Author: joeyh
Date: 2005-08-19 09:14:16 +0000 (Fri, 19 Aug 2005)
New Revision: 1606
Modified:
data/CAN/list
Log:
automatic CAN database update
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-08-19 00:27:02 UTC (rev 1605)
+++ data/CAN/list 2005-08-19 09:14:16 UTC (rev 1606)
@@ -1,3 +1,117 @@
+CAN-2005-2625 (Incomplete blacklist vulnerability in the checkBlacklist
function in ...)
+ TODO: check
+CAN-2005-2624 (Eval injection vulnerability in CPAINT 1.3-SP allows remote
attackers ...)
+ TODO: check
+CAN-2005-2623 (ECW-Shop 6.0.2 allows remote attackers to reduce the total cost
of ...)
+ TODO: check
+CAN-2005-2622 (Cross-site scripting (XSS) vulnerability in index.php in
ECW-Shop ...)
+ TODO: check
+CAN-2005-2621 (index.php in ECW-Shop 6.0.2 allows remote attackers to obtain
...)
+ TODO: check
+CAN-2005-2620 (grpWise.exe for Novell GroupWise client 5.5 through 6.5.2 stores
the ...)
+ TODO: check
+CAN-2005-2619
+ NOTE: reserved
+CAN-2005-2618
+ NOTE: reserved
+CAN-2004-2434 (Microsoft Internet Explorer 6.0 SP1 allows remote attackers to
cause a ...)
+ TODO: check
+CAN-2004-2433 (Buffer overflow in the IsValidFile function in the ADM ActiveX
control ...)
+ TODO: check
+CAN-2004-2432 (WinAgents TFTP Server 3.0 allows remote attackers to cause a
denial of ...)
+ TODO: check
+CAN-2004-2431 (Unknown vulnerability in The Ignition Project ignitionServer
0.1.2 ...)
+ TODO: check
+CAN-2004-2430 (Trend OfficeScan Corporate Edition 5.58 and possibly earler does
not ...)
+ TODO: check
+CAN-2004-2429 (Multiple stack-based and heap-based buffer overflows in
EnderUNIX ...)
+ TODO: check
+CAN-2004-2428 (Abczone.it WWWguestbook 1.1 stores db/dbase.mdb under the web
document ...)
+ TODO: check
+CAN-2004-2427 (Axis Network Camera 2.40 and earlier, and Video Server 3.12 and
...)
+ TODO: check
+CAN-2004-2426 (Directory traversal vulnerability in Axis Network Camera 2.40
and ...)
+ TODO: check
+CAN-2004-2425 (Axis Network Camera 2.40 and earlier, and Video Server 3.12 and
...)
+ TODO: check
+CAN-2004-2424 (BEA WebLogic Server and WebLogic Express 8.1 through 8.1 SP2
allow ...)
+ TODO: check
+CAN-2004-2423 (Unknown vulnerability in the Web calendaring component of
Ipswitch ...)
+ TODO: check
+CAN-2004-2422 (Multiple features in Ipswitch IMail Server before 8.13 allow
remote ...)
+ TODO: check
+CAN-2004-2421 (Unknown vulnerability in Hitachi Job Management Partner (JP1)
JP1/File ...)
+ TODO: check
+CAN-2004-2420 (Hitachi Job Management Partner (JP1) JP1/File Transmission
Server/FTP ...)
+ TODO: check
+CAN-2004-2419 (Keene Digital Media Server 1.0.2 allows local users to obtain
...)
+ TODO: check
+CAN-2004-2418 (Buffer overflow in SlimFTPd 3.15 and earlier allows local users
to ...)
+ TODO: check
+CAN-2004-2417 (Format string vulnerability in smtp.c for smtp.proxy 1.1.3 and
earlier ...)
+ TODO: check
+CAN-2004-2416 (Buffer overflow in the logging component of CCProxy allows
remote ...)
+ TODO: check
+CAN-2004-2415 (Davenport before 0.9.10 allows attackers to cause a denial of
service ...)
+ TODO: check
+CAN-2004-2414 (Novell NetWare 6.5 SP 1.1, when installing or upgrading using
the ...)
