[Secure-testing-commits] r5113 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed Dec 13 09:14:24 CET 2006 

Author: joeyh
Date: 2006-12-13 09:14:22 +0100 (Wed, 13 Dec 2006)
New Revision: 5113

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-12-12 23:54:47 UTC (rev 5112)
+++ data/CVE/list	2006-12-13 08:14:22 UTC (rev 5113)
@@ -1,3 +1,33 @@
+CVE-2006-6495 (Stack-based buffer overflow in ld.so.1 in Sun Solaris 8, 9, and 10 ...)
+	TODO: check
+CVE-2006-6494 (Directory traversal vulnerability in ld.so.1 in Sun Solaris 8, 9, and ...)
+	TODO: check
+CVE-2006-6493 (Buffer overflow in the krbv4_ldap_auth function vin ...)
+	TODO: check
+CVE-2006-6492
+	RESERVED
+CVE-2006-6491
+	RESERVED
+CVE-2006-6490
+	RESERVED
+CVE-2006-6489
+	RESERVED
+CVE-2006-6488
+	RESERVED
+CVE-2006-6487
+	RESERVED
+CVE-2006-6486 (SQL injection vulnerability in EasyPage allows remote attackers to ...)
+	TODO: check
+CVE-2006-6485 (Multiple cross-site scripting (XSS) vulnerabilities in ShopSite 8.1 ...)
+	TODO: check
+CVE-2006-6484 (The IMAP service for MailEnable Professional and Enterprise Edition ...)
+	TODO: check
+CVE-2006-6483 (Adobe ColdFusion MX7 does not properly filter HTML tags when ...)
+	TODO: check
+CVE-2006-6482 (Adobe ColdFusion MX7 allows remote attackers to obtain sensitive ...)
+	TODO: check
+CVE-2006-6481 (Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a ...)
+	TODO: check
 CVE-2006-6480 (admin/admin_membre/fiche_membre.php in AnnonceScriptHP 2.0 allows ...)
 	TODO: check
 CVE-2006-6479 (Multiple cross-site scripting (XSS) vulnerabilities in AnnonceScriptHP ...)
@@ -112,8 +142,8 @@
 	RESERVED
 CVE-2006-6424
 	RESERVED
-CVE-2006-6423
-	RESERVED
+CVE-2006-6423 (Stack-based buffer overflow in the IMAP service for MailEnable ...)
+	TODO: check
 CVE-2006-6422 (Agileco AgileBill 1.4.x and AgileVoice 1.4.x do not properly handle ...)
 	TODO: check
 CVE-2006-6421 (Cross-site scripting (XSS) vulnerability in the private message box ...)
@@ -146,7 +176,7 @@
 	TODO: check
 CVE-2006-6407 (F-Prot Antivirus for Linux x86 Mail Servers 4.6.6 allows remote ...)
 	TODO: check
-CVE-2006-6406 (ClamAV 0.88.6 allows remote attackers to bypass virus detection by ...)
+CVE-2006-6406 (Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to bypass virus ...)
 	- clamav 0.88.7-1 (medium)
 CVE-2006-6405 (BitDefender Mail Protection for SMB 2.0 allows remote attackers to ...)
 	TODO: check
@@ -291,8 +321,8 @@
 	TODO: check
 CVE-2006-6336
 	RESERVED
-CVE-2006-6335
-	RESERVED
+CVE-2006-6335 (Multiple buffer overflows in Sophos Anti-Virus scanning engine before ...)
+	TODO: check
 CVE-2006-6334 (Heap-based buffer overflow in the SendChannelData function in wfica.ocx in ...)
 	TODO: check
 CVE-2006-6333 (The tr_rx function in ibmtr.c for Linux kernel 2.6.19 assigns the ...)
@@ -1891,24 +1921,24 @@
 	NOT-FOR-US: MDweb
 CVE-2006-5586
 	RESERVED
-CVE-2006-5585
-	RESERVED
-CVE-2006-5584
-	RESERVED
-CVE-2006-5583
-	RESERVED
+CVE-2006-5585 (The Client-Server Run-time Subsystem in Microsoft Windows XP SP2 and ...)
+	TODO: check
+CVE-2006-5584 (The Remote Installation Service (RIS) in Microsoft Windows 2000 SP4 ...)
+	TODO: check
+CVE-2006-5583 (Buffer overflow in the SNMP Service in Microsoft Windows 2000 SP4, XP SP2, ...)
+	TODO: check
 CVE-2006-5582
 	RESERVED
-CVE-2006-5581
-	RESERVED
+CVE-2006-5581 (Unspecified vulnerability in Microsoft Internet Explorer 6 allows ...)
+	TODO: check
 CVE-2006-5580
 	RESERVED
-CVE-2006-5579
-	RESERVED
-CVE-2006-5578
-	RESERVED
-CVE-2006-5577
-	RESERVED
+CVE-2006-5579 (Microsoft Internet Explorer 6 accesses previously freed memory, which ...)
+	TODO: check
+CVE-2006-5578 (Microsoft Internet Explorer 6 and earlier allows remote attackers to read ...)
+	TODO: check
+CVE-2006-5577 (Microsoft Internet Explorer 6 and earlier allows remote attackers to obtain ...)
+	TODO: check
 CVE-2006-5576
 	RESERVED
 CVE-2006-5575
@@ -3805,12 +3835,12 @@
 	NOT-FOR-US: MyBB (aka MyBulletinBoard)
 CVE-2006-4705 (SQL injection vulnerability in login.php in dwayner79 and Dominic ...)
 	NOT-FOR-US: Timesheet (aka Timesheet.php)
-CVE-2006-4704 (Unspecified vulnerability in the WMI Object Broker ActiveX control ...)
+CVE-2006-4704 (Cross-zone scripting vulnerability in the WMI Object Broker ...)
 	NOT-FOR-US: Microsoft
 CVE-2006-4703
 	RESERVED
-CVE-2006-4702
-	RESERVED
+CVE-2006-4702 (Buffer overflow in the Windows Media Format Runtime in Microsoft ...)
+	TODO: check
 CVE-2006-4701
 	RESERVED
 CVE-2006-4700
@@ -9141,8 +9171,8 @@
 	NOT-FOR-US: Microsoft
 CVE-2006-2387 (Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 ...)
 	NOT-FOR-US: Microsoft
-CVE-2006-2386
-	RESERVED
+CVE-2006-2386 (Unspecified vulnerability in Microsoft Outlook Express 6 and earlier ...)
+	TODO: check
 CVE-2006-2385 (Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4 and ...)
 	NOT-FOR-US: Microsoft
 CVE-2006-2384 (Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allows ...)

More information about the Secure-testing-commits mailing list