codesake-dawn 0.85 → 1.0.0.rc1

data/lib/codesake/dawn/kb/nokogiri_dos_20131217.rb

@@ -25,6 +25,7 @@ module Codesake
             :kind=>Codesake::Dawn::KnowledgeBase::RUBY_VERSION_CHECK,
           })
           self.safe_rubies = [ {:engine=>"jruby", :version=>"99.99.99", :patchlevel=>"p999"}]
+          # self.debug = true
         end
       end
 

data/lib/codesake/dawn/kb/operating_system_check.rb

@@ -35,7 +35,7 @@ module Codesake
         def different_family?
           ret = false
           @safe_os.each do |sos|
-            ret = true if ! ret and sos[:family] == @target_os[:family]
+            ret = true if ! ret && sos[:family] == @target_os[:family]
           end
           ret
         end
@@ -43,7 +43,7 @@ module Codesake
         def different_vendor?
           ret = false
           @safe_os.each do |sos|
-            ret = true if ! ret and sos[:vendor] == @target_os[:vendor]
+            ret = true if ! ret && sos[:vendor] == @target_os[:vendor]
           end
           ret
         end
@@ -51,7 +51,8 @@ module Codesake
         def vulnerable_os?
           ret = false
           @safe_os.each do |sos|
-            ret = true if ! ret and is_vulnerable_version?(@target_os[:family], sos[:version])
+            ret = true if ! ret && sos[:version] = 'none'
+            ret = true if ! ret && is_vulnerable_version?(@target_os[:family], sos[:version])
           end
           ret
         end

data/lib/codesake/dawn/kb/ruby_version_check.rb

@@ -27,7 +27,7 @@ module Codesake
           ve = false
 
           ve = self.is_same_version?(detected_ruby[:version], vv_a) 
-          vp = is_vulnerable_patchlevel?(detected_ruby[:patchlevel], detected_ruby[:version]) 
+          vp = is_vulnerable_patchlevel?(detected_ruby[:version], detected_ruby[:patchlevel])
 
           debug_me("D:#{self.name}, VENGINE=#{vengine}, VV=#{vv}, VE=#{ve}, VP=#{vp}->#{vv && vengine}, #{(ve && vp && vengine )}")
           debug_me("S:#{@safe_rubies}")
@@ -66,14 +66,20 @@ module Codesake
           false
         end
 
-        def is_vulnerable_patchlevel?(target, version)
+        def is_vulnerable_patchlevel?(version, patchlevel)
           fixes = []
+          debug_me "is_vulnerable_patchlevel? called with VERSION=#{version} and PLEVEL=#{patchlevel}"
+          debug_me "SAFE_RUBIES=#{@safe_rubies}"
           @safe_rubies.each do |ss|
             fixes << ss[:patchlevel].split("p")[1].to_i if ss[:version] == version
           end
 
-          t = target.split("p")[1].to_i
+          debug_me "FIXES IS EMPTY" if fixes.empty?
+          return true if fixes.empty?
+
+          t = patchlevel.split("p")[1].to_i
           fixes.each do |f|
+            debug_me "PATCHLEVEL FIXES = #{f}, PATCHLEVEL TARGET = #{t}"
             return true if f > t
           end
           false

data/lib/codesake/dawn/knowledge_base.rb

@@ -25,18 +25,80 @@ require "codesake/dawn/kb/simpleform_xss_20131129"
 require "codesake/dawn/kb/nokogiri_dos_20131217"
 require "codesake/dawn/kb/nokogiri_entityexpansion_dos_20131217"
 
