflows in the st_wavstartread function in
wav.c for ...)
 	{DSA-565-1}
 CAN-2004-0556
 	NOTE: reserved
@@ -2881,7 +3140,7 @@
 	NOTE: not-for-us (Check Point VPN)
 CAN-2004-0468 (Memory leak in Juniper JUNOS Packet Forwarding Engine (PFE)
allows ...)
 	NOTE: not-for-us (Juniper JUNOS)
-CAN-2004-0467 (Unknown vulnerability in Juniper JUNOS 5.x through JUNOS 7.x
allows ...)
+CAN-2004-0467 (Juniper JUNOS 5.x through JUNOS 7.x allows remote attackers to
cause a ...)
 	NOTE: not-for-us (Juniper JUNOS)
 CAN-2004-0466
 	NOTE: reserved
Secure testing commits - Feb 2005 - r405 - sarge-checks/CAN

[Secure-testing-commits] r405 - sarge-checks/CAN
