oss-sec mailing list archives

CVE Request -- OCSNG_UNIX_SERVER-1.02.2

From: Jan Lieskovsky <jlieskov () redhat com>
Date: Mon, 01 Feb 2010 18:58:50 +0100

Hi Josh, Steve, vendors,

  multiple security issues have been reported against
OCS Inventory NG Management server for Unix/Linux.

References:

[1] http://secunia.com/advisories/38311/
[2] http://www.packetstormsecurity.org/1001-exploits/ocsinventoryng-sqlxss.txt
[3] http://www.ocsinventory-ng.org/index.php?page=1-02-1
[4] http://launchpad.net/ocsinventory-server/stable-1.02/stable-release-1.02.2/+download/OCSNG_UNIX_SERVER-1.02.2.tar.gz

Could you allocate CVE ids for these?

Thanks && Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

Current thread:

CVE Request -- OCSNG_UNIX_SERVER-1.02.2 Jan Lieskovsky (Feb 01)
- Re: CVE Request -- OCSNG_UNIX_SERVER-1.02.2 Josh Bressers (Feb 01)