Author: jmm-guest Date: 2005-03-25 12:23:50 +0000 (Fri, 25 Mar 2005) New Revision: 650 Modified: sarge-checks/CAN/list Log: Icecast2 vulnerabilities. Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-03-25 12:10:22 UTC (rev 649) +++ sarge-checks/CAN/list 2005-03-25 12:23:50 UTC (rev 650) @@ -17,11 +17,11 @@ CAN-2005-0839 (Linux kernel 2.6 before 2.6.11 does not restrict access to the N_MOUSE ...) TODO: check CAN-2005-0838 (Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow ...) - TODO: check + - icecast2 (unfixed; bug pending) CAN-2005-0837 (IceCast 2.20 allows remote attackers to bypass the XSL parser and ...) - TODO: check + - icecast2 (unfixed; bug pending) CAN-2005-0836 (Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up ...) - TODO: check + NOTE: not-for-us (Java Web Start for proprietary Sun Java) CAN-2005-0835 (The SNMP service in the Belkin 54G (F5D7130) wireless router allows ...) NOTE: not-for-us (Belkin 54G router) CAN-2005-0834 (Belkin 54G (F5D7130) wireless router enables SNMP by default in a ...)