thr3ads.net - Secure testing commits - [Secure-testing-commits] r1553

If this information is useful, please help other people find it:
Share via:

Neil McGovern

2005-Aug-10 17:06 UTC

[Secure-testing-commits] r1553 - data/CAN

Author: neilm
Date: 2005-08-10 17:05:40 +0000 (Wed, 10 Aug 2005)
New Revision: 1553

Modified:
   data/CAN/list
Log:
Claim


Modified: data/CAN/list
==================================================================---
data/CAN/list	2005-08-10 11:30:40 UTC (rev 1552)
+++ data/CAN/list	2005-08-10 17:05:40 UTC (rev 1553)
@@ -312,6 +312,10 @@
 	- cgiwrap (unfixed; bug #316881; low)
 CAN-2005-XXXX [cgiwrap: CGIs can be used to disclose system information]
 	- cgiwrap (unfixed; bug #316901; low)
+CAN-2004-2162 (Multiple cross-site scripting (XSS) vulnerabilities in TUTOS 1.1
allow ...)
+	- tutos (unfixed; bug #318633; medium)
+CAN-2004-2161 (SQL injection vulnerability in file_overview.php in TUTOS 1.1
allows ...)
+	- tutos (unfixed; bug #318633; medium)
 end claimed by neilm
 CAN-2005-XXXX [libnet-ssleay-perl: /tmp/entropy insecure]
 	- libnet-ssleay-perl (unfixed; bug #296112; low)
@@ -1598,10 +1602,6 @@
 	NOTE: not-for-us (VP-ASP)
 CAN-2004-2163 (login_radius on OpenBSD 3.2, 3.5, and possibly other versions
does not ...)
 	NOTE: not-for-us (OpenBSD)
-CAN-2004-2162 (Multiple cross-site scripting (XSS) vulnerabilities in TUTOS 1.1
allow ...)
-	- tutos (unfixed; bug #318633; medium)
-CAN-2004-2161 (SQL injection vulnerability in file_overview.php in TUTOS 1.1
allows ...)
-	- tutos (unfixed; bug #318633; medium)
 CAN-2004-2160 (Format string vulnerability in xml_elem.c for XMLStarlet Command
Line ...)
 	- xmlstarlet 1.0.0-1
 CAN-2004-2159 (Multiple buffer overflows in XMLStarlet Command Line XML Toolkit
0.9.3 ...)

Secure testing commits - Aug 2005 - r1553 - data/CAN

[Secure-testing-commits] r1553 - data/CAN