+# CVE - 2004
+require "codesake/dawn/kb/cve_2004_0755"
+require "codesake/dawn/kb/cve_2004_0983"
+
+# CVE - 2005
+require "codesake/dawn/kb/cve_2005_1992"
+require "codesake/dawn/kb/cve_2005_2337"
+
+# CVE - 2006
+require "codesake/dawn/kb/cve_2006_1931"
+require "codesake/dawn/kb/cve_2006_2582"
+require "codesake/dawn/kb/cve_2006_3694"
+require "codesake/dawn/kb/cve_2006_4112"
+require "codesake/dawn/kb/cve_2006_5467"
+require "codesake/dawn/kb/cve_2006_6303"
+require "codesake/dawn/kb/cve_2006_6852"
+require "codesake/dawn/kb/cve_2006_6979"
+
+# CVE - 2007
+require "codesake/dawn/kb/cve_2007_0469"
+require "codesake/dawn/kb/cve_2007_5162"
+require "codesake/dawn/kb/cve_2007_5379"
+require "codesake/dawn/kb/cve_2007_5380"
+require "codesake/dawn/kb/cve_2007_5770"
+require "codesake/dawn/kb/cve_2007_6077"
+require "codesake/dawn/kb/cve_2007_6612"
+
+# CVE - 2008 
+
+require "codesake/dawn/kb/cve_2008_1145"
+require "codesake/dawn/kb/cve_2008_1891"
+require "codesake/dawn/kb/cve_2008_2376"
+require "codesake/dawn/kb/cve_2008_2662"
+require "codesake/dawn/kb/cve_2008_2663"
+require "codesake/dawn/kb/cve_2008_2664"
+require "codesake/dawn/kb/cve_2008_2725"
+require "codesake/dawn/kb/cve_2008_3655"
+require "codesake/dawn/kb/cve_2008_3657"
+require "codesake/dawn/kb/cve_2008_3790"
+require "codesake/dawn/kb/cve_2008_3905"
+require "codesake/dawn/kb/cve_2008_4094"
+require "codesake/dawn/kb/cve_2008_4310"
+require "codesake/dawn/kb/cve_2008_5189"
+require "codesake/dawn/kb/cve_2008_7248"
+
+# CVE - 2009
+require "codesake/dawn/kb/cve_2009_4078"
+require "codesake/dawn/kb/cve_2009_4124"
+require "codesake/dawn/kb/cve_2009_4214"
+
 # CVE - 2010
 require "codesake/dawn/kb/cve_2010_1330"
+require "codesake/dawn/kb/cve_2010_2489"
+require "codesake/dawn/kb/cve_2010_3933"
 
 # CVE - 2011
+require "codesake/dawn/kb/cve_2011_0188"
 require "codesake/dawn/kb/cve_2011_0446"
 require "codesake/dawn/kb/cve_2011_0447"
+require "codesake/dawn/kb/cve_2011_0739"
 require "codesake/dawn/kb/cve_2011_0995"
+require "codesake/dawn/kb/cve_2011_1004"
+require "codesake/dawn/kb/cve_2011_1005"
 require "codesake/dawn/kb/cve_2011_2197"
+require "codesake/dawn/kb/cve_2011_2686"
+require "codesake/dawn/kb/cve_2011_2705"
 require "codesake/dawn/kb/cve_2011_2929"
+require "codesake/dawn/kb/cve_2011_2930"
 require "codesake/dawn/kb/cve_2011_2931"
 require "codesake/dawn/kb/cve_2011_2932"
+require "codesake/dawn/kb/cve_2011_3009"
 require "codesake/dawn/kb/cve_2011_3186"
+require "codesake/dawn/kb/cve_2011_3187"
+require "codesake/dawn/kb/cve_2011_4319"
 require "codesake/dawn/kb/cve_2011_4815"
 
