[Secure-testing-commits] r14064 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Feb 9 09:14:41 UTC 2010


Author: joeyh
Date: 2010-02-09 09:14:38 +0000 (Tue, 09 Feb 2010)
New Revision: 14064

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-02-08 23:08:00 UTC (rev 14063)
+++ data/CVE/list	2010-02-09 09:14:38 UTC (rev 14064)
@@ -1,3 +1,33 @@
+CVE-2010-0559 (The default configuration of Oracle OpenSolaris snv_91 through snv_131 ...)
+	TODO: check
+CVE-2010-0558 (The default configuration of Oracle OpenSolaris snv_77 through snv_131 ...)
+	TODO: check
+CVE-2010-0557 (IBM Cognos Express 9.0 allows attackers to obtain unspecified access ...)
+	TODO: check
+CVE-2010-0556
+	RESERVED
+CVE-2003-1587 (Cross-site scripting (XSS) vulnerability in LoganPro allows remote ...)
+	TODO: check
+CVE-2003-1586 (Cross-site scripting (XSS) vulnerability in WebExpert allows remote ...)
+	TODO: check
+CVE-2003-1585 (Cross-site scripting (XSS) vulnerability in WebLogExpert allows remote ...)
+	TODO: check
+CVE-2003-1584 (Cross-site scripting (XSS) vulnerability in SurfStats allows remote ...)
+	TODO: check
+CVE-2003-1583 (Cross-site scripting (XSS) vulnerability in WebTrends allows remote ...)
+	TODO: check
+CVE-2003-1582 (Microsoft Internet Information Services (IIS) 6.0, when DNS resolution ...)
+	TODO: check
+CVE-2003-1581 (The Apache HTTP Server 2.0.44, when DNS resolution is enabled for ...)
+	TODO: check
+CVE-2003-1580 (The Apache HTTP Server 2.0.44, when DNS resolution is enabled for ...)
+	TODO: check
+CVE-2003-1579 (Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS resolution is ...)
+	TODO: check
+CVE-2003-1578 (Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, ...)
+	TODO: check
+CVE-2003-1577 (Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0 through SP5, ...)
+	TODO: check
 CVE-2010-0555 (Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2010-0554 (The HTTP Authentication implementation in Geo++ GNCASTER 1.4.0.7 and ...)
@@ -2427,8 +2457,8 @@
 	NOT-FOR-US: Sun Java System Portal Server
 CVE-2009-4186 (Stack consumption vulnerability in Apple Safari 4.0.3 on Windows ...)
 	NOT-FOR-US: Apple Safari
-CVE-2009-4185
-	RESERVED
+CVE-2009-4185 (Cross-site scripting (XSS) vulnerability in proxy/smhui/getuiinfo in ...)
+	TODO: check
 CVE-2009-4184 (Unspecified vulnerability in HP Enterprise Cluster Master Toolkit ...)
 	TODO: check
 CVE-2009-4183 (Unspecified vulnerability in HP OpenView Storage Data Protector 6.00 ...)
@@ -7019,10 +7049,10 @@
 	RESERVED
 CVE-2009-2753
 	RESERVED
-CVE-2009-2752
-	RESERVED
-CVE-2009-2751
-	RESERVED
+CVE-2009-2752 (IBM WebSphere Commerce 7.0 does not properly encrypt data in a ...)
+	TODO: check
+CVE-2009-2751 (IBM WebSphere Commerce 7.0 uses the same cryptographic key for session ...)
+	TODO: check
 CVE-2009-2750 (IBM WebSphere Service Registry and Repository (WSRR) 6.3.0 before FP2 ...)
 	TODO: check
 CVE-2009-2749 (Feature Pack for Communications Enabled Applications (CEA) before ...)




More information about the Secure-testing-commits mailing list