+ TODO: check
+CAN-2004-2413 (SQL injection vulnerability in VP-ASP Shopping Cart 4.0 through
5.0 ...)
+ TODO: check
+CAN-2004-2412 (Multiple SQL injection vulnerabilities in VP-ASP Shopping Cart
4.0 ...)
+ TODO: check
+CAN-2004-2411 (The CleanseMessage function in shop$db.asp for VP-ASP Shopping
Cart ...)
+ TODO: check
+CAN-2004-2410 (Unknown vulnerability in sh_hash_compdata for Samhain 1.8.9
through ...)
+ TODO: check
+CAN-2004-2409 (Buffer overflow in the sh_hash_compdata function for Samhain
1.8.9 ...)
+ TODO: check
+CAN-2004-2408 (Linux VServer 1.27 and earlier, 1.3.9 and earlier, and 1.9.1 and
...)
+ TODO: check
+CAN-2004-2407 (Unknown vulnerability in phpGroupWare before 0.9.14.002 has
unknown ...)
+ TODO: check
+CAN-2004-2406 (Unknown "overflow" in the phpgw_config table
for phpGroupWare before ...)
+ TODO: check
+CAN-2004-2405 (Buffer overflow in multiple F-Secure Anti-Virus products,
including ...)
+ TODO: check
+CAN-2004-2404 (blog.cgi in Leif Wright Web Blog 1.1.5 allows remote attackers
to ...)
+ TODO: check
+CAN-2004-2403 (Cross-site request forgery (CSRF) vulnerability in YaBB 1 GOLD
SP ...)
+ TODO: check
+CAN-2004-2402 (Cross-site scripting (XSS) vulnerability in YaBB.pl in YaBB 1
GOLD SP ...)
+ TODO: check
+CAN-2004-2401 (Stack-based buffer overflow in Ipswitch IMail Express Web
Messaging ...)
+ TODO: check
+CAN-2004-2400 (WinFTP Server 1.6 stores username and password credentials in
...)
+ TODO: check
+CAN-2004-2399 (Secure Computing Corporation Sidewinder G2 6.1.0.01 allows
remote ...)
+ TODO: check
+CAN-2004-2398 (Netenberg Fantastico De Luxe 2.8 uses database file names that
contain ...)
+ TODO: check
+CAN-2004-2397 (The web-based Management Console in Blue Coat Security Gateway
OS 3.0 ...)
+ TODO: check
+CAN-2004-2396 (passwd 0.68 does not check the return code for the pam_start
function, ...)
+ TODO: check
+CAN-2004-2395 (Memory leak in passwd 0.68 allows local users to cause a denial
of ...)
+ TODO: check
+CAN-2004-2394 (Off-by-one error in passwd 0.68 and earlier, when using the
--stdin ...)
+ TODO: check
+CAN-2004-2393 (Java Secure Socket Extension (JSSE) 1.0.3 through 1.0.3_2 does
not ...)
+ TODO: check
+CAN-2004-2392 (libuser 0.51.7, as used in Mandrake Linux 9.1 through 10.0 and
...)
+ TODO: check
+CAN-2004-2391 (Jabber Gadu-Gadu Transport (a.k.a. jabber-gg-transport) 2.0.x
before ...)
+ TODO: check
+CAN-2004-2390 (The roster import functionality in Jabber Gadu-Gadu Transport
...)
+ TODO: check
+CAN-2004-2389 (Unknown vulnerability in Jabber Gadu-Gadu Transport ...)
+ TODO: check
+CAN-2003-1231 (Cross-site scripting (XSS) vulnerability in index.php in
ECW-Shop 5.5 ...)
+ TODO: check
+CAN-2003-1230 (The implementation of SYN cookies (syncookies) in FreeBSD 4.5
through ...)
+ TODO: check
+CAN-2003-1229 (X509TrustManager in (1) Java Secure Socket Extension (JSSE) in
SDK and ...)
+ TODO: check
CAN-2005-2617 (The syscall32_setup_pages function in syscall32.c for Linux
kernel ...)
