[Secure-testing-commits] r3391 - data/CVE

Joey Hess joeyh at costa.debian.org
Mon Jan 30 21:14:30 UTC 2006


Author: joeyh
Date: 2006-01-30 21:14:23 +0000 (Mon, 30 Jan 2006)
New Revision: 3391

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-01-30 15:24:59 UTC (rev 3390)
+++ data/CVE/list	2006-01-30 21:14:23 UTC (rev 3391)
@@ -1,3 +1,87 @@
+CVE-2006-0467
+	RESERVED
+CVE-2006-0466 (Cross-site scripting (XSS) vulnerability in search.asp in Goldstag ...)
+	TODO: check
+CVE-2006-0465 (Cross-site scripting (XSS) vulnerability in risultati_ricerca.php in ...)
+	TODO: check
+CVE-2006-0464 (Multiple SQL injection vulnerabilities in index.php in IdeoContent ...)
+	TODO: check
+CVE-2006-0463 (Cross-site scripting (XSS) vulnerability in IdeoContent Manager allows ...)
+	TODO: check
+CVE-2006-0462 (SQL injection vulnerability in comentarios.php in AndoNET Blog ...)
+	TODO: check
+CVE-2006-0461 (Cross-site scripting (XSS) vulnerability in core.input.php in ...)
+	TODO: check
+CVE-2006-0460
+	RESERVED
+CVE-2006-0459
+	RESERVED
+CVE-2006-0458
+	RESERVED
+CVE-2006-0457
+	RESERVED
+CVE-2006-0456
+	RESERVED
+CVE-2006-0455
+	RESERVED
+CVE-2006-0454
+	RESERVED
+CVE-2006-0453
+	RESERVED
+CVE-2006-0452
+	RESERVED
+CVE-2006-0451
+	RESERVED
+CVE-2006-0450 (phpBB 2.0.19 and earlier allows remote attackers to cause a denial of ...)
+	TODO: check
+CVE-2006-0449 (Early termination vulnerability in the IMAP service in E-Post Mail ...)
+	TODO: check
+CVE-2006-0448 (Multiple directory traversal vulnerabilities in (1) EPSTIMAP4S.EXE and ...)
+	TODO: check
+CVE-2006-0447 (Multiple buffer overflows in E-Post Mail Server 4.10 and SPA-PRO Mail ...)
+	TODO: check
+CVE-2006-0446 (Unspecified vulnerability in WeBWorK 2.1.3 and 2.2-pre1 allows remote ...)
+	TODO: check
+CVE-2006-0445 (index.php in Phpclanwebsite 1.23.1 allows remote authenticated users ...)
+	TODO: check
+CVE-2006-0444 (SQL injection vulnerability in index.php in Phpclanwebsite (aka PCW) ...)
+	TODO: check
+CVE-2006-0443 (Cross-site scripting (XSS) vulnerability in archive.php in CheesyBlog ...)
+	TODO: check
+CVE-2006-0442 (Multiple cross-site scripting (XSS) vulnerabilities in usercp.php in ...)
+	TODO: check
+CVE-2006-0441 (Stack-based buffer overflow in Sami FTP Server 2.0.1 allows remote ...)
+	TODO: check
+CVE-2006-0440 (Text Rider 2.4 allows attackers to bypass authentication and upload ...)
+	TODO: check
+CVE-2006-0439 (Text Rider 2.4 stores sensitive data in the data directory under the ...)
+	TODO: check
+CVE-2006-0438
+	RESERVED
+CVE-2006-0437
+	RESERVED
+CVE-2006-0436 (Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and B.11.11 ...)
+	TODO: check
+CVE-2006-0435 (Unspecified vulnerability in Oracle PL/SQL (PLSQL) allows attackers to ...)
+	TODO: check
+CVE-2006-0434 (Directory traversal vulnerability in action.php in phpXplorer allows ...)
+	TODO: check
+CVE-2005-4675 (Cross-site scripting (XSS) vulnerability in list.php in Complete PHP ...)
+	TODO: check
+CVE-2005-4674 (Multiple SQL injection vulnerabilities in list.php in Complete PHP ...)
+	TODO: check
+CVE-2005-4673 (ioFTPD 0.5.84 u responds with different messages depending on whether ...)
+	TODO: check
+CVE-2005-4672 (Cross-site scripting (XSS) vulnerability in image-editor-52/index.php ...)
+	TODO: check
+CVE-2005-4671 (Cross-site scripting (XSS) vulnerability in simple-upload-53.php in ...)
+	TODO: check
+CVE-2005-4670 (Cross-site scripting (XSS) vulnerability in message.php in CityPost ...)
+	TODO: check
+CVE-2005-4669 (SQL injection vulnerability in RT Internet Solutions (RTIS) WebAdmin ...)
+	TODO: check
+CVE-2005-4668 (The embedded HSQLDB in ParosProxy before 3.2.7, when running with JDK ...)
+	TODO: check
 CVE-2006-0433
 	RESERVED
 CVE-2006-0432 (Unspecified vulnerability in BEA WebLogic Server and WebLogic Express ...)
@@ -948,8 +1032,8 @@
 	RESERVED
 CVE-2006-0058
 	RESERVED
-CVE-2006-0057
-	RESERVED
+CVE-2006-0057 (Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers ...)
+	TODO: check
 CVE-2006-0056
 	RESERVED
 CVE-2006-0055 (The ispell_op function in ee on FreeBSD 4.10 to 6.0 uses predictable ...)
@@ -2019,7 +2103,7 @@
 	NOT-FOR-US: DRZES HMS
 CVE-2005-4135 (Direct static code injection vulnerability in includes/newtopic.php in ...)
 	NOT-FOR-US: SimpleBBS
-CVE-2005-4134 (** DISPUTED ** ...)
+CVE-2005-4134 (Mozilla Firefox 1.5, Netscape 8.0.4 and 7.2, and K-Meleon before ...)
 	- mozilla-firefox <unfixed> (unimportant)
 	NOTE: Not exploitable beyond a sluggish browser startup, see
 	NOTE: http://www.mozilla.org/security/history-title.html
@@ -6839,7 +6923,7 @@
 	- phpbb2 2.0.6c (low)
 CVE-2004-2357 (The embedded MySQL 4.0 server for Proofpoint Protection Server does ...)
 	NOT-FOR-US: roofpoint Protection Server
-CVE-2004-2356 (Fizmez Web Server 1.0 allows remote attackers to cause a denial of ...)
+CVE-2004-2356 (Early termination vulnerability in Fizmez Web Server 1.0 allows remote ...)
 	NOT-FOR-US: Fizmez
 CVE-2004-2355 (Cross-site scripting (XSS) vulnerability in Crafty Syntax Live Help ...)
 	NOT-FOR-US: Crafty Syntax Live Help
@@ -22086,10 +22170,10 @@
 CVE-2002-1575 (cgiemail allows remote attackers to use cgiemail as a spam proxy via ...)
 	{DSA-437}
 	- cgiemail 1.6-20
-CVE-2002-1573
-	RESERVED
-CVE-2002-1572
-	RESERVED
+CVE-2002-1573 (Unspecified vulnerability in the pcilynx ieee1394 firewire driver ...)
+	TODO: check
+CVE-2002-1572 (Signed integer overflow in the bttv_read function in the bttv driver ...)
+	TODO: check
 CVE-2002-1571 (The linux 2.4 kernel before 2.4.19 assumes that the fninit instruction ...)
 	TODO: check
 CVE-2002-1570 (Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and ...)




More information about the Secure-testing-commits mailing list