Author: joeyh
Date: 2005-06-29 09:14:21 +0000 (Wed, 29 Jun 2005)
New Revision: 1298
Modified:
data/CAN/list
Log:
automatic CAN database update
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-06-28 22:50:59 UTC (rev 1297)
+++ data/CAN/list 2005-06-29 09:14:21 UTC (rev 1298)
@@ -1,3 +1,463 @@
+CAN-2005-2078 (BisonFTP Server V4R1 allows remote authenticated users to cause
a ...)
+ TODO: check
+CAN-2005-2077 (Cross-site scripting (XSS) vulnerability in error.asp for
Hosting ...)
+ TODO: check
+CAN-2005-2076 (HP Version Control Repository Manager (VCRM) before 2.1.1.730
does not ...)
+ TODO: check
+CAN-2005-2075 (PHP-Fusion 5.0 and 6.0 stores the database file with a
predictable ...)
+ TODO: check
+CAN-2005-2074 (Cross-site scripting (XSS) vulnerability in PHP-Fusion 6.0.105
allows ...)
+ TODO: check
+CAN-2005-2073 (Unknown vulnerability in IBM DB2 8.1.4 through 8.1.9 and 8.2.0
through ...)
+ TODO: check
+CAN-2005-2072 (ld.so in Solaris 9 and 10 trusts the LD_AUDIT environment
variable in ...)
+ TODO: check
+CAN-2005-2071 (traceroute in Sun Solaris 10 on x86 systems allows local users
to ...)
+ TODO: check
+CAN-2005-2070 (The ClamAV Mail fILTER (clamav-milter) 0.84 through 0.85d, when
used ...)
+ TODO: check
+CAN-2005-2069
+ NOTE: reserved
+CAN-2005-2068
+ NOTE: reserved
+CAN-2005-2067 (SQL injection vulnerability in article.asp in unknown versions
of ...)
+ TODO: check
+CAN-2005-2066 (SQL injection vulnerability in comment_post.asp in ASP Nuke 0.80
...)
+ TODO: check
+CAN-2005-2065 (HTTP response splitting vulnerability in language_select.asp in
ASP ...)
+ TODO: check
+CAN-2005-2064 (Multiple cross-site scripting vulnerabilities in ASP Nuke 0.80
allow ...)
+ TODO: check
+CAN-2005-2063 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
+CAN-2005-2062 (Multiple SQL injection vulnerabilities in ActiveBuyAndSell 6.2
allow ...)
+ TODO: check
+CAN-2005-2061 (Infopop UBB.Threads before 6.5.2 Beta allows remote attackers to
include ...)
+ TODO: check
+CAN-2005-2060 (Multiple HTTP Response Splitting vulnerabilities in (1) ...)
+ TODO: check
+CAN-2005-2059 (Multiple cross-site request forgery (CSRF) vulnerabilities in
(1) ...)
+ TODO: check
+CAN-2005-2058 (Multiple SQL injection vulnerabilities in Infopop UBB.Threads
before ...)
+ TODO: check
+CAN-2005-2057 (Multiple cross-site scripting (XSS) vulnerabilities in Infopop
...)
+ TODO: check
+CAN-2005-2056 (The Quantum archive decompressor in Clam AntiVirus (ClamAV)
before ...)
+ TODO: check
+CAN-2005-2055 (RealPlayer 8, 10, 10.5 (6.0.12.1040-1069), and Enterprise and
RealOne ...)
+ TODO: check
+CAN-2005-2054 (Unknown vulnerability in RealPlayer 10 and 10.5
(6.0.12.1040-1069) and ...)
+ TODO: check
+CAN-2002-1986 (Perception LiteServe 2.0 through 2.0.1 allows remote attackers
to ...)
+ TODO: check
+CAN-2002-1985 (iSMTP 5.0.1 allows remote attackers to cause a denial of service
via a ...)
+ TODO: check
+CAN-2002-1984 (Microsoft Internet Explorer 5.0.1 through 6.0 on Windows 2000 or
...)
+ TODO: check
+CAN-2002-1983 (The timer implementation in QNX RTOS 6.1.0 allows local users to
cause ...)
+ TODO: check
+CAN-2002-1982 (Directory traversal vulnerability in the list_directory function
in ...)
+ TODO: check
+CAN-2002-1981 (Microsoft SQL Server 2000 through SQL Server 2000 SP2 allows the
...)