TODO: check with kernel team (pinged on irc)
NOTE: amd64 specific DOS
@@ -99,7 +213,7 @@
TODO: check
CAN-2005-2569 (Multiple cross-site scripting (XSS) vulnerabilities in FunkBoard
...)
TODO: check
-CAN-2005-2568 (Direct dynamic code evaluation vulnerability in the template
engine ...)
+CAN-2005-2568 (Eval injection vulnerability in the template engine for SysCP
1.2.10 ...)
TODO: check
CAN-2005-2567 (PHP remote file inclusion vulnerability in SysCP 1.2.10 and
earlier ...)
TODO: check
@@ -141,7 +255,7 @@
TODO: check
CAN-2004-2382 (The PerfectNav plugin for Microsoft Internet Explorer allows
remote ...)
TODO: check
-CAN-2004-2381 (Unknown vulnerability in Jetty before 4.2.19 allows attackers to
cause ...)
+CAN-2004-2381 (HttpRequest.java in Jetty HTTP Server before 4.2.19 allows
remote ...)
TODO: check
CAN-2004-2380 (Directory traversal vulnerability in postfile.exe for Twilight
...)
TODO: check
@@ -233,7 +347,7 @@
TODO: check
CAN-2004-2336 (Unknown vulnerability in Novell GroupWise and GroupWise
WebAccess 6.0 ...)
TODO: check
-CAN-2004-2335 (The AuthenticationService file for the Macromedia e-licensing
client ...)
+CAN-2004-2335 (The Macromedia installers and e-licensing client on Mac OS X, as
used ...)
TODO: check
CAN-2004-2334 (Multiple cross-site scripting (XSS) vulnerabilities in EMU
Webmail ...)
TODO: check
@@ -279,7 +393,7 @@
TODO: check
CAN-2004-2313 (Inter7 SqWebMail 3.4.1 through 3.6.1 generates different error
...)
TODO: check
-CAN-2004-2312 (Buffer overflow in GNU make for IBM AIX 4.3.3 allows local users
to ...)
+CAN-2004-2312 (Buffer overflow in GNU make for IBM AIX 4.3.3, when installed
setgid, ...)
TODO: check
CAN-2004-2311 (Directory traversal vulnerability in webadmin.nsf in Lotus
Domino R6 ...)
TODO: check
@@ -381,64 +495,64 @@
NOTE: reserved
CAN-2005-2527
NOTE: reserved
-CAN-2005-2526
- NOTE: reserved
-CAN-2005-2525
- NOTE: reserved
+CAN-2005-2526 (CUPS in Mac OS X 10.3.9 and 10.4.2 allows remote attackers to
cause a ...)
+ TODO: check
+CAN-2005-2525 (CUPS in Mac OS X 10.3.9 and 10.4.2 does not properly close file
...)
+ TODO: check
CAN-2005-2524
NOTE: reserved
-CAN-2005-2523
- NOTE: reserved
-CAN-2005-2522
- NOTE: reserved
-CAN-2005-2521
- NOTE: reserved
-CAN-2005-2520
- NOTE: reserved
-CAN-2005-2519
- NOTE: reserved
-CAN-2005-2518
- NOTE: reserved
-CAN-2005-2517
- NOTE: reserved
-CAN-2005-2516
- NOTE: reserved
-CAN-2005-2515
- NOTE: reserved
-CAN-2005-2514
- NOTE: reserved
-CAN-2005-2513
- NOTE: reserved
-CAN-2005-2512
- NOTE: reserved
-CAN-2005-2511
- NOTE: reserved
-CAN-2005-2510
- NOTE: reserved
-CAN-2005-2509
- NOTE: reserved
-CAN-2005-2508
- NOTE: reserved
-CAN-2005-2507
- NOTE: reserved
-CAN-2005-2506
- NOTE: reserved
-CAN-2005-2505
- NOTE: reserved
-CAN-2005-2504
- NOTE: reserved
-CAN-2005-2503
- NOTE: reserved
-CAN-2005-2502
- NOTE: reserved
-CAN-2005-2501
- NOTE: reserved
+CAN-2005-2523 (Multiple cross-site scripting (XSS) vulnerabilities in Weblog
Server ...)
