[Secure-testing-commits] r4411 - data/CVE
Joey Hess
joeyh at costa.debian.org
Mon Jul 17 21:14:38 UTC 2006
Author: joeyh
Date: 2006-07-17 21:14:35 +0000 (Mon, 17 Jul 2006)
New Revision: 4411
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-07-17 19:31:31 UTC (rev 4410)
+++ data/CVE/list 2006-07-17 21:14:35 UTC (rev 4411)
@@ -1,4 +1,142 @@
-CVE-2006-3626 [linux "nasty /proc vulnerability" (local root)]
+CVE-2006-3660 (Unspecified vulnerability in Microsoft PowerPoint 2003 has unknown ...)
+ TODO: check
+CVE-2006-3659 (Microsoft Internet Explorer 6 allows remote attackers to cause a ...)
+ TODO: check
+CVE-2006-3658 (Microsoft Internet Explorer 6 allows remote attackers to cause a ...)
+ TODO: check
+CVE-2006-3657 (Microsoft Internet Explorer 6 allows remote attackers to cause a ...)
+ TODO: check
+CVE-2006-3656 (Unspecified vulnerability in Microsoft PowerPoint 2003 allows ...)
+ TODO: check
+CVE-2006-3655 (Unspecified vulnerability in mso.dll in Microsoft PowerPoint 2003 ...)
+ TODO: check
+CVE-2006-3654 (Buffer overflow in wksss.exe 8.4.702.0 in Microsoft Works Spreadsheet ...)
+ TODO: check
+CVE-2006-3653 (wksss.exe 8.4.702.0 in Microsoft Works Spreadsheet 8.0 allows remote ...)
+ TODO: check
+CVE-2006-3652 (Microsoft Internet Security and Acceleration (ISA) Server 2004 allows ...)
+ TODO: check
+CVE-2006-3651
+ RESERVED
+CVE-2006-3650
+ RESERVED
+CVE-2006-3649
+ RESERVED
+CVE-2006-3648
+ RESERVED
+CVE-2006-3647
+ RESERVED
+CVE-2006-3646
+ RESERVED
+CVE-2006-3645
+ RESERVED
+CVE-2006-3644
+ RESERVED
+CVE-2006-3643
+ RESERVED
+CVE-2006-3642
+ RESERVED
+CVE-2006-3641
+ RESERVED
+CVE-2006-3640
+ RESERVED
+CVE-2006-3639
+ RESERVED
+CVE-2006-3638
+ RESERVED
+CVE-2006-3637
+ RESERVED
+CVE-2006-3636
+ RESERVED
+CVE-2006-3635
+ RESERVED
+CVE-2006-3634
+ RESERVED
+CVE-2006-3633
+ RESERVED
+CVE-2006-3632
+ RESERVED
+CVE-2006-3631
+ RESERVED
+CVE-2006-3630
+ RESERVED
+CVE-2006-3629
+ RESERVED
+CVE-2006-3628
+ RESERVED
+CVE-2006-3627
+ RESERVED
+CVE-2006-3625 (FLV Players 8 allows remote attackers to obtain sensitive information ...)
+ TODO: check
+CVE-2006-3624 (Multiple cross-site scripting (XSS) vulnerabilities in FLV Players 8 ...)
+ TODO: check
+CVE-2006-3623 (Directory traversal vulnerability in Framework Service component in ...)
+ TODO: check
+CVE-2006-3622 (The showtopic module in Koobi Pro CMS 5.6 allows remote attackers to ...)
+ TODO: check
+CVE-2006-3621 (SQL injection vulnerability in the showtopic module in Koobi Pro CMS ...)
+ TODO: check
+CVE-2006-3620 (Cross-site scripting (XSS) vulnerability in the showtopic module in ...)
+ TODO: check
+CVE-2006-3619
+ RESERVED
+CVE-2006-3618 (SQL injection vulnerability in pblguestbook.php in Pixelated By Lev ...)
+ TODO: check
+CVE-2006-3617 (Cross-site scripting (XSS) vulnerability in pblguestbook.php in ...)
+ TODO: check
+CVE-2006-3616 (Multiple cross-site scripting (XSS) vulnerabilities in Carbonize ...)
+ TODO: check
+CVE-2006-3615 (Multiple PHP remote file inclusion vulnerabilities in Phorum 5.1.14, ...)
+ TODO: check
+CVE-2006-3614 (index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers to ...)
+ TODO: check
+CVE-2006-3613 (Multiple cross-site scripting (XSS) vulnerabilities in Chamberland ...)
+ TODO: check
+CVE-2006-3612 (Cross-site scripting (XSS) vulnerability in Phorum 5.1.14 allows ...)
+ TODO: check
+CVE-2006-3611 (Directory traversal vulnerability in pm.php in Phorum 5 allows remote ...)
+ TODO: check
+CVE-2006-3610 (index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers to ...)
+ TODO: check
+CVE-2006-3609 (Cross-site scripting (XSS) vulnerability in index.php in Orbitcoders ...)
+ TODO: check
+CVE-2006-3608 (The Gallery module in Simone Vellei Flatnuke 2.5.7 and earlier, when ...)
