[Secure-testing-commits] r5168 - data/CVE
Florian Weimer
fw at alioth.debian.org
Mon Dec 25 10:49:36 CET 2006
Author: fw
Date: 2006-12-25 10:49:33 +0100 (Mon, 25 Dec 2006)
New Revision: 5168
Modified:
data/CVE/list
Log:
chetcpasswd was removed from the archive
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-12-24 20:04:16 UTC (rev 5167)
+++ data/CVE/list 2006-12-25 09:49:33 UTC (rev 5168)
@@ -26,19 +26,19 @@
CVE-2006-6686 (PHP remote file inclusion vulnerability in sender.php in Carsen Klock ...)
NOT-FOR-US: Carsen Klock TextSend
CVE-2006-6685 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3 ...)
- - chetcpasswd <unfixed> (medium)
+ - chetcpasswd <removed> (medium)
CVE-2006-6684 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd before 2.4 ...)
- - chetcpasswd <unfixed> (medium)
+ - chetcpasswd <removed> (medium)
CVE-2006-6683 (Pedro Lineu Orso chetcpasswd 2.4.1 and earlier verifies and updates ...)
- - chetcpasswd <unfixed> (medium)
+ - chetcpasswd <removed> (medium)
CVE-2006-6682 (Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error message ...)
- - chetcpasswd <unfixed> (medium)
+ - chetcpasswd <removed> (medium)
CVE-2006-6681 (Pedro Lineu Orso chetcpasswd 2.3.3 does not have a rate limit for ...)
- - chetcpasswd <unfixed> (medium)
+ - chetcpasswd <removed> (medium)
CVE-2006-6680 (Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the need ...)
- - chetcpasswd <unfixed> (low)
+ - chetcpasswd <removed> (low)
CVE-2006-6679 (Pedro Lineu Orso chetcpasswd before 2.4 relies on the X-Forwarded-For ...)
- - chetcpasswd <unfixed> (medium)
+ - chetcpasswd <removed> (medium)
CVE-2006-6678 (The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier ...)
- netrik <unfixed> (medium; bug #404233)
CVE-2006-6677 (ESET NOD32 Antivirus before 1.1743 allows remote attackers to cause a ...)
@@ -79,11 +79,11 @@
- kdelibs <not-affected> (at least it is fixed in 4:3.5.5a.dfsg.1-5)
NOTE: is DoS only, anyway
CVE-2002-2221 (Untrusted search path vulnerability in Pedro Lineu Orso chetcpasswd ...)
- TODO: check
+ - chetcpasswd <removed> (medium)
CVE-2002-2220 (Buffer overflow in Pedro Lineu Orso chetcpasswd before 1.12, when ...)
- TODO: check
+ - chetcpasswd <removed> (medium)
CVE-2002-2219 (chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows ...)
- TODO: check
+ - chetcpasswd <removed> (low)
CVE-2007-0010
RESERVED
CVE-2007-0009
@@ -145,7 +145,7 @@
CVE-2006-6640 (Multiple cross-site scripting (XSS) vulnerabilities in Omniture ...)
NOT-FOR-US: SiteCatalyst
CVE-2006-6639 (Multiple unspecified vulnerabilities in chetcpasswd 2.4.1 allow local ...)
- - chetcpasswd <unfixed> (medium)
+ - chetcpasswd <removed> (medium)
CVE-2006-6638 (IBM DB2 8.1 before FixPak 14 allows remote attackers to cause a denial ...)
NOT-FOR-US: IBM
CVE-2006-6637 (The Servlet Engine and Web Container in IBM WebSphere Application ...)
More information about the Secure-testing-commits
mailing list