 # CVE - 2012
@@ -91,6 +153,7 @@ require "codesake/dawn/kb/cve_2013_1933"
 require "codesake/dawn/kb/cve_2013_1947"
 require "codesake/dawn/kb/cve_2013_1948"
 require "codesake/dawn/kb/cve_2013_2065"
+require "codesake/dawn/kb/cve_2013_2090"
 require "codesake/dawn/kb/cve_2013_2615"
 require "codesake/dawn/kb/cve_2013_2616"
 require "codesake/dawn/kb/cve_2013_2617"
@@ -176,15 +239,64 @@ module Codesake
           Codesake::Dawn::Kb::SimpleForm_Xss_20131129.new,
           Codesake::Dawn::Kb::NokogiriDos20131217.new,
           Codesake::Dawn::Kb::Nokogiri_EntityExpansion_Dos_20131217.new,
+          Codesake::Dawn::Kb::CVE_2004_0755.new, 
+          Codesake::Dawn::Kb::CVE_2004_0983.new, 
+          Codesake::Dawn::Kb::CVE_2005_1992.new, 
+          Codesake::Dawn::Kb::CVE_2005_2337.new, 
+          Codesake::Dawn::Kb::CVE_2006_1931.new, 
+          Codesake::Dawn::Kb::CVE_2006_2582.new, 
+          Codesake::Dawn::Kb::CVE_2006_3694.new, 
+          Codesake::Dawn::Kb::CVE_2006_4112.new, 
+          Codesake::Dawn::Kb::CVE_2006_5467.new, 
+          Codesake::Dawn::Kb::CVE_2006_6303.new, 
+          Codesake::Dawn::Kb::CVE_2006_6852.new, 
+          Codesake::Dawn::Kb::CVE_2006_6979.new, 
+          Codesake::Dawn::Kb::CVE_2007_0469.new, 
+          Codesake::Dawn::Kb::CVE_2007_5162.new, 
+          Codesake::Dawn::Kb::CVE_2007_5379.new, 
+          Codesake::Dawn::Kb::CVE_2007_5380.new, 
+          Codesake::Dawn::Kb::CVE_2007_5770.new, 
+          Codesake::Dawn::Kb::CVE_2007_6077.new, 
+          Codesake::Dawn::Kb::CVE_2007_6612.new, 
+          Codesake::Dawn::Kb::CVE_2008_1145.new, 
+          Codesake::Dawn::Kb::CVE_2008_1891.new, 
+          Codesake::Dawn::Kb::CVE_2008_2376.new, 
+          Codesake::Dawn::Kb::CVE_2008_2662.new, 
+          Codesake::Dawn::Kb::CVE_2008_2663.new, 
+          Codesake::Dawn::Kb::CVE_2008_2664.new, 
+          Codesake::Dawn::Kb::CVE_2008_2725.new, 
+          Codesake::Dawn::Kb::CVE_2008_3655.new, 
+          Codesake::Dawn::Kb::CVE_2008_3657.new, 
+          Codesake::Dawn::Kb::CVE_2008_3790.new, 
+          Codesake::Dawn::Kb::CVE_2008_3905.new, 
+          Codesake::Dawn::Kb::CVE_2008_4094.new, 
+          Codesake::Dawn::Kb::CVE_2008_4310.new, 
+          Codesake::Dawn::Kb::CVE_2008_5189.new, 
+          Codesake::Dawn::Kb::CVE_2008_7248.new, 
+          Codesake::Dawn::Kb::CVE_2009_4078.new, 
+          Codesake::Dawn::Kb::CVE_2009_4124.new, 
+          Codesake::Dawn::Kb::CVE_2009_4214.new, 
           Codesake::Dawn::Kb::CVE_2010_1330.new, 
+          Codesake::Dawn::Kb::CVE_2010_2489.new, 
+          Codesake::Dawn::Kb::CVE_2010_3933.new, 
+          Codesake::Dawn::Kb::CVE_2011_0188.new, 
           Codesake::Dawn::Kb::CVE_2011_0446.new, 
           Codesake::Dawn::Kb::CVE_2011_0447.new, 
+          Codesake::Dawn::Kb::CVE_2011_0739.new, 
           Codesake::Dawn::Kb::CVE_2011_0995.new, 
+          Codesake::Dawn::Kb::CVE_2011_1004.new, 
+          Codesake::Dawn::Kb::CVE_2011_1005.new, 
           Codesake::Dawn::Kb::CVE_2011_2197.new, 
+          Codesake::Dawn::Kb::CVE_2011_2686.new, 
+          Codesake::Dawn::Kb::CVE_2011_2705.new, 
           Codesake::Dawn::Kb::CVE_2011_2929.new, 
+          Codesake::Dawn::Kb::CVE_2011_2930.new, 
           Codesake::Dawn::Kb::CVE_2011_2931.new, 
           Codesake::Dawn::Kb::CVE_2011_2932.new, 
+          Codesake::Dawn::Kb::CVE_2011_3009.new, 
           Codesake::Dawn::Kb::CVE_2011_3186.new, 
+          Codesake::Dawn::Kb::CVE_2011_3187.new, 
+          Codesake::Dawn::Kb::CVE_2011_4319.new, 
           Codesake::Dawn::Kb::CVE_2011_4815.new, 
           Codesake::Dawn::Kb::CVE_2012_1099.new, 
           Codesake::Dawn::Kb::CVE_2012_1241.new, 
@@ -235,6 +347,7 @@ module Codesake
           Codesake::Dawn::Kb::CVE_2013_1947.new, 
           Codesake::Dawn::Kb::CVE_2013_1948.new, 
           Codesake::Dawn::Kb::CVE_2013_2065.new, 
+          Codesake::Dawn::Kb::CVE_2013_2090.new, 
           Codesake::Dawn::Kb::CVE_2013_2615.new, 
           Codesake::Dawn::Kb::CVE_2013_2616.new, 
           Codesake::Dawn::Kb::CVE_2013_2617.new, 

