[Secure-testing-commits] r3958 - data/CVE

[Stefan Fritsch]

Author: stef-guest
Date: 2006-05-16 08:38:32 +0000 (Tue, 16 May 2006)
New Revision: 3958

Modified:
   data/CVE/list
Log:
critical vnc issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-05-15 21:14:23 UTC (rev 3957)
+++ data/CVE/list	2006-05-16 08:38:32 UTC (rev 3958)
@@ -1,3 +1,7 @@
+CVE-2006-XXXX [vnc server authentication bypass]
+	- vnc4 4.1.1+X4.3.0-10 (high)
+	NOTE: mail to bugtraq implies 4.0 is not vulnerable
+	TODO: sarge needs to be checked
 CVE-2006-2358 (Multiple cross-site scripting (XSS) vulnerabilities in various scripts ...)
 	TODO: check
 CVE-2006-2357 (Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 ...)