+ TODO: check
+CAN-2005-2522 (Safari in WebKit in Mac OS X 10.4 to 10.4.2 directly accesses
URLs ...)
+ TODO: check
+CAN-2005-2521 (Buffer overflow in traceroute in Mac OS X 10.3.9 allows local
users to ...)
+ TODO: check
+CAN-2005-2520 (The password assistant in Mac OS X 10.4 to 10.4.2, when used to
create ...)
+ TODO: check
+CAN-2005-2519 (slpd in Directory Services in Mac OS X 10.3.9 creates insecure
...)
+ TODO: check
+CAN-2005-2518 (Buffer overflow in servermgrd in Mac OS X 10.3.9 and 10.4.2
allows ...)
+ TODO: check
+CAN-2005-2517 (Safari in Mac OS X 10.3.9 and 10.4.2 submits forms from an XSL
...)
+ TODO: check
+CAN-2005-2516 (Safari in Mac OS X 10.3.9 and 10.4.2, when rendering Rich Text
Format ...)
+ TODO: check
+CAN-2005-2515 (Quartz Composer Screen Saver in Mac OS X 10.4.2 allows local
users to ...)
+ TODO: check
+CAN-2005-2514 (Buffer overflow in ping in Mac OS X 10.3.9 allows local users to
...)
+ TODO: check
+CAN-2005-2513 (Unknown vulnerability in HItoolbox for Mac OS X 10.4.2 allows
...)
+ TODO: check
+CAN-2005-2512 (Mail.app in Mac OS 10.4.2 and earlier, when printing or
forwarding an ...)
+ TODO: check
+CAN-2005-2511 (Unknown vulnerability in Mac OS X 10.4.2 and earlier, when using
...)
+ TODO: check
+CAN-2005-2510 (The Server Admin tool in servermgr_ipfilter for Mac OS X 10.4 to
...)
+ TODO: check
+CAN-2005-2509 (Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and
earlier, ...)
+ TODO: check
+CAN-2005-2508 (dsidentity in Directory Services in Mac OS X 10.4.2 allows local
users ...)
+ TODO: check
+CAN-2005-2507 (Buffer overflow in Directory Services in Mac OS X 10.3.9 and
10.4.2 ...)
+ TODO: check
+CAN-2005-2506 (Algorithmic complexity vulnerability in CoreFoundation in Mac OS
X ...)
+ TODO: check
+CAN-2005-2505 (Buffer overflow in CoreFoundation in Mac OS X 10.3.9 allows
attackers ...)
+ TODO: check
+CAN-2005-2504 (The System Profiler in Mac OS X 10.4.2 labels a Bluetooth device
with ...)
+ TODO: check
+CAN-2005-2503 (AppKit for Mac OS X 10.3.9 and 10.4.2 allows attackers with
physical ...)
+ TODO: check
+CAN-2005-2502 (Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2, as
used in ...)
+ TODO: check
+CAN-2005-2501 (Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2 allows
...)
+ TODO: check
CAN-2005-2500 (Buffer overflow in the xdr_xcode_array2 function in xdr.c in
Linux ...)
NOTE: Does not affect 2.6.8 or 2.4.27, fixed in current 2.6.12 kernels
- linux-2.6 2.6.12-1 (medium)
CAN-2005-2499
NOTE: reserved
-CAN-2005-2498 (Direct dynamic code evaluation vulnerability in PHPXMLRPC 1.1.1
and ...)
+CAN-2005-2498 (Eval injection vulnerability in PHPXMLRPC 1.1.1 and earlier
(XML-RPC ...)
- drupal (unfixed; bug #323347; high)
- phpgroupware (unfixed; bug #323349; high)
- egroupware (unfixed; bug #323350; high)
@@ -508,7 +622,7 @@
NOTE: not-for-us (Logicampus)
CAN-2005-2484 (Buffer overflow in the rdb_query function for Denora IRC Stats
1.0 ...)
