thr3ads.net - Secure testing commits - [Secure-testing-commits] r496

If this information is useful, please help other people find it:
Share via:
Joey Hess
2005-Feb-26 08:14 UTC
[Secure-testing-commits] r496 - sarge-checks/CAN

Author: joeyh
Date: 2005-02-26 09:14:18 +0100 (Sat, 26 Feb 2005)
New Revision: 496

Modified:
   sarge-checks/CAN/list
Log:
automatic CAN database update

Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list	2005-02-26 01:06:59 UTC (rev 495)
+++ sarge-checks/CAN/list	2005-02-26 08:14:18 UTC (rev 496)
@@ -1,3 +1,33 @@
+CAN-2005-0547 (Unknown vulnerability in ftpd on HP-UX B.11.00, B.11.04,
B.11.11, ...)
+	TODO: check
+CAN-2005-0546 (Multiple buffer overflows in Cyrus IMAPd before 2.2.11 may allow
...)
+	TODO: check
+CAN-2005-0545 (Microsoft Windows XP Pro SP2 and Windows 2000 Server SP4 running
...)
+	TODO: check
+CAN-2005-0544 (phpMyAdmin 2.6.1 allows remote attackers to obtain the full path
of ...)
+	TODO: check
+CAN-2005-0543 (Cross-site scripting (XSS) vulnerability phpMyAdmin 2.6.1 allows
...)
+	TODO: check
+CAN-2005-0542 (saveUser.do in Cyclades AlterPath Manager (APM) Console Server
1.2.1 ...)
+	TODO: check
+CAN-2005-0541 (consoleConnect.jsp in Cyclades AlterPath Manager (APM) Console
Server ...)
+	TODO: check
+CAN-2005-0540 (Cyclades AlterPath Manager (APM) Console Server 1.2.1 allows
remote ...)
+	TODO: check
+CAN-2005-0539 (Unknown vulnerability in IBM Hardware Management Console (HMC)
before ...)
+	TODO: check
+CAN-2005-0538 (Directory traversal vulnerability in (1) GinpPictureServlet.java
and ...)
+	TODO: check
+CAN-2005-0537 (Multiple SQL injection vulnerabilities in page.php for iGeneric
(iG) ...)
+	TODO: check
+CAN-2005-0536 (Directory traversal vulnerability in MediaWiki 1.3.x before
1.3.11 and ...)
+	TODO: check
+CAN-2005-0535 (Cross-site request forgery (CSRF) vulnerability in MediaWiki
1.3.x ...)
+	TODO: check
+CAN-2005-0534 (Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki
1.3.x ...)
+	TODO: check
+CAN-2005-0533 (Heap-based buffer overflow in Trend Micro AntiVirus Library
VSAPI ...)
+	TODO: check
 CAN-2005-0532 (The reiserfs_copy_from_user_to_file_region function in
reiserfs/file.c ...)
 	- kernel-source-2.6.8 (unfixed; bug #296897)
 	TODO: watch 2.6.10 if it gets into sarge
@@ -22,8 +52,8 @@
 	NOTE: 2.4.27 seems to be unaffected 
 CAN-2005-0528
 	NOTE: reserved
-CAN-2005-0527
-	NOTE: reserved
+CAN-2005-0527 (Firefox 1.0 allows remote attackers to execute arbitrary code
via ...)
+	TODO: check
 CAN-2005-0526 (Multiple cross-site scripting (XSS) vulnerabilities in PBLang
4.65 ...)
 	NOTE: not-for-us (PBLang)
 CAN-2005-0525
@@ -1222,8 +1252,7 @@
 	- phpbb2 2.0.12-1
 CAN-2005-0257
 	NOTE: reserved
-CAN-2005-0256
-	NOTE: reserved
+CAN-2005-0256 (The wu_fnmatch function in wu_fnmatch.c for wu-fptd 2.6.1 and
2.6.2 ...)
 	- wuftpd (unfixed; bug #296929)
 CAN-2005-0255
 	NOTE: reserved
@@ -1673,8 +1702,7 @@
 	{DSA-659-1}
 	- libapache-mod-auth-radius 1.5.7-6
 	- libpam-radius-auth 1.3.16-3
-CAN-2005-0107
-	NOTE: reserved
+CAN-2005-0107 (bsmtpd 2.3 and earlier does not properly sanitize e-mail
addresses, ...)
 	{DSA-690-1}
 CAN-2005-0106
 	NOTE: reserved
Secure testing commits - Feb 2005 - r496 - sarge-checks/CAN

[Secure-testing-commits] r496 - sarge-checks/CAN
