From zdi-disclosures at tippingpoint.com  Tue Apr  9 10:16:26 2013
From: zdi-disclosures at tippingpoint.com (ZDI Disclosures)
Date: Tue, 09 Apr 2013 10:16:26 -0500
Subject: [VIM] Could not find some ZDI-CAN-XXXX is pointing to which ZDI
	advisory
In-Reply-To: <96CC6D276D1CC043905F0666B28DA2CB2AA8F26C9B@APJ1XCHEVSPIN30.SYMC.SYMANTEC.COM>
References: <96CC6D276D1CC043905F0666B28DA2CB2AA8F26C9B@APJ1XCHEVSPIN30.SYMC.SYMANTEC.COM>
Message-ID: <516430CA.3040300@hp.com>

CVE-2012-5206 to ZDI-CAN-1660 [ZDI-13-061]

CVE-2012-5207 to ZDI-CAN-1661 [ZDI-13-062]

CVE-2012-5208 to ZDI-CAN-1615 [ZDI-13-057]

CVE-2012-5209 to ZDI-CAN-1659 [ZDI-13-060]

CVE-2012-5210 to ZDI-CAN-1646 [ZDI-13-059]

CVE-2012-5211 to ZDI-CAN-1643 [ZDI-13-058]

CVE-2012-5212 to ZDI-CAN-1663 [ZDI-13-063]
CVE-2012-5213 to ZDI-CAN-1662 [No ZDI advisory forthcoming]


On 3/25/2013 11:21 AM, Narayan Agarwalla wrote:
>
> Hi ZDI team
>
> I came across a HP advisory link.
>
> https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?javax.portlet.prp_ba847bafb2a2d782fcbb0710b053ce01=wsrp-navigationalState%3DdocId%253Demr_na-c03689276-1%257CdocLocale%253D%257CcalledBy%253D&javax.portlet.tpst=ba847bafb2a2d782fcbb0710b053ce01&javax.portlet.begCacheTok=com.vignett&ac.admitted=1364225918482.876444892.199480143
>
> In this advisory, HP are pointing
>
> CVE-2012-5206 to ZDI-CAN-1660
>
> CVE-2012-5207 to ZDI-CAN-1661
>
> CVE-2012-5208 to ZDI-CAN-1615
>
> CVE-2012-5209 to ZDI-CAN-1659
>
> CVE-2012-5210 to ZDI-CAN-1646
>
> CVE-2012-5211 to ZDI-CAN-1643
>
> CVE-2012-5212 to ZDI-CAN-1663
>
> CVE-2012-5213 to ZDI-CAN-1662
>
> Can you please let me know ZDI-CAN-1660, ZDI-CAN-1661, ZDI-CAN-1615, 
> ZDI-CAN-1659, ZDI-CAN-1646, ZDI-CAN-1643, ZDI-CAN-1663 and 
> ZDI-CAN-1662 points to which advisory?
>
> Thanks!
>
> Narayan Agarwalla
>
> Supervisor, DeepSight
>
> Security Technology and Response
>
> Mobile: +91-8939922488
>
> cid:937b6475-308e-4b9b-8e75-9bbe57e29e33
>
> http://syminfo.ges.symantec.com/marketing/globalcommunications/images/sig_green_bug.gif
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.attrition.org/pipermail/vim/attachments/20130409/2455d298/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/jpeg
Size: 1958 bytes
Desc: not available
URL: <http://www.attrition.org/pipermail/vim/attachments/20130409/2455d298/attachment.jpe>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 751 bytes
Desc: not available
URL: <http://www.attrition.org/pipermail/vim/attachments/20130409/2455d298/attachment.gif>

From jericho at attrition.org  Fri Apr 12 21:51:26 2013
From: jericho at attrition.org (security curmudgeon)
Date: Fri, 12 Apr 2013 21:51:26 -0500 (CDT)
Subject: [VIM] ZDI-CAN-1676?
Message-ID: <alpine.LNX.2.00.1304122151030.4835@forced.attrition.org>


ZDI Team;

Can you let us know which CVE this internal reference crosses with?

Thanks!