data/lib/codesake/dawn/padrino.rb

@@ -7,7 +7,7 @@ module Codesake
       attr_reader :apps
 
       def initialize(dir=nil)
-        super(dir, "padrino", {:debug=>true}) 
+        super(dir, "padrino", {:debug=>false}) 
         @apps = detect_apps
       end
 

data/lib/codesake/dawn/version.rb

@@ -1,6 +1,18 @@
 module Codesake
   module Dawn
-    VERSION   = "0.85"
-    CODENAME  = "ElevatoR"
+    # codesake-dawn v 1.x.y release codename will be Disney Pixar Cars / Cars2
+    # characters. My son Daniele loves those films and since I love him too,
+    # this is a kinda sort of tribute of my son's passion.
+    #
+    # Future releases
+    #
+    # "Tow Mater"       - v 1.2.0
+    # "Finn McMissile"  - v 1.3.0
+    # "Fillmore"        - v 1.4.0
+
+    VERSION   = "1.0.0.rc1"
+    CODENAME  = "Lightning McQueen"
+    RELEASE   = "20140110"
+
   end
 end

data/lib/tasks/dawn.rake

@@ -0,0 +1,4 @@
+desc 'Execute codesake-dawn on the current directory'
+task :dawn do
+  system "dawn ."
+end