+ TODO: check
+CAN-2002-1980 (Buffer overflow in Volume Manager daemon (vold) of Sun Solaris
2.5.1 ...)
+ TODO: check
+CAN-2002-1979 (WatchGuard SOHO products running firmware 5.1.6 and earlier, and
...)
+ TODO: check
+CAN-2002-1978 (IPFilter 3.1.1 through 3.4.28 allows remote attckers to bypass
...)
+ TODO: check
+CAN-2002-1977 (Network Associates PGP 7.0.4 and 7.1 does not time out according
to ...)
+ TODO: check
+CAN-2002-1976 (ifconfig in Linux kernel 2.2 and 2.4 does not report when the
network ...)
+ TODO: check
+CAN-2002-1975 (Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of
"A0" to encrypt ...)
+ TODO: check
+CAN-2002-1974 (The FTP service in Zaurus PDAs SL-5000D and SL-5500 does not
require ...)
+ TODO: check
+CAN-2002-1973 (Buffer overflow in CHttpServer::OnParseError in the ISAPI
extension ...)
+ TODO: check
+CAN-2002-1972 (Unknown vulnerability in Parallel port powerSwitch (aka ...)
+ TODO: check
+CAN-2002-1971 (The ping utility in networking_utils.php in Sourcecraft ...)
+ TODO: check
+CAN-2002-1970 (SnortCenter 0.9.5, when configured to push Snort rules, stores
the ...)
+ TODO: check
+CAN-2002-1969 (Magic Notebook 1.0b and 1.1b allows remote attackers to cause a
denial ...)
+ TODO: check
+CAN-2002-1968 (Com21 DOXport 1100 series cable modem running firmware
2.1.1.106, and ...)
+ TODO: check
+CAN-2002-1967 (Buffer overflow in XiRCON 1.0 Beta 4 allows remote attackers to
cause ...)
+ TODO: check
+CAN-2002-1966 (Directory traversal vulnerability in magiccard.cgi in My
Postcards ...)
+ TODO: check
+CAN-2002-1965 (Cross-site scripting (XSS) vulnerability in Errors.gsl in Imatix
...)
+ TODO: check
+CAN-2002-1964 (Unknown vulnerability in WesMo phpEventCalendar 1.1 allows
remote ...)
+ TODO: check
+CAN-2002-1963 (Linux kernel 2.4.1 through 2.4.19 sets root''s
NR_RESERVED_FILES limit ...)
+ TODO: check
+CAN-2002-1962 (Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers
to ...)
+ TODO: check
+CAN-2002-1961 (Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers
to ...)
+ TODO: check
+CAN-2002-1960 (Cross-site scripting (XSS) vulnerability in Cybozu Share360 1.1
allows ...)
+ TODO: check
+CAN-2002-1959 (Nagios 1.0b1 through 1.0b3 allows remote attackers to execute
...)
+ TODO: check
+CAN-2002-1958 (Cross-site scripting (XSS) vulnerability in kmMail 1.0 through
1.0b ...)
+ TODO: check
+CAN-2002-1957 (Buffer overflow in the netlog function in pen.c for Pen 0.9.1
and ...)
+ TODO: check
+CAN-2002-1956 (ROX Filer 1.1.9 and 1.2 is installed with world writable
permissions, ...)
+ TODO: check
+CAN-2002-1955 (Iomega NAS A300U uses cleartext LANMAN authentication when
mounting ...)
+ TODO: check
+CAN-2002-1954 (Cross-site scripting (XSS) vulnerability in the phpinfo function
in ...)
+ TODO: check
+CAN-2002-1953 (Heap-based buffer overflow in the goim handler of AOL Instant
...)
+ TODO: check
+CAN-2002-1952 (phpRank 1.8 does not properly check the return codes for MySQL
...)
+ TODO: check
+CAN-2002-1951 (Buffer overflow in GoAhead WebServer 2.1 allows remote attackers
to ...)
+ TODO: check
+CAN-2002-1950 (Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows
remote ...)
+ TODO: check
+CAN-2002-1949 (The Network Attached Storage (NAS) Administration Web Page for
Iomega ...)
+ TODO: check
+CAN-2002-1948 (Multiple buffer overflows in Gringotts 0.5.9 allows local users
to ...)
+ TODO: check
+CAN-2002-1947 (Webmin 0.21 through 1.0 uses the same built-in SSL key for all
...)
