Secure testing commits - Mar 2005 - r562 - sarge-checks/CAN

Author: joeyh
Date: 2005-03-16 08:13:00 +0100 (Wed, 16 Mar 2005)
New Revision: 562

Modified:
   sarge-checks/CAN/list
Log:
processed (done!)

Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list	2005-03-16 07:05:42 UTC (rev 561)
+++ sarge-checks/CAN/list	2005-03-16 07:13:00 UTC (rev 562)
@@ -148,32 +148,30 @@
 	NOTE: not-for-us (Hummingbird CyberDOCS)
 CAN-2003-1099 (shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary
files ...)
 	NOTE: not-for-us (shar on HP-UX)
-begin claimed by joeyh
 CAN-2003-1098 (The Xserver for HP-UX 11.22 was not properly built, which
introduced a ...)
-	TODO: check
+	NOTE: not-for-us (HP-UX))
 CAN-2003-1097 (Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04,
when ...)
-	TODO: check
+	NOTE: not-for-us (HP-UX))
 CAN-2002-1600 (Directory traversal vulnerability in Mike Spice''s My
Classifieds ...)
-	TODO: check
+	NOTE: not-for-us (Mike Spice''s My Classifieds)
 CAN-2002-1599 (DansGuardian before 2.4.5-1 allows remote attackers to bypass
content ...)
-	TODO: check
+	- dansgardian 2.4.5-1
 CAN-2002-1598 (Buffer overflows in Computer Associates MLink (CA-MLink) 6.5 and
...)
-	TODO: check
+	NOTE: not-for-us (Computer Associates MLink
 CAN-2002-1597 (Cisco SN 5420 Storage Router 1.1(5) and earlier allows remote
...)
-	TODO: check
+	NOTE: not-for-us (Cisco)
 CAN-2002-1596 (Cisco SN 5420 Storage Router 1.1(5) and earlier allows remote
...)
-	TODO: check
+	NOTE: not-for-us (Cisco)
 CAN-2002-1595 (Cisco SN 5420 Storage Router 1.1(5) and earlier allows attackers
to ...)
-	TODO: check
+	NOTE: not-for-us (Cisco)
 CAN-2002-1594 (Buffer overflow in (1) grpck and (2) pwck, if installed setuid
on a ...)
-	TODO: check
+	NOTE: our pwck and grpck do not overflow and are not suid
 CAN-2002-1593 (mod_dav in Apache before 2.0.42 does not properly handle
versioning ...)
-	TODO: check
+	- apache2 2.0.42
 CAN-2002-1592 (The ap_log_rerror function in Apache 2.0 through 2.035, when a
CGI ...)
-	TODO: check
+	- apache2 2.036
 CAN-2002-1591 (AOL Instant Messenger (AIM) 4.7.2480 adds free.aol.com to the
Trusted ...)
-	TODO: check
-end claimed by joeyh
+	NOTE: not-for-us (AIM in MSIE)
 CAN-2005-0707 (Buffer overflow in the IMAP daemon (IMAP4d32.exe) for Ipswitch
...)
 	NOTE: not-for-us (Ipswitch Collaboration Suite)
 CAN-2005-0706 (Buffer overflow in discdb.c for grip 3.1.2 allows attackers to
cause a ...)