Secure testing commits - Jun 2005 - r1190 - sarge-checks/CAN

Author: jmm-guest
Date: 2005-06-02 12:21:57 +0000 (Thu, 02 Jun 2005)
New Revision: 1190

Modified:
   sarge-checks/CAN/list
Log:
ettercap format string issue


Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list	2005-06-02 09:57:30 UTC (rev 1189)
+++ sarge-checks/CAN/list	2005-06-02 12:21:57 UTC (rev 1190)
@@ -32,7 +32,7 @@
 CAN-2005-1797 (The design of Advanced Encryption Standard (AES), aka Rijndael,
allows ...)
         NOTE: Cryptographic attack on AES, cannot be fixed
 CAN-2005-1796 (Format string vulnerability in the curses_msg function in the
Ncurses ...)
-	TODO: check
+        - ettercap (unfixed; bug #311615)
 CAN-2005-1795 (The filecopy function in misc.c in Clam AntiVirus (ClamAV)
before ...)
         NOTE: not-for-us (ClamAV on Mac OS X)
 CAN-2005-1794 (Microsoft Terminal Server using Remote Desktop Protocol (RDP)
5.2 ...)
@@ -147,7 +147,7 @@
 	NOTE: not-for-us (Intra Forum)
 begin claimed by jmm
 CAN-2004-2121 (Multiple directory traversal vulnerabilities in Borland Web
Server ...)
-	TODO: check
+	NOTE: not-for-us (Borland Web Server)
 CAN-2004-2120 (Reptile Web Server allows remote attackers to cause a denial of
...)
 	TODO: check
 CAN-2004-2119 (Cross-site scripting (XSS) vulnerability in Tiny Server 1.1
allows ...)