Author: jmm-guest Date: 2005-04-04 21:32:37 +0000 (Mon, 04 Apr 2005) New Revision: 746 Modified: sarge-checks/CAN/list Log: not-for-us. Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-04-04 21:24:43 UTC (rev 745) +++ sarge-checks/CAN/list 2005-04-04 21:32:37 UTC (rev 746) @@ -1,57 +1,57 @@ CAN-2005-XXXX [Cross Site Scripting in phpmyadmin''s handling of the convcharsetparameter] - phpmyadmin (unfixed; pending) CAN-2005-0964 (Unknown vulnerability in Kerio Personal Firewall 4.1.2 and earlier ...) - TODO: check + NOTE: not-for-us (Kerio firewall) CAN-2005-0963 (An error in the Toshiba ACPI BIOS 1.6 causes the BIOS to only examine ...) - TODO: check + NOTE: not-for-us (ACPI BIOS hardware issue) CAN-2005-0962 (SQL injection vulnerability in index.php for Lighthouse Squirrelcart ...) - TODO: check + NOTE: not-for-us (SquirrelCart) CAN-2005-0961 (Cross-site scripting (XSS) vulnerability in Horde 3.0.4 before ...) TODO: check CAN-2005-0960 (Multiple vulnerabilities in the SACK functionality in (1) tcp_input.c ...) - TODO: check + NOTE: not-for-us (OpenBSD) CAN-2005-0959 (Buffer overflow in the mt_do_dir function in YepYep mtftpd 0.0.3 may ...) - TODO: check + NOTE: not-for-us (YepYep mtftpd) CAN-2005-0958 (Format string vulnerability in the log_do function in log.c for YepYep ...) - TODO: check + NOTE: not-for-us (YepYep mtftpd) CAN-2005-0957 (Bay Technical Associates RPC-3 Telnet Host 3.05 allows remote ...) - TODO: check + NOTE: not-for-us (BayTech RPC) CAN-2005-0956 (Multiple SQL injection vulnerabilities in index.php in InterAKT MX ...) - TODO: check + NOTE: not-for-us (InterAKT MX Kart) CAN-2005-0955 (SQL injection vulnerability in InterAKT MX Shop 1.1.1 allows remote ...) - TODO: check + NOTE: not-for-us (InterAKT MX Shop) CAN-2005-0954 (Windows Explorer and Internet Explorer in Windows 2000 SP1 allows ...) - TODO: check + NOTE: not-for-us (Windows) CAN-2005-0953 (Race condition in bzip2 1.0.2 and earlier allows local users to modify ...) TODO: check CAN-2005-0952 (Cross-site scripting vulnerability in pafiledb.php in PaFileDB 3.1 ...) - TODO: check + NOTE: not-for-us (PafileDB) CAN-2005-0951 (SQL injection vulnerability in pafiledb.php in PaFileDB 3.1 allow ...) - TODO: check + NOTE: not-for-us (PafileDB) CAN-2005-0950 (Directory traversal vulnerability in FastStone 4in1 Browser 1.2 allows ...) - TODO: check + NOTE: not-for-us (FastStone 4in1 Browser) CAN-2005-0949 (Multiple cross-site scripting (XSS) vulnerabilities in content.asp in ...) - TODO: check + NOTE: not-for-us (PortalApp) CAN-2005-0948 (SQL injection vulnerability in ad_click.asp for PortalApp allows ...) - TODO: check + NOTE: not-for-us (PortalApp) CAN-2005-0947 (Directory traversal vulnerability in auxpage.php in phpCoin 1.2.1b and ...) - TODO: check + NOTE: not-for-us (phpCoin) CAN-2005-0946 (SQL injection vulnerability in phpCoin 1.2.1b and earlier allows ...) - TODO: check + NOTE: not-for-us (phpCoin) CAN-2005-0945 (Cross-site scripting (XSS) vulnerability in ACS Blog 1.1.1 allows ...) - TODO: check + NOTE: not-for-us (ACS Blog) CAN-2005-0944 (Unknown vulnerability in Microsoft Jet DB engine (msjet40.dll), ...) - TODO: check + NOTE: not-for-us (Microsoft) CAN-2005-0943 (Cisco VPN 3000 series Concentrator running firmware 4.1.7.A and ...) - TODO: check + NOTE: not-for-us (Cisco Hardware issue) CAN-2005-0942 (Unknown vulnerability in Sybase Adaptive Server Enterprise (ASE) XP ...) - TODO: check + NOTE: not-for-us (Sybase ASE) CAN-2005-0941 NOTE: reserved CAN-2005-0939 NOTE: reserved CAN-2005-0938 (Ublog Reload 1.0 through 1.0.4 stores ublogreload.mdb under the web ...) - TODO: check + NOTE: not-for-us (UBlog) CAN-2005-0937 (Some futex functions in futex.c for Linux kernel 2.6.x perform ...) TODO: check CAN-2005-XXXX [Insecure tempfile usage in sharutils]