Secure testing commits - Feb 2005 - r456 - sarge-checks/CAN

Author: djoume-guest
Date: 2005-02-20 13:44:03 +0100 (Sun, 20 Feb 2005)
New Revision: 456

Modified:
   sarge-checks/CAN/list
Log:
* processed my block



Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list	2005-02-20 11:26:44 UTC (rev 455)
+++ sarge-checks/CAN/list	2005-02-20 12:44:03 UTC (rev 456)
@@ -1,41 +1,39 @@
-begin claimed by djoume
 CAN-2005-0487 (Cross-site scripting (XSS) vulnerability in index.php for Kayako
...)
-	TODO: check
+	NOTE: not-for-us (Kyako ESupport)
 CAN-2005-0486 (Tarantella Secure Global Desktop Enterprise Edition 4.00 and
3.42, and ...)
-	TODO: check
+	NOTE: not-for-us (Tarantella Secure Global Desktop)
 CAN-2005-0485 (Cross-site scripting (XSS) vulnerability in comment.php for
paNews ...)
-	TODO: check
+	NOTE: not-for-us (paNews)
 CAN-2005-0484 (Format string vulnerability in gprostats for GProFTPD before
8.1.9 may ...)
-	TODO: check
+	NOTE: not-for-us (GProFTPD)
 CAN-2005-0483 (Multiple directory traversal vulnerabilities in sitenfo.sh, ...)
-	TODO: check
+	NOTE: not-for-us (Glftpd)
 CAN-2005-0482 (TrackerCam 5.12 and earlier allows remote attackers to cause a
denial ...)
-	TODO: check
+	NOTE: not-for-us (TrackerCam)
 CAN-2005-0481 (TrackerCam 5.12 and earlier allows remote attackers to read log
files ...)
-	TODO: check
+	NOTE: not-for-us (TrackerCam)
 CAN-2005-0480 (Cross-site scripting (XSS) vulnerability in TrackerCam 5.12 and
...)
-	TODO: check
+	NOTE: not-for-us (TrackerCam)
 CAN-2005-0479 (Directory traversal vulnerability in ComGetLogFile.php3 for
TrackerCam ...)
-	TODO: check
+	NOTE: not-for-us (TrackerCam)
 CAN-2005-0478 (Multiple buffer overflows in TrackerCam 5.12 and earlier allow
remote ...)
-	TODO: check
+	NOTE: not-for-us (TrackerCam)
 CAN-2005-0477 (Cross-site scripting (XSS) vulnerability in the SML code for
Invision ...)
-	TODO: check
+	NOTE: not-for-us (Invision Power Board)
 CAN-2005-0476 (Cross-site scripting (XSS) vulnerability in hpm_guestbook.cgi
allows ...)
-	TODO: check
+	NOTE: not-for-us (hpm_guestbook.cgi)
 CAN-2005-0475 (SQL injection vulnerability in paFAQ Beta4, and possibly other
...)
-	TODO: check
+	NOTE: not-for-us (paFAQ)
 CAN-2005-0474 (SQL injection vulnerability in the user_valid_crypt function in
...)
-	TODO: check
+	- webcalendar (unfixed; bug #295960)
 CAN-2005-0473 (The HTML parsing functions in Gaim before 1.1.3 allow remote
attackers ...)
-	TODO: check
+	- gaim 1:1.1.3-1
 CAN-2005-0472 (Gaim before 1.1.3 allows remote attackers to cause a denial of
service ...)
-	TODO: check
+	- gaim 1:1.1.3-1
 CAN-2005-0471 (Sun Java JRE 1.1.x through 1.4.x writes temporary files with
long ...)
-	TODO: check
+	NOTE: not-for-us (SUN JRE)
 CAN-2005-0470 (Buffer overflow in wpa_supplicant before 0.2.7 allows remote
attackers ...)
-	TODO: check
-end claimed by djoume
+	- wpasupplicant 0.3.8-1
 CAN-2005-0469
 	NOTE: reserved
 CAN-2005-0468