data/spec/lib/dawn/codesake_knowledgebase_spec.rb

@@ -457,4 +457,260 @@ describe "The Codesake Dawn knowledge base" do
     sc.should_not   be_nil
     sc.class.should == Codesake::Dawn::Kb::CVE_2013_6421
   end
+
+  it "must have test for CVE-2004-0755" do
+    sc = kb.find("CVE-2004-0755")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2004_0755
+  end
+  it "must have test for CVE-2004-0983" do
+    sc = kb.find("CVE-2004-0983")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2004_0983
+  end  
+  it "must have test for CVE-2005-1992" do
+    sc = kb.find("CVE-2005-1992")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2005_1992
+  end
+  it "must have test for CVE-2005-2337" do
+    sc = kb.find("CVE-2005-2337")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2005_2337
+  end
+  it "must have test for CVE-2006-1931" do
+    sc = kb.find("CVE-2006-1931")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2006_1931
+  end
+  it "must have test for CVE-2006-2582" do
+    sc = kb.find("CVE-2006-2582")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2006_2582
+  end
+  it "must have test for CVE-2006-3694" do
+    sc = kb.find("CVE-2006-3694")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2006_3694
+  end
+
+  it "must have test for CVE-2006-4112" do
+    sc = kb.find("CVE-2006-4112")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2006_4112
+  end
+
+  it "must have test for CVE-2006-5467" do
+    sc = kb.find("CVE-2006-5467")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2006_5467
+  end
+
+  it "must have test for CVE-2006-6303" do
+    sc = kb.find("CVE-2006-6303")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2006_6303
+  end
+  it "must have test for CVE-2006-6852" do
+    sc = kb.find("CVE-2006-6852")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2006_6852
+  end
+  it "must have test for CVE-2006-6979" do
+    sc = kb.find("CVE-2006-6979")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2006_6979
+  end
+  it "must have test for CVE-2007-0469" do
+    sc = kb.find("CVE-2007-0469")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2007_0469
+  end
+  it "must have test for CVE-2013-2090" do
+    sc = kb.find("CVE-2013-2090")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2013_2090
+  end
+  it "must have test for CVE-2011-4319" do
+    sc = kb.find("CVE-2011-4319")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2011_4319
+  end
+  it "must have test for CVE-2011-3187" do
+    sc = kb.find("CVE-2011-3187")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2011_3187
+  end
+  it "must have test for CVE-2011-3009" do
+    sc = kb.find("CVE-2011-3009")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2011_3009
+  end
+
+  it "must have test for CVE-2011-2930" do
+    sc = kb.find("CVE-2011-2930")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2011_2930
+  end
+
+  it "must have test for CVE-2011-2705" do
+    sc = kb.find("CVE-2011-2705")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2011_2705
+  end
+  it "must have test for CVE-2011-2686" do
+    sc = kb.find("CVE-2011-2686")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2011_2686
+  end
+  it "must have test for CVE-2011-1005" do
+    sc = kb.find("CVE-2011-1005")
+    sc.should_not   be_nil
+    sc.class.should == Codesake::Dawn::Kb::CVE_2011_1005
+  end
+  it "must have test for CVE-2011-1004" do
+  sc = kb.find("CVE-2011-1004")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2011_1004
+end
+  it "must have test for CVE-2011-0739" do
+  sc = kb.find("CVE-2011-0739")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2011_0739
+end
+  it "must have test for CVE-2011-0188" do
+  sc = kb.find("CVE-2011-0188")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2011_0188
+end
+  it "must have test for CVE-2010-3933" do
+  sc = kb.find("CVE-2010-3933")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2010_3933
+end
+  it "must have test for CVE-2010-2489" do
+  sc = kb.find("CVE-2010-2489")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2010_2489
+end
+  it "must have test for CVE-2009-4214" do
+  sc = kb.find("CVE-2009-4214")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2009_4214
+end
+  it "must have test for CVE-2009-4124" do
+  sc = kb.find("CVE-2009-4124")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2009_4124
+end
+  it "must have test for CVE-2009-4078" do
+  sc = kb.find("CVE-2009-4078")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2009_4078
+end
+  it "must have test for CVE-2008-7248" do
+  sc = kb.find("CVE-2008-7248")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_7248
+end
+  it "must have test for CVE-2008-5189" do
+  sc = kb.find("CVE-2008-5189")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_5189
+end
+  it "must have test for CVE-2008-4310" do
+  sc = kb.find("CVE-2008-4310")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_4310
+end
+  it "must have test for CVE-2008-4094" do
+  sc = kb.find("CVE-2008-4094")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_4094
+end
+  it "must have test for CVE-2008-3905" do
+  sc = kb.find("CVE-2008-3905")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_3905
+end
+  it "must have test for CVE-2008-3790" do
+  sc = kb.find("CVE-2008-3790")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_3790
+end
+  it "must have test for CVE-2008-3657" do
+  sc = kb.find("CVE-2008-3657")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_3657
+end
+  it "must have test for CVE-2008-3655" do
+  sc = kb.find("CVE-2008-3655")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_3655
+end
+  it "must have test for CVE-2008-2725" do
+  sc = kb.find("CVE-2008-2725")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_2725
+end
+  it "must have test for CVE-2008-2663" do
+  sc = kb.find("CVE-2008-2663")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_2663
+end
+  it "must have test for CVE-2008-2664" do
+  sc = kb.find("CVE-2008-2664")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_2664
+end
+  it "must have test for CVE-2008-2662" do
+  sc = kb.find("CVE-2008-2662")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_2662
+end
+  it "must have test for CVE-2008-2376" do
+  sc = kb.find("CVE-2008-2376")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_2376
+end
+  it "must have test for CVE-2008-1891" do
+  sc = kb.find("CVE-2008-1891")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_1891
+end
+  it "must have test for CVE-2008-1145" do
+  sc = kb.find("CVE-2008-1145")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2008_1145
+end
+  it "must have test for CVE-2007-6612" do
+  sc = kb.find("CVE-2007-6612")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2007_6612
+end
+  it "must have test for CVE-2007-6077" do
+  sc = kb.find("CVE-2007-6077")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2007_6077
+end
+  it "must have test for CVE-2007-5770" do
+  sc = kb.find("CVE-2007-5770")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2007_5770
+end
+  it "must have test for CVE-2007-5380" do
+  sc = kb.find("CVE-2007-5380")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2007_5380
+end
+  it "must have test for CVE-2007-5379" do
+  sc = kb.find("CVE-2007-5379")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2007_5379
+end
+  it "must have test for CVE-2007-5162" do
+  sc = kb.find("CVE-2007-5162")
+  sc.should_not   be_nil
+  sc.class.should == Codesake::Dawn::Kb::CVE_2007_5162
+end
 end