+ TODO: check
+CAN-2002-1946 (Videsh Sanchar Nigam Limited (VSNL) Integrated Dialer Software
...)
+ TODO: check
+CAN-2002-1945 (Buffer overflow in SmartMail Server 1.0 Beta 10 allows remote
...)
+ TODO: check
+CAN-2002-1944 (Motorola Surfboard 4200 cable modem allows remote attackers to
cause a ...)
+ TODO: check
+CAN-2002-1943 (SafeTP 1.46, when network address translation (NAT) is being
used, ...)
+ TODO: check
+CAN-2002-1942 (Imatix Xitami 2.5 b5 does not properly terminate certain
Keep-Alive ...)
+ TODO: check
+CAN-2002-1941 (Buffer overflow in RadioBird WebServer 4 Everyone 1.28 allows
remote ...)
+ TODO: check
+CAN-2002-1940 (LCC-Win32 3.2 compiler, when running on Windows 95, 98, or ME,
writes ...)
+ TODO: check
+CAN-2002-1939 (FlashFXP 1.4 prints FTP passwords in plaintext when there are
...)
+ TODO: check
+CAN-2002-1938 (Virgil CGI Scanner 0.9 allows remote attackers to execute
arbitrary ...)
+ TODO: check
+CAN-2002-1937 (Symantec Firewall/VPN Appliance 100 through 200R hardcodes the
...)
+ TODO: check
+CAN-2002-1936 (UTStarcom BAS 1000 3.1.10 creates several default or back door
...)
+ TODO: check
+CAN-2002-1935 (Pingtel Xpressa 1.2.5 through 2.0.1 uses predictable (1)
Call-ID, (2) ...)
+ TODO: check
+CAN-2002-1934 (Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through
2.0.1 ...)
+ TODO: check
+CAN-2002-1933 (The terminal services screensaver for Microsoft Windows 2000
does not ...)
+ TODO: check
+CAN-2002-1932 (Microsoft Windows XP and Windows 2000, when configured to send
...)
+ TODO: check
+CAN-2002-1931 (Cross-site scripting (XSS) vulnerability in PHP Arena paFileDB
1.1.3 ...)
+ TODO: check
+CAN-2002-1930 (Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote
...)
+ TODO: check
+CAN-2002-1929 (Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP
Arena ...)
+ TODO: check
+CAN-2002-1928 (602Pro LAN SUITE 2002 allows remote attackers to view the
directory ...)
+ TODO: check
+CAN-2002-1927 (Aquonics File Manager 1.5 allows users with edit privileges to
modify ...)
+ TODO: check
+CAN-2002-1926 (Directory traversal vulnerability in source.php in Aquonics File
...)
+ TODO: check
+CAN-2002-1925 (Tiny Personal Firewall 3.0 through 3.0.6 allows remote attackers
to ...)
+ TODO: check
+CAN-2002-1924 (PowerChute plus 5.0.2 creates a "Pwrchute"
directory during ...)
+ TODO: check
+CAN-2002-1923 (The default configuration in MySQL 3.20.32 through 3.23.52, when
...)
+ TODO: check
+CAN-2002-1922 (Cross-site scripting (XSS) vulnerability in global.php in
Jelsoft ...)
+ TODO: check
+CAN-2002-1921 (The default configuration of MySQL 3.20.32 through 3.23.52, when
...)
+ TODO: check
+CAN-2002-1920 (Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a
denial ...)
+ TODO: check
+CAN-2002-1919 (SQL injection vulnerability in shopadmin.asp in VP-ASP 4.0
allows ...)
+ TODO: check
+CAN-2002-1918 (Buffer overflow in Microsoft Active Data Objects (ADO) in
Microsoft ...)
+ TODO: check
+CAN-2002-1917 (CRLF injection vulnerability in the "User Profile: Send
Email" feature ...)
+ TODO: check
+CAN-2002-1916 (Pirch and RusPirch, when auto-log is enabled, allows remote
attackers ...)
+ TODO: check
+CAN-2002-1915 (tip on multiple BSD-based operating systems allows local users
to ...)
+ TODO: check
+CAN-2002-1914 (dump 0.4 b10 through b29 allows local users to cause a denial of
...)
+ TODO: check
+CAN-2002-1913 (phptonuke.php in myPHPNuke 1.8.8 allows remote attackers to read
...)
+ TODO: check
+CAN-2002-1912 (SkyStream EMR5000 1.16 through 1.18 does not drop packets or
disable ...)