+ TODO: check
+CVE-2006-3607 (Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Banner ...)
+ TODO: check
+CVE-2006-3606 (Unspecified vulnerability in Sun Solaris X Inter Client Exchange ...)
+ TODO: check
+CVE-2006-3605 (Microsoft Internet Explorer 6 allows remote attackers to cause a ...)
+ TODO: check
+CVE-2006-3604 (Directory traversal vulnerability in FlexWATCH Network Camera 3.0 and ...)
+ TODO: check
+CVE-2006-3603 (Cross-site scripting (XSS) vulnerability in index.php in FlexWATCH ...)
+ TODO: check
+CVE-2006-3602 (Directory traversal vulnerability in ...)
+ TODO: check
+CVE-2006-3601 (** UNVERIFIABLE ** ...)
+ TODO: check
+CVE-2006-3600 (Multiple stack-based buffer overflows in the LookupTRM::lookup ...)
+ TODO: check
+CVE-2006-3599 (SQL injection vulnerability in the Nuke Advanced Classifieds module ...)
+ TODO: check
+CVE-2006-3598 (SQL injection vulnerability in the Sections module for PHP-Nuke allows ...)
+ TODO: check
+CVE-2006-3597 (passwd before 1:4.0.13 on Ubuntu 6.06 LTS leaves the root password ...)
+ TODO: check
+CVE-2006-3596 (The device driver for Intel-based gigabit network adapters in Cisco ...)
+ TODO: check
+CVE-2006-3595 (The default configuration of IOS HTTP server in Cisco Router Web Setup ...)
+ TODO: check
+CVE-2006-3594 (Buffer overflow in Cisco Unified CallManager (CUCM) 5.0(1) through ...)
+ TODO: check
+CVE-2006-3593 (The command line interface (CLI) in Cisco Unified CallManager (CUCM) ...)
+ TODO: check
+CVE-2006-3592 (Unspecified vulnerability in the command line interface (CLI) in Cisco ...)
+ TODO: check
+CVE-2006-3591 (Microsoft Internet Explorer 6 allows remote attackers to cause a ...)
+ TODO: check
+CVE-2006-3626 (Race condition in Linux kernel 2.6.17.4 and earlier allows local users ...)
{DSA-1111}
- linux-2.6.16 2.6.16-17 (high)
- linux-2.6 2.6.17-4 (high)
@@ -96,9 +234,9 @@
NOT-FOR-US: Patrice Freydiere ImgSvr
CVE-2006-3545 (** DISPUTED ** Microsoft Internet Explorer 7.0 Beta allows remote ...)
NOT-FOR-US: Microsoft Internet Explorer
-CVE-2006-3544 (Multiple SQL injection vulnerabilities in Invision Power Board (IPB) ...)
+CVE-2006-3544 (** DISPUTED ** ...)
NOT-FOR-US: Invision Power Board
-CVE-2006-3543 (Multiple SQL injection vulnerabilities in Invision Power Board (IPB) ...)
+CVE-2006-3543 (** DISPUTED ** ...)
NOT-FOR-US: Invision Power Board
CVE-2006-3542 (Multiple cross-site scripting (XSS) vulnerabilities in Garry Glendown ...)
NOT-FOR-US: Garry Glendown Shopping Cart
@@ -198,7 +336,7 @@
RESERVED
CVE-2006-3495
RESERVED
-CVE-2006-3494 (Multiple SQL injection vulnerabilities in Buddy Zone 1.0.1 allow ...)
+CVE-2006-3494 (Multiple cross-site scripting (XSS) vulnerabilities in Buddy Zone ...)
NOT-FOR-US: Buddy Zone
CVE-2006-3493 (Buffer overflow in LsCreateLine function (mso_203) in mso.dll and ...)
NOT-FOR-US: Microsoft Office
@@ -2500,8 +2638,8 @@
CVE-2006-2451 (The suid_dumpable support in Linux kernel 2.6.13 up to versions before ...)
- linux-2.6 2.6.17-3 (high)
- linux-2.6.16 2.6.16-17 (high)
-CVE-2006-2450
- RESERVED
+CVE-2006-2450 (auth.c in LibVNCServer 0.7.1 allows remote attackers to bypass ...)
+ TODO: check
CVE-2006-2449 (KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local users ...)
- kdebase 4:3.5.2-2 (bug #374002; medium)
CVE-2006-2448 (Linux kernel before 2.6.16.21 and 2.6.17, when running on PowerPC, ...)
@@ -3063,7 +3201,7 @@
NOT-FOR-US: Invision Gallery
CVE-2006-2201 (Unspecified vulnerability in CA Resource Initialization Manager ...)
NOT-FOR-US: CA Resource Initialization Manager
-CVE-2006-2200 (Stack-based buffer overflow in MiMMS 0.0.9 allows remote attackers to ...)
+CVE-2006-2200 (Stack-based buffer overflow in libmms, as used by (a) MiMMS 0.0.9 and ...)
- libmms 0.2-7 (bug #374577; medium)
- mimms 2.0.0-1 (bug #374577; medium)
CVE-2006-2199 (Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x (aka ...)
More information about the Secure-testing-commits
mailing list