Secure testing commits - Jul 2005 - r1415 - data/CAN

Author: joeyh
Date: 2005-07-17 07:46:00 +0000 (Sun, 17 Jul 2005)
New Revision: 1415

Modified:
   data/CAN/list
Log:
done with block, but need to check/ping about mozilla side of holes


Modified: data/CAN/list
==================================================================---
data/CAN/list	2005-07-17 07:38:36 UTC (rev 1414)
+++ data/CAN/list	2005-07-17 07:46:00 UTC (rev 1415)
@@ -1,37 +1,44 @@
-begin clamied by joeyh
 CAN-2005-2275
 	NOTE: reserved
 CAN-2005-2274 (Microsoft Internet Explorer 6.0 does not clearly associate a
...)
-	TODO: check
+	NOTE: not-for-us (MSIE)
 CAN-2005-2273 (Opera 7.x and 8 before 8.01 does not clearly associate a
Javascript ...)
-	TODO: check
+	NOTE: not-for-us (Opera)
 CAN-2005-2272 (Safari version 2.0 (412) does not clearly associate a Javascript
...)
-	TODO: check
+	NOTE: not-for-us (Sfari)
 CAN-2005-2271 (iCab 2.9.8 does not clearly associate a Javascript dialog box
with the ...)
-	TODO: check
+	NOTE: not-for-us (iCab)
 CAN-2005-2270 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly
clone ...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (high)
+	TODO: mozilla
 CAN-2005-2269 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly
verify ...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (high)
+	TODO: mozilla
 CAN-2005-2268 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly
...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (medium)
+	TODO: mozilla
 CAN-2005-2267 (Firefox before 1.0.5 allows remote attackers to steal
information and ...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (medium)
+	TODO: mozilla
 CAN-2005-2266 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child
frame to ...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (medium)
+	TODO: mozilla
 CAN-2005-2265 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote
attackers ...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (high)
+	TODO: mozilla
 CAN-2005-2264 (Firefox before 1.0.5 allows remote attackers to steal sensitive
...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (medium)
 CAN-2005-2263 (The InstallTrigger.install method in Firefox before 1.0.5 and
Mozilla ...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (medium)
+	TODO: mozilla
 CAN-2005-2262 (Firefox 1.0.3 and 1.0.4 allows remote attackers to execute
arbitrary ...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (medium)
 CAN-2005-2261 (Firefox before 1.0.5, Thunderbird before 1.0.5, and Mozilla
before ...)
-	TODO: check
+	- mozilla-firefox 1.0.5-1 (medium)
+	TODO: mozilla
 CAN-2005-2260 (The browser user interface in Firefox before 1.0.5 and Mozilla
before ...)
-	TODO: check
-end clamied by joeyh
+	- mozilla-firefox 1.0.5-1 (medium)
+	TODO: mozilla
 CAN-2002-2086 (Multiple cross-site scripting (XSS) vulnerabilities in magicHTML
of ...)
 	TODO: check
 CAN-2002-2085 (Directory traversal vulnerability in page.cgi of WWWeBBB Forum
3.82 ...)