+ TODO: check
+CAN-2002-1911 (ZoneAlarm Pro 3.0 and 3.1, when configured to block all traffic,
...)
+ TODO: check
+CAN-2002-1910 (Click2Learn Ingenium Learning Management System 5.1 and 6.1 uses
weak ...)
+ TODO: check
+CAN-2002-1909 (Click2Learn Ingenium Learning Management System 5.1 and 6.1
stores the ...)
+ TODO: check
+CAN-2002-1908 (Microsoft IIS 5.0 and 5.1 allows remote attackers to cause a
denial of ...)
+ TODO: check
+CAN-2002-1907 (TelCondex SimpleWebServer 2.06.20817 allows remote attackers to
cause ...)
+ TODO: check
+CAN-2002-1906 (The web server for Polycom ViaVideo 2.2 and 3.0 allows remote
...)
+ TODO: check
+CAN-2002-1905 (Buffer overflow in the web server of Polycom ViaVideo 2.2 and
3.0 ...)
+ TODO: check
+CAN-2002-1904 (Buffer overflow in the Log function in util.c in GazTek ghttpd
1.4 ...)
+ TODO: check
+CAN-2002-1903 (Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into
Sender: ...)
+ TODO: check
+CAN-2002-1902 (CGIForum 1.0 through 1.05 allows remote attackers to cause a
denial of ...)
+ TODO: check
+CAN-2002-1901 (Cross-site scripting (XSS) vulnerability in Bodo Bauer BBGallery
1.0 ...)
+ TODO: check
+CAN-2002-1900 (Cross-site scripting (XSS) vulnerability in Pinboard 1.0 allows
remote ...)
+ TODO: check
+CAN-2002-1899 (Cross-site scripting (XSS) vulnerability in IceWarp Web Mail
3.3.3 and ...)
+ TODO: check
+CAN-2002-1898 (Terminal 1.3 in Apple Mac OS X 10.2 allows remote attackers to
execute ...)
+ TODO: check
+CAN-2002-1897 (MyWebServer 1.0.2 allows remote attackers to cause a denial of
service ...)
+ TODO: check
+CAN-2002-1896 (Buffer overflow in Alsaplayer 0.99.71, when installed setuid
root, ...)
+ TODO: check
+CAN-2002-1895 (The servlet engine in Jakarta Apache Tomcat 3.3 and 4.0.4, when
using ...)
+ TODO: check
+CAN-2002-1894 (Cross-site scripting (XSS) vulnerability in viewtopic.php in
phpBB ...)
+ TODO: check
+CAN-2002-1893 (Cross-site scripting (XSS) vulnerability in ArGoSoft Mail Server
Pro ...)
+ TODO: check
+CAN-2002-1892 (NETGEAR FVS318 running firmware 1.1 stores the username and
password ...)
+ TODO: check
+CAN-2002-1891 (Buffer overflow in IRCIT 0.3.1 IRC client allows remote
attackers to ...)
+ TODO: check
+CAN-2002-1890 (rhmask 1.0-9 in Red Hat Linux 7.1 allows local users to
overwrite ...)
+ TODO: check
+CAN-2002-1889 (Off-by-one buffer overflow in the context_action function in
context.c ...)
+ TODO: check
+CAN-2002-1888 (CommonName Toolbar 3.5.2.0 sends unqualified domain name
requests to ...)
+ TODO: check
+CAN-2002-1887 (PHP remote code injection vulnerability in customize.php for
...)
+ TODO: check
+CAN-2002-1886 (TightAuction 3.0 stores config.inc under the web document root
with ...)
+ TODO: check
+CAN-2002-1885 (PHP remote code injection vulnerability in showhits.php3 for
...)
+ TODO: check
+CAN-2002-1884 (index.php in Py-Membres 3.1 allows remote attackers to log in as
an ...)
+ TODO: check
+CAN-2002-1883 (Trolltech Qt Assistant 1.0 in Trolltech Qt 3.0.3, when loaded
from the ...)
+ TODO: check
+CAN-2002-1882 (Unknown vulnerability in AolSecurityPrivate.class in Oracle
E-Business ...)
+ TODO: check
+CAN-2002-1881 (Macromedia Flash Player 4.0 r12 through 6.0.47.0 allows remote
...)
+ TODO: check
+CAN-2002-1880 (LokwaBB 1.2.2 allows remote attackers to read arbitrary messages
by ...)
