[Secure-testing-commits] r3943 - data/CVE
Stefan Fritsch
stef-guest at costa.debian.org
Fri May 12 12:53:57 UTC 2006
Author: stef-guest
Date: 2006-05-12 12:53:52 +0000 (Fri, 12 May 2006)
New Revision: 3943
Modified:
data/CVE/list
Log:
some NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-05-12 12:36:30 UTC (rev 3942)
+++ data/CVE/list 2006-05-12 12:53:52 UTC (rev 3943)
@@ -145,17 +145,17 @@
CVE-2006-2227 (Cross-site scripting (XSS) vulnerability in misc.php in PunBB 1.2.11 ...)
NOT-FOR-US: PunBB
CVE-2006-2226 (Buffer overflow in XM Easy Personal FTP Server 4.2 allows remote ...)
- TODO: check
+ NOT-FOR-US: Easy Personal FTP Server
CVE-2006-2225 (Buffer overflow in XM Easy Personal FTP Server 4.3 and earlier allows ...)
- TODO: check
+ NOT-FOR-US: Easy Personal FTP Server
CVE-2006-2224 (RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly enforce ...)
- quagga 0.99.3-2 (bug #365940; medium)
CVE-2006-2223 (RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly ...)
- quagga 0.99.3-2 (bug #365940; medium)
CVE-2006-2222 (Buffer overflow in zawhttpd 0.8.23, and possibly previous versions, ...)
- TODO: check
+ NOT-FOR-US: zawhttpd
CVE-2006-2221 (A third-party installer generation tool, possibly BitRock ...)
- TODO: check
+ - ejabberd <not-affected> (only binary distribution is affected)
CVE-2006-2220
RESERVED
CVE-2006-2219
@@ -163,7 +163,7 @@
CVE-2006-2218 (Unspecified vulnerability in Internet Explorer 6.0 on Microsoft ...)
NOT-FOR-US: MS IE
CVE-2006-2217 (SQL injection vulnerability in index.php in Invision Power Board ...)
- TODO: check
+ NOT-FOR-US: Invision Power Board
CVE-2006-2216 (Open Bulletin Board (OpenBB) 1.0.8 allows remote attackers to obtain ...)
NOT-FOR-US: OpenBB
CVE-2006-2215 (Multiple cross-site scripting (XSS) vulnerabilities in Albinator 2.x ...)
@@ -182,34 +182,34 @@
CVE-2006-XXXX [cyrus-imapd allows user probes]
- cyrus-imapd-2.2 2.2.13-3
CVE-2006-2214 (Multiple SQL injection vulnerabilities in 4images 1.7.1 and earlier ...)
- TODO: check
+ NOT-FOR-US: 4images
CVE-2006-2213 (Hostapd 0.3.7-2 allows remote attackers to cause a denial of service ...)
- hostapd 0.5.0-1 (bug #365897; high)
[sarge] - hostapd <unfixed> (bug #365897; high)
CVE-2006-2212 (Buffer overflow in KarjaSoft Sami FTP Server 2.0.2 and earlier allows ...)
- TODO: check
+ NOT-FOR-US: KarjaSoft Sami FTP Server
CVE-2006-2211 (Absolute path traversal vulnerability in index.php in 321soft ...)
- TODO: check
+ NOT-FOR-US: 321soft PhP-Gallery
CVE-2006-2210 (Cross-site scripting (XSS) vulnerability in index.php in 321soft ...)
- TODO: check
+ NOT-FOR-US: 321soft PhP-Gallery
CVE-2006-2209 (Multiple SQL injection vulnerabilities in index.php in PHP Arena ...)
TODO: check
CVE-2006-2208 (Multiple cross-site scripting (XSS) vulnerabilities in mynews.inc.php ...)
- TODO: check
+ NOT-FOR-US: paCheckBook
CVE-2006-2207
RESERVED
CVE-2006-2206 (The MS-Logon authentication scheme in UltraVNC (aka Ultr at VNC) 1.0.1 ...)
- TODO: check
+ NOT-FOR-US: UltraVNC
CVE-2006-2205 (The audio_write function in NetBSD 3.0 allows local users to cause a ...)
- TODO: check
+ NOT-FOR-US: NetBSD kernel
CVE-2006-2204 (SQL injection vulnerability in the topic deletion functionality ...)
