thr3ads.net - Secure testing commits - [Secure-testing-commits] r498

If this information is useful, please help other people find it:
Share via:
Joey Hess
2005-Feb-27 08:14 UTC
[Secure-testing-commits] r498 - sarge-checks/CAN

Author: joeyh
Date: 2005-02-27 09:14:31 +0100 (Sun, 27 Feb 2005)
New Revision: 498

Modified:
   sarge-checks/CAN/list
Log:
automatic CAN database update

Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list	2005-02-26 17:20:23 UTC (rev 497)
+++ sarge-checks/CAN/list	2005-02-27 08:14:31 UTC (rev 498)
@@ -1,3 +1,143 @@
+CAN-2005-0564
+	NOTE: reserved
+CAN-2005-0563
+	NOTE: reserved
+CAN-2005-0562
+	NOTE: reserved
+CAN-2005-0561
+	NOTE: reserved
+CAN-2005-0560
+	NOTE: reserved
+CAN-2005-0559
+	NOTE: reserved
+CAN-2005-0558
+	NOTE: reserved
+CAN-2005-0557
+	NOTE: reserved
+CAN-2005-0556
+	NOTE: reserved
+CAN-2005-0555
+	NOTE: reserved
+CAN-2005-0554
+	NOTE: reserved
+CAN-2005-0553
+	NOTE: reserved
+CAN-2005-0552
+	NOTE: reserved
+CAN-2005-0551
+	NOTE: reserved
+CAN-2005-0550
+	NOTE: reserved
+CAN-2005-0549
+	NOTE: reserved
+CAN-2005-0548
+	NOTE: reserved
+CAN-2004-1753 (The Apple Java plugin, as used in Netscape 7.1 and 7.2, Mozilla
1.7.2, ...)
+	TODO: check
+CAN-2004-1752 (Stack-based buffer overflow in Gaucho 1.4 Build 145 allows
remote ...)
+	TODO: check
+CAN-2004-1751 (Ground Control II: Operation Exodus 1.0.0.7 and earlier allows
remote ...)
+	TODO: check
+CAN-2004-1750 (RealVNC 4.0 and earlier allows remote attackers to cause a
denial of ...)
+	TODO: check
+CAN-2004-1749 (Attack Mitigator IPS 5500 3.11.008, and possibly other versions,
when ...)
+	TODO: check
+CAN-2004-1748 (NtRegmon before 6.12 allows local users to cause a denial of
service ...)
+	TODO: check
+CAN-2004-1747 (Cross-site scripting (XSS) vulnerability in NetworkEverywhere
NR041 ...)
+	TODO: check
+CAN-2004-1746 (Cross-site scripting (XSS) vulnerability in index.php in PHP
Code ...)
+	TODO: check
+CAN-2004-1745 (Buffer overflow in Painkiller 1.3.1 and earlier allows remote
...)
+	TODO: check
+CAN-2004-1744 (Easy File Sharing (EFS) Webserver 1.25 allows remote attackers
to ...)
+	TODO: check
+CAN-2004-1743 (Easy File Sharing (ESF) Webserver 1.25 allows remote attackers
to view ...)
+	TODO: check
+CAN-2004-1742 (Directory traversal vulnerability in WebAPP 0.9.9 allows remote
...)
+	TODO: check
+CAN-2004-1741 (Music daemon (musicd) 0.0.3 and earlier allows remote attackers
to ...)
+	TODO: check
+CAN-2004-1740 (Music daemon (musicd) 0.0.3 and earlier allows remote attackers
to ...)
+	TODO: check
+CAN-2004-1739 (Bird Chat 1.61 allows remote attackers to cause a denial of
service ...)
+	TODO: check
+CAN-2004-1738 (Cross-site scripting (XSS) vulnerability in page.php in JShop
allows ...)
+	TODO: check
+CAN-2004-1737 (SQL injection vulnerability in auth_login.php in Cacti 0.8.5a
allows ...)
+	TODO: check
+CAN-2004-1736 (Cacti 0.8.5a allows remote attackers to gain sensitive
information via ...)
+	TODO: check
+CAN-2004-1735 (Cross-site scripting (XSS) vulnerability in the create list
option in ...)
+	TODO: check
+CAN-2004-1734 (PHP remote code injection vulnerability in Mantis 0.19.0a allows
...)
+	TODO: check
+CAN-2004-1733 (Directory traversal vulnerability in MyDMS 1.4.2 and other
versions ...)
+	TODO: check
+CAN-2004-1732 (SQL injection vulnerability in out.ViewFolder.php in MyDMS
before ...)
+	TODO: check
+CAN-2004-1731 (signup_page.php in Mantis bugtracker allows remote attackers to
send ...)
+	TODO: check
+CAN-2004-1730 (Cross-site scripting (XSS) vulnerability in Mantis bugtracker
allows ...)
+	TODO: check
+CAN-2004-1729 (Cross-site scripting (XSS) vulnerability in Nihuo Web Log
Analyzer 1.6 ...)
+	TODO: check
+CAN-2004-1728 (Buffer overflow in British National Corpus SARA (sarad) allows