+ TODO: check
+CAN-2002-1879 (SQL injection vulnerability in LokwaBB 1.2.2 allows remote
attackers ...)
+ TODO: check
+CAN-2002-1878 (PHP remote code injection vulnerability in w-Agora 4.1.3 allows
remote ...)
+ TODO: check
+CAN-2002-1877 (NETGEAR FM114P allows remote attackers to bypass access
restrictions ...)
+ TODO: check
+CAN-2002-1876 (Microsoft Exchange 2000 allows remote authenticated attackers to
cause ...)
+ TODO: check
+CAN-2002-1875 (Entercept Agent 2.5 agent for Windows, released before May 21,
2002, ...)
+ TODO: check
+CAN-2002-1874 (astrocam.cgi in AstroCam 1.7.1 through 2.1.2 allows remote
attackers ...)
+ TODO: check
+CAN-2002-1873 (Microsoft Exchange 2000, when used with Microsoft Remote
Procedure ...)
+ TODO: check
+CAN-2002-1872 (Microsoft SQL Server 6.0 through 2000, with SQL Authentication
...)
+ TODO: check
+CAN-2002-1871 (pkgadd in Sun Solaris 2.5.1 through 8 installs files
setuid/setgid ...)
+ TODO: check
+CAN-2002-1870 (Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly
handle ...)
+ TODO: check
+CAN-2002-1869 (Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2
does ...)
+ TODO: check
+CAN-2002-1868 (Dispair 0.1 and 0.2 allows remote attackers to execute arbitrary
shell ...)
+ TODO: check
+CAN-2002-1867 (The default configuration of BizDesign ImageFolio 2.23 through
2.26 ...)
+ TODO: check
+CAN-2002-1866 (Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file
...)
+ TODO: check
+CAN-2002-1865 (Buffer overflow in the Embedded HTTP server, as used in (1)
D-Link ...)
+ TODO: check
+CAN-2002-1864 (Directory traversal vulnerability in Simple Web Server (SWS)
0.0.4 ...)
+ TODO: check
+CAN-2002-1863 (Iomega Network Attached Storage (NAS) A300U, and possibly other
...)
+ TODO: check
+CAN-2002-1862 (SmartMail Server 2.0 allows remote attackers to cause a denial
of ...)
+ TODO: check
+CAN-2002-1861 (Sybase Enterprise Application Server 4.0, when running on
Windows, ...)
+ TODO: check
+CAN-2002-1860 (Pramati Server 3.0, when running on Windows, allows remote
attackers ...)
+ TODO: check
+CAN-2002-1859 (Orion Application Server 1.5.3, when running on Windows, allows
remote ...)
+ TODO: check
+CAN-2002-1858 (Oracle Oracle9i Application Server 1.0.2.2 and 9.0.2 through
...)
+ TODO: check
+CAN-2002-1857 (jo! jo Webserver 1.0, when running on Windows, allows remote
attackers ...)
+ TODO: check
+CAN-2002-1856 (HP Application Server 8.0, when running on Windows, allows
remote ...)
+ TODO: check
+CAN-2002-1855 (Macromedia JRun 3.0 through 4.0, when running on Windows, allows
...)
+ TODO: check
+CAN-2002-1854 (Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to
...)
+ TODO: check
+CAN-2002-1853 (Cross-site scripting (XSS) vulnerability in MyNewsGroups 0.4 and
0.4.1 ...)
+ TODO: check
+CAN-2002-1852 (Cross-site scripting (XSS) vulnerability in Monkey 0.5.0 allows
remote ...)
+ TODO: check
+CAN-2002-1851 (Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to
execute ...)
+ TODO: check
+CAN-2002-1850 (mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and
possibly ...)
+ TODO: check
+CAN-2002-1849 (ParaChat Server 4.0 does not log users off if the
browser''s back ...)
+ TODO: check
+CAN-2002-1848 (TightVNC before 1.2.4 running on Windows stores unencrypted
passwords ...)
+ TODO: check
+CAN-2002-1847 (Buffer overflow in mplay32.exe of Microsoft Windows Media Player
(WMP) ...)
+ TODO: check
+CAN-2002-1846 (Yet Another Bulletin Board (YaBB) 1.40 and 1.41 does not require
a ...)
+ TODO: check
+CAN-2002-1845 (Cross-site scripting (XSS) vulnerability in index.php in Yet
Another ...)
+ TODO: check
+CAN-2002-1844 (Microsoft Windows Media Player (WMP) 6.3, when installed on
Solaris, ...)