NOTE: not-for-us (Denora IRC stats)
-CAN-2005-2483 (Direct dynamic code evaluation vulnerability in Karrigell before
2.1.8 ...)
+CAN-2005-2483 (Eval injection vulnerability in Karrigell before 2.1.8 allows
remote ...)
NOTE: not-for-us (Karrigell)
CAN-2005-2482 (The StateToOptions function in msfweb in Metasploit Framework
2.4 and ...)
NOTE: not-for-us (Metasploit Framework)
@@ -695,7 +809,7 @@
NOTE: reserved
CAN-2005-2453 (Cross-site scripting (XSS) vulnerability in NetworkActiv Web
Server ...)
NOTE: not-for-us (NetworkActiv Web Server)
-CAN-2005-2452 (libtiff 4.0 allows remote attackers to cause a denial of service
...)
+CAN-2005-2452 (libtiff up to 3.7.0 allows remote attackers to cause a denial of
...)
NOTE: CVE description is broken, this only affects 3.6, it''s been
fixed in 3.7
- tiff 3.7.0-1
CAN-2005-2451 (Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6
enabled, ...)
@@ -798,7 +912,7 @@
NOTE: not-for-us (PHP-Nuke)
CAN-2004-2296 (The preview_review function in the Reviews module in PHP-Nuke
6.0 to ...)
NOTE: not-for-us (PHP-Nuke)
-CAN-2004-2295 (SQL injection vulnerability in modules.php in PHP-Nuke 6.0 to
7.3 ...)
+CAN-2004-2295 (SQL injection vulnerability in the Reviews module in PHP-Nuke
6.0 to ...)
NOTE: not-for-us (PHP-Nuke)
CAN-2004-2294 (Canonicalize-before-filter error in the send_review function in
the ...)
NOTE: not-for-us (PHP-Nuke)
@@ -2065,8 +2179,8 @@
NOTE: reserved
CAN-2005-2128
NOTE: reserved
-CAN-2005-2127
- NOTE: reserved
+CAN-2005-2127 (The Microsoft DDS Library Shape Control (Msdds.dll) COM object
allows ...)
+ TODO: check
CAN-2005-2126
NOTE: reserved
CAN-2005-2125
@@ -2229,11 +2343,12 @@
NOTE: not-for-us (MegaBBS)
CAN-2004-2144 (Baal Smart Forms before 3.2 allows remote attackers to bypass
...)
NOTE: not-for-us (Baal Smart Forms)
-CAN-2004-2143 (SQL injection vulnerability in the ReMOSitory module in Mambo
Portal ...)
+CAN-2004-2143 (SQL injection vulnerability in the ReMOSitory Server add-on
module to ...)
NOTE: not-for-us (Mambo Portal)
CAN-2004-2142 (Unknown vulnerability in the remote tape support (remote.c) in
the RMT ...)
- sdd 1.52-1
-CAN-2004-2141 (Cross-site scripting (XSS) vulnerability in YaBBC.pl in YaBB 1
Gold ...)
+CAN-2004-2141
+ NOTE: rejected
NOTE: not-for-us (YaBB)
CAN-2004-2140 (CRLF injection vulnerability in YaBB 1 Gold before 1.3.2 allows
remote ...)
NOTE: not-for-us (YaBB)
@@ -3290,7 +3405,7 @@
CAN-2005-1922 (The MS-Expand file handling in Clam AntiVirus (ClamAV) before
0.86 ...)
{DSA-737-1}
- clamav 0.86.1-1 (low)
-CAN-2005-1921 (Direct dynamic code evaluation vulnerability in PEAR XML_RPC
1.3.0 and ...)
+CAN-2005-1921 (Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier
(aka ...)
{DSA-746-1 DSA-747-1 DSA-745-1}
NOTE: ITP #312413 - submitter contacted, she has already addressed this
NOTE: This will probably be re-organized by the CVE editor, but lets keep it
for now,
@@ -4319,7 +4434,7 @@
CAN-2005-1545 (Integer overflow in the ELF parser in HT Editor before 0.8.0
allows ...)
