[Secure-testing-commits] r6627 - data/CVE
joeyh at alioth.debian.org
joeyh at alioth.debian.org
Mon Sep 17 21:14:08 UTC 2007
Author: joeyh
Date: 2007-09-17 21:14:07 +0000 (Mon, 17 Sep 2007)
New Revision: 6627
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-09-17 21:11:42 UTC (rev 6626)
+++ data/CVE/list 2007-09-17 21:14:07 UTC (rev 6627)
@@ -1,3 +1,23 @@
+CVE-2007-4901 (Unspecified vulnerability in AOL Instant Messenger (AIM) 6.1.41.2 ...)
+ TODO: check
+CVE-2007-4900 (Cross-site scripting (XSS) vulnerability in the logon page in RSA ...)
+ TODO: check
+CVE-2007-4899 (Multiple cross-site scripting (XSS) vulnerabilities in Boinc Forum ...)
+ TODO: check
+CVE-2007-4898 (Unspecified vulnerability in the Multiwiki plugin in XWiki before 1.1 ...)
+ TODO: check
+CVE-2007-4897 (The SIPURL::GetHostAddress function in Ekiga (formerly GnomeMeeting) ...)
+ TODO: check
+CVE-2007-4896 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
+CVE-2007-4895 (Directory traversal vulnerability in dwoprn.php in Sisfo Kampus 2006 ...)
+ TODO: check
+CVE-2007-4894 (Multiple SQL injection vulnerabilities in Wordpress before 2.2.3 and ...)
+ TODO: check
+CVE-2007-4893 (wp-admin/admin-functions.php in Wordpress before 2.2.3 and Wordpress ...)
+ TODO: check
+CVE-2007-4892 (Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 8.1.0, ...)
+ TODO: check
CVE-2007-XXXX [duplicity exposes FTP password in command line args]
- duplicity <unfixed> (bug #442840)
CVE-2007-XXXX [libgd2: gdImageColorTransparent can write outside buffer]
@@ -159,7 +179,7 @@
[etch] - mediawiki <not-affected> (Does not include the vulnerable code)
CVE-2007-4827
RESERVED
-CVE-2007-4826 (bgpd in Quagga before 0.99.9 allows remote BGP peers to cause a denial ...)
+CVE-2007-4826 (bgpd in Quagga before 0.99.9, when debugging is enabled, allows remote ...)
- quagga 0.99.9-1 (low; bug #442133)
NOTE: Upstream says that this can only be exploited by configured peers.
CVE-2007-4825 (Directory traversal vulnerability in PHP 5.2.4 and earlier allows ...)
More information about the Secure-testing-commits
mailing list