+ TODO: check
+CAN-2002-1843 (Perlbot 1.9.2 allows remote attackers to execute arbitrary
commands ...)
+ TODO: check
+CAN-2002-1842 (Perlbot 1.0 beta allows remote attackers to execute arbitrary
commands ...)
+ TODO: check
+CAN-2002-1841 (The document management module in NOLA 1.1.1 and 1.1.2 does not
...)
+ TODO: check
+CAN-2002-1840 (irssi IRC client 0.8.4, when downloaded after 14-March-2002,
could ...)
+ TODO: check
+CAN-2002-1839 (Trend Micro InterScan VirusWall for Windows NT 3.52 does not
record ...)
+ TODO: check
+CAN-2002-1838 (Charities.cron 1.0.2 through 1.6.0 allows local users to write
to ...)
+ TODO: check
+CAN-2002-1837 (The getAlbumToDisplay function in idsShared.pm for Image Display
...)
+ TODO: check
+CAN-2002-1836 (The default configuration of Xerox DocuTech 6110 and DocuTech
6115 ...)
+ TODO: check
+CAN-2002-1835 (The default configuration of Xerox DocuTech 6110 and DocuTech
6115 ...)
+ TODO: check
+CAN-2002-1834 (The default configuration of Xerox DocuTech 6110 and DocuTech
6115 ...)
+ TODO: check
+CAN-2002-1833 (The default configurations for DocuTech 6110 and DocuTech 6115
have a ...)
+ TODO: check
+CAN-2002-1832 (Unknown vulnerability in the "ipopts decode"
functionality in ...)
+ TODO: check
+CAN-2002-1831 (Microsoft MSN Messenger Service 1.0 through 4.6 allows remote
...)
+ TODO: check
+CAN-2002-1830 (Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers
to ...)
+ TODO: check
+CAN-2002-1829 (Cross-site scripting (XSS) vulnerability in codeparse.php in
Open ...)
+ TODO: check
+CAN-2002-1828 (Savant Webserver 3.1 allows remote attackers to cause a denial
of ...)
+ TODO: check
+CAN-2002-1827 (Sendmail 8.9.0 through 8.12.3 allows local users to cause a
denial of ...)
+ TODO: check
+CAN-2002-1826 (grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to
bypass ...)
+ TODO: check
+CAN-2002-1825 (Format string vulnerability in PerlRTE_example1.pl in WASD 7.1,
7.2.0 ...)
+ TODO: check
+CAN-2002-1824 (Microsoft Internet Explorer 6.0, when handling an expired
CA-CERT in a ...)
+ TODO: check
+CAN-2002-1823 (Buffer overflow in the HttpGetRequest function in Zeroo HTTP
server ...)
+ TODO: check
+CAN-2002-1822 (IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain
the ...)
+ TODO: check
+CAN-2002-1821 (Ultimate PHP Board (UPB) 1.0 and 1.0b allows remote
authenticated ...)
+ TODO: check
+CAN-2002-1820 (register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an
...)
+ TODO: check
+CAN-2002-1819 (Directory traversal vulnerability in TinyHTTPD 0.1 .0 allows
remote ...)
+ TODO: check
+CAN-2002-1818 (ezhttpbench.php in eZ httpbench 1.1 allows remote attackers to
read ...)
+ TODO: check
+CAN-2002-1817 (Unknown vulnerability in Veritas Cluster Server (VCS) 1.2 for
...)
+ TODO: check
+CAN-2002-1816 (Buffer overflow in the sock_gets function in ATPhttpd 0.4b and
earlier ...)
+ TODO: check
+CAN-2002-1815 (Directory traversal vulnerability in source.php and source.cgi
in ...)
+ TODO: check
+CAN-2002-1814 (Buffer overflow in efstools in Bonobo, when installed setuid,
allows ...)
+ TODO: check
+CAN-2002-1813 (Directory traversal vulnerability in AOL Instant Messenger (AIM)
...)
+ TODO: check
+CAN-2002-1812 (Buffer overflow in gdam123 0.933 and 0.942 allows local users to
...)
+ TODO: check
+CAN-2002-1811 (Belkin F5D6130 Wireless Network Access Point running firmware
AP14G8 ...)
+ TODO: check
+CAN-2002-1810 (D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote
attackers to ...)
+ TODO: check
+CAN-2002-1809 (The default configuration of the Windows binary release of MySQL
...)