- TODO: check
+ NOT-FOR-US: Invision Power Board
CVE-2006-2203 (Unspecified vulnerability in Kerio MailServer before 6.1.4 has unknown ...)
- TODO: check
+ NOT-FOR-US: Kerio MailServer
CVE-2006-2202 (SQL injection vulnerability in post.php in Invision Gallery 2.0.6 ...)
- TODO: check
+ NOT-FOR-US: Invision Gallery
CVE-2006-2201 (Unspecified vulnerability in CA Resource Initialization Manager ...)
- TODO: check
+ NOT-FOR-US: CA Resource Initialization Manager
CVE-2006-2200
RESERVED
CVE-2006-2199
@@ -231,47 +231,47 @@
CVE-2006-2191
RESERVED
CVE-2006-2190 (Cross-site scripting (XSS) vulnerability in ow-shared.pl in ...)
- TODO: check
+ NOT-FOR-US: OpenWebMail
CVE-2006-2189 (SQL injection vulnerability in search.php in Servous sBLOG 0.7.2 ...)
- TODO: check
+ NOT-FOR-US: Servous sBLOG
CVE-2006-2188 (Multiple cross-site scripting (XSS) vulnerabilities in CMScout 1.10 ...)
- TODO: check
+ NOT-FOR-US: CMScout
CVE-2006-2187 (Multiple cross-site scripting (XSS) vulnerabilities in zenphoto 1.0.1 ...)
- TODO: check
+ NOT-FOR-US: zenphoto
CVE-2006-2186 (zenphoto 1.0.1 beta and earlier allow remote attackers to obtain ...)
- TODO: check
+ NOT-FOR-US: zenphoto
CVE-2006-2185
RESERVED
CVE-2006-2184 (Cross-site scripting (XSS) vulnerability in search.php in PHPKB ...)
- TODO: check
+ NOT-FOR-US: PHPKB Knowledge Base
CVE-2006-2183 (Untrusted search path vulnerability in Truecrypt 4.1, when running ...)
- TODO: check
+ NOT-FOR-US: Truecrypt
CVE-2006-2182 (Multiple PHP remote file inclusion vulnerabilities in (1) eday.php, ...)
- TODO: check
+ NOT-FOR-US: albinator
CVE-2006-2181 (Multiple cross-site scripting (XSS) vulnerabilities in albinator 2.0.8 ...)
- TODO: check
+ NOT-FOR-US: albinator
CVE-2006-2180 (Buffer overflow in Golden FTP Server Pro 2.70 allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Golden FTP Server Pro
CVE-2006-2179 (Multiple SQL injection vulnerabilities in CyberBuild allow remote ...)
- TODO: check
+ NOT-FOR-US: CyberBuild
CVE-2006-2178 (Mulitiple cross-site scripting (XSS) vulnerabilities in CyberBuild ...)
- TODO: check
+ NOT-FOR-US: CyberBuild
CVE-2006-2177 (Cross-site scripting (XSS) vulnerability in viewcat.php in geoBlog 1.0 ...)
- TODO: check
+ NOT-FOR-US: geoBlog
CVE-2006-2176 (Multiple cross-site scripting (XSS) vulnerabilities in links.php in ...)
- TODO: check
+ NOT-FOR-US: PHP Linkliste
CVE-2006-2175 (PHP remote file inclusion vulnerability in FtrainSoft Fast Click 2.3.8 ...)
NOT-FOR-US: Fast Click
CVE-2006-2174 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: Virtual Hosting Control System (VHCS)
CVE-2006-2173 (Buffer overflow in FileZilla FTP Server allows remote authenticated ...)
- TODO: check
+ NOT-FOR-US: FileZilla FTP Server
CVE-2006-2172 (Buffer overflow in Gene6 FTP Server 3.1.0 allows remote authenticated ...)
- TODO: check
+ NOT-FOR-US: Gene6 FTP Server
CVE-2006-2171 (Buffer overflow in WDM.exe in WarFTPD allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: WarFTPD
CVE-2006-2170 (Buffer overflow in ArgoSoft FTP Server allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: ArgoSoft FTP Server
CVE-2006-2169 (RT: Request Tracker 3.5.HEAD allows remote attackers to obtain ...)
TODO: check
CVE-2006-2168 (FileProtection Express 1.0.1 and earlier allows remote attackers to ...)
More information about the Secure-testing-commits
mailing list