[VIM] Security Vulnerability reported in ActiveBuyAndSell 6.2 (fwd)

Steven M. Christey coley at linus.mitre.org
Thu Jun 30 14:54:24 EDT 2005

No response yet...  This is CAN-2005-2063.

- Steve

---------- Forwarded message ----------
Date: Tue, 28 Jun 2005 21:33:32 -0400 (EDT)
From: Steven M. Christey <coley at mitre.org>
To: Support at activewebsoftwares.com
Cc: jschommer at mitre.org, coley at mitre.org
Subject: Security Vulnerability reported in ActiveBuyAndSell 6.2


I am a computer security professional and the editor for the Common
Vulnerabilities and Exposures (CVE) project.  CVE is a list of
software vulnerabilities, and it is widely used in the computer
security industry.

Recently, a vulnerability in ActiveBuyAndSell was publicly reported to
a well-known security mailing list:

  BUGTRAQ:20050624 [ECHO_ADV_21$2005] MUltiple Vulnarable In ActiveBuyAndSell

Is this vulnerability report accurate?  If so, then is the problem
fixed, and in which versions?

Thank you,
Steve Christey
Principal Information Security Engineer
CVE Editor
The MITRE Corporation

More information about the VIM mailing list