remote ...)
+	TODO: check
+CAN-2004-1727 (BadBlue 2.5 allows remote attackers to cause a denial of service
...)
+	TODO: check
+CAN-2004-1726 (Multiple integer overflows in (1) xviris.c, (2) xvpcx.c, and (3)
...)
+	TODO: check
+CAN-2004-1725 (Stack-based buffer overflow in xvbmp.c in XV allows remote
attackers ...)
+	TODO: check
+CAN-2004-1724 (The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to
set the ...)
+	TODO: check
+CAN-2004-1723 (The (1) updateuser.php and (2) forums_prune.php scripts in
PHP-Fusion ...)
+	TODO: check
+CAN-2004-1722 (SQL injection vulnerability in calendar.html in Merak Mail
Server ...)
+	TODO: check
+CAN-2004-1721 (The (1) function.php or (2) function.view.php scripts in Merak
Mail ...)
+	TODO: check
+CAN-2004-1720 (The (1) address.html or (2) calendar.html pages in Merak Mail
Server ...)
+	TODO: check
+CAN-2004-1719 (Multiple cross-site scripting (XSS) vulnerabilities in Merak
Webmail ...)
+	TODO: check
+CAN-2004-1718 (The ZwOpenSection function in Integrity Protection Driver (IPD)
1.4 ...)
+	TODO: check
+CAN-2004-1717 (Multiple buffer overflows in the psscan function in ps.c for gv
...)
+	TODO: check
+CAN-2004-1716 (Cross-site scripting (XSS) vulnerability in PForum before 1.26
allows ...)
+	TODO: check
+CAN-2004-1715 (Directory traversal vulnerability in MIMEsweeper for Web before
5.0.4 ...)
+	TODO: check
+CAN-2004-1714 (BlackICE PC Protection and Server Protection installs (1) ...)
+	TODO: check
+CAN-2004-1713 (Unknown vulnerability in HP Process Resource Manager (PRM) ...)
+	TODO: check
+CAN-2004-1712 (Cross-site scripting (XSS) vulnerability in TypePad allows
remote ...)
+	TODO: check
+CAN-2004-1711 (Cross-site scripting (XSS) vulnerability in post.php in Moodle
before ...)
+	TODO: check
+CAN-2004-1710 (page.cgi allows remote attackers to execute arbitrary commands
via ...)
+	TODO: check
+CAN-2004-1709 (Datakey Rainbow iKey2032 USB token, when using the CIP client
package, ...)
+	TODO: check
+CAN-2004-1708 (Webbsyte Chat 0.9.0 allows remote attackers to cause a denial of
...)
+	TODO: check
+CAN-2004-1707 (The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and
...)
+	TODO: check
+CAN-2004-1706 (The U.S. Robotics USR808054 wireless access point allows remote
...)
+	TODO: check
+CAN-2004-1705 (Buffer overflow in Citadel/UX 6.23 and earlier allows remote
attackers ...)
+	TODO: check
+CAN-2004-1704 (WpQuiz 2.60b1 through 2.60b8 allows remote attackers to gain
...)
+	TODO: check
+CAN-2004-1703 (Fusion News 3.6.1 allows remote attackers to add user accounts,
if the ...)
+	TODO: check
+CAN-2004-0838 (Lexar Safe Guard for JumpDrive Secure 1.0 stores the password
...)
+	TODO: check
+CAN-2003-1087 (Unknown vulnerability in diagmond and possibly other
applications in ...)
+	TODO: check
 CAN-2005-0547 (Unknown vulnerability in ftpd on HP-UX B.11.00, B.11.04,
B.11.11, ...)
 	TODO: check
 CAN-2005-0546 (Multiple buffer overflows in Cyrus IMAPd before 2.2.11 may allow
...)
@@ -8823,7 +8963,8 @@
 CAN-2001-1170 (AmTote International homebet program stores the homebet.log file
in ...)
 CAN-2001-1169 (keyinit in S/Key does not require authentication to initialize a
...)
 CAN-2001-1168 (Directory traversal vulnerability in index.php in PhpMyExplorer
before ...)
-CAN-2001-1167 (Vulnerability in /opt/prm/bin of HP Process Resource Manager
(PRM) ...)
+CAN-2001-1167
+	NOTE: rejected
 CAN-2001-1165 (Intego FileGuard 4.0 uses weak encryption to store user
information ...)
 CAN-2001-1164 (Buffer overflow in uucp utilities in UnixWare 7 allows local
users to ...)
 CAN-2001-1163 (Buffer overflow in Munica Corporation NetSQL 1.0 allows remote
...)
Secure testing commits - Feb 2005 - r498 - sarge-checks/CAN

[Secure-testing-commits] r498 - sarge-checks/CAN