+ TODO: check
+CAN-2002-1808 (Cross-site scripting (XSS) vulnerability in Meunity Community
System ...)
+ TODO: check
+CAN-2002-1807 (Cross-site scripting (XSS) vulnerability in phpWebSite 0.8.3
allows ...)
+ TODO: check
+CAN-2002-1806 (Cross-site scripting (XSS) vulnerability in Drupal 4.0.0 allows
remote ...)
+ TODO: check
+CAN-2002-1805 (Cross-site scripting (XSS) vulnerability in DaCode 1.2.0 allows
remote ...)
+ TODO: check
+CAN-2002-1804 (Cross-site scripting (XSS) vulnerability in NPDS 4.8 allows
remote ...)
+ TODO: check
+CAN-2002-1803 (Cross-site scripting (XSS) vulnerability in PHP-Nuke 6.0 allows
remote ...)
+ TODO: check
+CAN-2002-1802 (Cross-site scripting (XSS) vulnerability in Xoops 1.0 RC3 allows
...)
+ TODO: check
+CAN-2002-1801 (ImageFolio 2.23 through 2.27 allows remote attackers to obtain
...)
+ TODO: check
+CAN-2002-1800 (phpRank 1.8 stores the administrative password in plaintext on
the ...)
+ TODO: check
+CAN-2002-1799 (Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows
remote ...)
+ TODO: check
+CAN-2002-1798 (MidiCart PHP 1 allows remote attackers to (1) upload arbitrary
php ...)
+ TODO: check
+CAN-2002-1797 (ChaiVM for HP color LaserJet 4500 and 4550 or HP LaserJet 4100
and ...)
+ TODO: check
+CAN-2002-1796 (ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP
LaserJet ...)
+ TODO: check
+CAN-2002-1795 (Cross-site scripting (XSS) vulnerability in connect.asp in
Microsoft ...)
+ TODO: check
+CAN-2002-1794 (Unknown vulnerability in pam_authz in the LDAP-UX Integration
product ...)
+ TODO: check
+CAN-2002-1793 (HTTP Server mod_ssl module running on HP-UX 11.04 with
Virtualvault OS ...)
+ TODO: check
+CAN-2002-1792 (Buffer overflow in Fake Identd 0.9 through 1.4 allows remote
attackers ...)
+ TODO: check
+CAN-2002-1791 (SGI IRIX 6.5 through 6.5.17 creates temporary desktop files with
...)
+ TODO: check
+CAN-2002-1790 (The SMTP service in Microsoft Internet Information Services
(IIS) 4.0 ...)
+ TODO: check
+CAN-2002-1789 (Format string vulnerability in newsx NNTP client before 1.4.8
allows ...)
+ TODO: check
+CAN-2002-1788 (Format string vulnerability in the nn_exitmsg function in nn
6.6.0 ...)
+ TODO: check
+CAN-2002-1787 (Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5
through ...)
+ TODO: check
+CAN-2002-1786 (SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core
dumps, ...)
+ TODO: check
+CAN-2002-1785 (Cross-site scripting (XSS) vulnerability in Zeus Administration
Server ...)
+ TODO: check
+CAN-2002-1784 (Unknown vulnerability in inetd in HP Tru64 Unix 4.0f through
5.1a ...)
+ TODO: check
+CAN-2002-1783 (CRLF injection vulnerability in PHP 4.2.1 through 4.2.3, when
...)
+ TODO: check
+CAN-2000-1227 (Windows NT 4.0 and Windows 2000 hosts allow remote attackers to
cause ...)
+ TODO: check
CAN-2005-XXXX [HTTP request smuggling/spooing in apache2''s HTTP proxy
mode]
- apache (unfixed; bug pending; medium)
CAN-2005-XXXX [Unspecified DoS vulnerability in dhcpd]
@@ -6563,8 +7023,8 @@
CAN-2005-0202 (Directory traversal vulnerability in the true_path function in
...)
{DSA-674-1}
- mailman 2.1.5-6
-CAN-2005-0201
- NOTE: reserved
+CAN-2005-0201 (D-BUS (dbus) before 0.22 does not properly restrict access to a
...)
+ TODO: check
CAN-2005-0200 (TikiWiki before 1.8.5 does not properly validate files that have
been ...)
NOTE: not-for-us (TikiWiki)
CAN-2005-0199 (Integer underflow in the Lists_MakeMask() function in lists.c in
...)