[Secure-testing-commits] r5158 - data/CVE

Joey Hess joeyh at alioth.debian.org
Fri Dec 22 09:14:20 CET 2006 

Author: joeyh
Date: 2006-12-22 09:14:17 +0100 (Fri, 22 Dec 2006)
New Revision: 5158

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-12-21 19:50:16 UTC (rev 5157)
+++ data/CVE/list	2006-12-22 08:14:17 UTC (rev 5158)
@@ -1,3 +1,85 @@
+CVE-2006-6697 (CRLF injection vulnerability in webapp/jsp/calendar.jsp in Oracle ...)
+	TODO: check
+CVE-2006-6696 (Double-free vulnerability in Microsoft Windows 2000, XP, 2003, and ...)
+	TODO: check
+CVE-2006-6695 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...)
+	TODO: check
+CVE-2006-6694 (Directory traversal vulnerability in include/config.php in E-Uploader ...)
+	TODO: check
+CVE-2006-6693 (Multiple buffer overflows in zabbix before 20061006 allow attackers to ...)
+	TODO: check
+CVE-2006-6692 (Multiple format string vulnerabilities in zabbix before 20061006 allow ...)
+	TODO: check
+CVE-2006-6691 (Multiple PHP remote file inclusion vulnerabilities in Valdersoft ...)
+	TODO: check
+CVE-2006-6690 (rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0 through ...)
+	TODO: check
+CVE-2006-6689 (Multiple PHP remote file inclusion vulnerabilities in Paristemi 0.8.3 ...)
+	TODO: check
+CVE-2006-6688 (Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network ...)
+	TODO: check
+CVE-2006-6687 (Cross-site scripting (XSS) vulnerability in Web Automated Perl Portal ...)
+	TODO: check
+CVE-2006-6686 (PHP remote file inclusion vulnerability in sender.php in Carsen Klock ...)
+	TODO: check
+CVE-2006-6685 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3 ...)
+	TODO: check
+CVE-2006-6684 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd before 2.4 ...)
+	TODO: check
+CVE-2006-6683 (Pedro Lineu Orso chetcpasswd 2.4.1 and earlier verifies and updates ...)
+	TODO: check
+CVE-2006-6682 (Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error message ...)
+	TODO: check
+CVE-2006-6681 (Pedro Lineu Orso chetcpasswd 2.3.3 does not have a rate limit for ...)
+	TODO: check
+CVE-2006-6680 (Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the need ...)
+	TODO: check
+CVE-2006-6679 (Pedro Lineu Orso chetcpasswd before 2.4 relies on the X-Forwarded-For ...)
+	TODO: check
+CVE-2006-6678 (The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier ...)
+	TODO: check
+CVE-2006-6677 (ESET NOD32 Antivirus before 1.1743 allows remote attackers to cause a ...)
+	TODO: check
+CVE-2006-6676 (Integer overflow in ESET NOD32 Antivirus before 1.1743 allows remote ...)
+	TODO: check
+CVE-2006-6675 (Cross-site scripting (XSS) vulnerability in Novell NetWare 6.5 Support ...)
+	TODO: check
+CVE-2006-6674 (Ozeki HTTP-SMS Gateway 1.0, and possibly earlier, stores usernames and ...)
+	TODO: check
+CVE-2006-6673 (WinFtp Server 2.0.2 allows remote attackers to cause a denial of ...)
+	TODO: check
+CVE-2006-6672 (Multiple SQL injection vulnerabilities in Burak Yylmaz Download Portal ...)
+	TODO: check
+CVE-2006-6671 (SQL injection vulnerability in down.asp in Burak Yylmaz Download ...)
+	TODO: check
+CVE-2006-6670 (Unspecified vulnerability in Nortel CallPilot 4.x Server has unknown ...)
+	TODO: check
+CVE-2006-6669 (Cross-site scripting (XSS) vulnerability in export_handler.php in ...)
+	TODO: check
+CVE-2006-6668 (Cross-site scripting (XSS) vulnerability in VerliAdmin 0.3 and earlier ...)
+	TODO: check
+CVE-2006-6667 (Multiple SQL injection vulnerabilities in VerliAdmin 0.3 and earlier ...)
+	TODO: check
+CVE-2006-6666 (PHP remote file inclusion vulnerability in index.php in VerliAdmin 0.3 ...)
+	TODO: check
+CVE-2006-6665 (Buffer overflow in Astonsoft DeepBurner Pro and Free 1.8.0 and earlier ...)
+	TODO: check
+CVE-2006-6664 (Format string vulnerability in Marathon Aleph One before 0.17.1 and ...)
+	TODO: check
+CVE-2006-6663 (The server component in Marathon Aleph One before 0.17.1 and ...)
+	TODO: check
+CVE-2006-6662 (Unspecified vulnerability in Linux User Management (novell-lum) on ...)
+	TODO: check
+CVE-2006-6661 (Variable overwrite vulnerability in blog.php in PHP-Update 2.7 and ...)
+	TODO: check
+CVE-2006-6660 (The nodeType function in KDE libkhtml 4.2.0 and earlier, as used by ...)
+	TODO: check
+CVE-2002-2221 (Untrusted search path vulnerability in Pedro Lineu Orso chetcpasswd ...)
+	TODO: check
+CVE-2002-2220 (Buffer overflow in Pedro Lineu Orso chetcpasswd before 1.12, when ...)
+	TODO: check
+CVE-2002-2219 (chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows ...)
+	TODO: check
 CVE-2007-0010
 	RESERVED
 CVE-2007-0009
@@ -1276,8 +1358,8 @@
 CVE-2006-6105 (Format string vulnerability in the host chooser window (gdmchooser) in ...)
 	- gdm 2.16.4-1 (medium; bug #403219)
 	[sarge] - gdm <not-affected> (Vulnerable code not present)
-CVE-2006-6104
-	RESERVED
+CVE-2006-6104 (The System.Web class in the XSP for ASP.NET server 1.1 through 2.0 in ...)
+	TODO: check
 CVE-2006-6103
 	RESERVED
 CVE-2006-6102

More information about the Secure-testing-commits mailing list