thr3ads.net - Secure testing commits - [Secure-testing-commits] r13878

If this information is useful, please help other people find it:
Share via:

Pedro Ribeiro

2010-Jan-21 23:11 UTC

[Secure-testing-commits] r13878 - data/CVE

Author: pedrib-guest
Date: 2010-01-21 23:11:12 +0000 (Thu, 21 Jan 2010)
New Revision: 13878

Modified:
   data/CVE/list
Log:
resolved the 5 previous issues, claimed 5 more


Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-01-21 22:33:04 UTC (rev 13877)
+++ data/CVE/list	2010-01-21 23:11:12 UTC (rev 13878)
@@ -1,15 +1,13 @@
-begin claimed by pedrib-guest
 CVE-2010-0363 (Cross-site scripting (XSS) vulnerability in Zeus Web Server
before ...)
-	TODO: check
+	NOT-FOR-US: Zeus Web Server
 CVE-2010-0362 (Zeus Web Server before 4.3r5 does not use random transaction IDs
for ...)
-	TODO: check
+	NOT-FOR-US: Zeus Web Server
 CVE-2010-0361 (Stack-based buffer overflow in the WebDAV implementation in
webservd ...)
-	TODO: check
+	NOT-FOR-US: Sun Java System Web Server
 CVE-2010-0360 (Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote
...)
-	TODO: check
+	NOT-FOR-US: Sun Java System Web Server
 CVE-2010-0359 (Buffer overflow in the SSLv2 support in Zeus Web Server before
4.3r5 ...)
-	TODO: check
-end claimed by pedrib-guest
+	NOT-FOR-US: Zeus Web Server
 CVE-2010-0358 (Heap-based buffer overflow in the server in IBM Lotus Domino 7
and 8.5 ...)
 	TODO: check
 CVE-2010-0357 (Cross-site scripting (XSS) vulnerability in the Login page in
IBM ...)
@@ -152,6 +150,7 @@
 	NOT-FOR-US: Glitter Central Script
 CVE-2010-0319 (Cross-site scripting (XSS) vulnerability in index.php in Docmint
1.0 ...)
 	NOT-FOR-US: Docmint
+begin claimed by pedrib-guest
 CVE-2010-0318 (The replay functionality for ZFS Intent Log (ZIL) in FreeBSD
7.1, 7.2, ...)
 	TODO: check
 CVE-2010-0317 (Novell Netware 6.5 SP8 allows remote attackers to cause a denial
of ...)
@@ -164,6 +163,7 @@
 	TODO: check
 CVE-2010-0313 (The core_get_proxyauth_dn function in ns-slapd in Sun Java
System ...)
 	TODO: check
+end claimed by pedrib-guest
 CVE-2010-0312 (The do_extendedOp function in ibmslapd in IBM Tivoli Directory
Server ...)
 	NOT-FOR-US: IBM Tivoli Directory Server
 CVE-2010-0311 (Unspecified vulnerability in Sun Java System Identity Manager
(aka ...)

Michael Gilbert

2010-Jan-21 23:53 UTC

head link

[Secure-testing-commits] r13878 - data/CVE

On Thu, 21 Jan 2010 23:11:13 +0000 Pedro Ribeiro wrote:
> Author: pedrib-guest
> Date: 2010-01-21 23:11:12 +0000 (Thu, 21 Jan 2010)
> New Revision: 13878
> 
> Modified:
>    data/CVE/list
> Log:
> resolved the 5 previous issues, claimed 5 more
thank you very much for your contribution!  btw, claiming isn''t really
necessary; no one really does that anymore.  maybe we should remove that
instruction from the narrative doc?

mike

Secure testing commits - Jan 2010 - r13878 - data/CVE

[Secure-testing-commits] r13878 - data/CVE

[Secure-testing-commits] r13878 - data/CVE