{DSA-743-1}
- ht 0.8.0-3
-CAN-2005-1544 (Stack-based buffer overflow in libTIFF before 1.53 allows remote
...)
+CAN-2005-1544 (Stack-based buffer overflow in libTIFF before 3.7.2 allows
remote ...)
{DSA-755-1}
NOTE: CVE info about vulnerable version number is bogus
- tiff 3.7.2-3
@@ -4359,7 +4474,7 @@
NOTE: reserved
CAN-2005-1528
NOTE: reserved
-CAN-2005-1527 (Direct dynamic code evaluation vulnerability in awstats.pl in
AWStats ...)
+CAN-2005-1527 (Eval injection vulnerability in awstats.pl in AWStats 6.4 and
earlier, ...)
- awstats 6.4-1 (unfixed; bug #322591; medium)
CAN-2005-1526 (PHP file inclusion vulnerability in config_settings.php in Cacti
...)
{DSA-764-1}
@@ -4958,7 +5073,7 @@
NOTE: not-for-us
CAN-2004-1831 (Buffer overflow in Chrome 1.2.0.0 and earlier allows remote
attackers ...)
NOTE: not-for-us
-CAN-2004-1830 (Error Manager 2.1 for PHP-Nuke 6.0 allow remote attackers to
obtain ...)
+CAN-2004-1830 (error.php in Error Manager 2.1 for PHP-Nuke 6.0 allows remote
...)
NOTE: not-for-us
CAN-2004-1829 (Multiple cross-site scripting (XSS) vulnerabilities in error.php
in ...)
NOTE: not-for-us
@@ -10870,10 +10985,10 @@
NOTE: rejected
CAN-2004-0953 (Buffer overflow in the C2S module in the open source Jabber 2.x
server ...)
NOTE: jabber version 2 is vulnerable, we have an older version that seems not
-CAN-2004-0952
- NOTE: reserved
-CAN-2004-0951
- NOTE: reserved
+CAN-2004-0952 (HP-UX B.11.00 through B.11.23, when running Ignite-UX and using
the ...)
+ TODO: check
+CAN-2004-0951 (The make_recovery command for the TFTP server in HP Ignite-UX
before ...)
+ TODO: check
CAN-2004-0950 (NetOp Host before 7.65 build 2004278 allows remote attackers to
obtain ...)
NOTE: not-for-us (NetOp Host)
CAN-2004-0949 (The smb_recv_trans2 function call in the samba filesystem
(smbfs) in ...)
@@ -11222,7 +11337,7 @@
CAN-2004-0805 (Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123
0.59s ...)
{DSA-564-1}
- mpg123 0.59r-16
-CAN-2004-0804 (Vulnerability in in tif_dirread.c for libtiff allows remote
attackers ...)
+CAN-2004-0804 (Vulnerability in tif_dirread.c for libtiff allows remote
attackers to ...)
{DSA-567-1}
NOTE: not vulnerable according to
http://www.debian.org/security/nonvulns-sarge
CAN-2004-0803 (Multiple vulnerabilities in the RLE (run length encoding)
decoders for ...)
@@ -11703,7 +11818,7 @@
NOTE: not-for-us (Windows)
CAN-2004-0585
NOTE: rejected
-CAN-2004-0584 (Unknown vulnerability in Horde-IMP 3.2.3 and earlier, before a
...)
+CAN-2004-0584 (Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a
...)
- imp 3.2.4
CAN-2004-0583 (The account lockout functionality in (1) Webmin 1.140 and (2)
Usermin ...)
{DSA-526}
@@ -11870,7 +11985,7 @@
- ethereal 0.10.4
CAN-2004-0504 (Ethereal 0.10.3 allows remote attackers to cause a denial of
service ...)
- ethereal 0.10.4
-CAN-2004-0503 (Outlook 2003 allows remote attackers to bypass the default zone
...)
+CAN-2004-0503 (Microsoft Outlook 2003 allows remote attackers to bypass the
default ...)
NOTE: not-for-us (Microsoft)
CAN-2004-0502 (Outlook 2003, when replying to an e-mail message, stores certain
files ...)
NOTE: not-for-us (Microsoft)