[Secure-testing-commits] r14752 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Tue May 25 21:15:07 UTC 2010
Author: joeyh
Date: 2010-05-25 21:15:04 +0000 (Tue, 25 May 2010)
New Revision: 14752
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-05-25 09:15:36 UTC (rev 14751)
+++ data/CVE/list 2010-05-25 21:15:04 UTC (rev 14752)
@@ -1,3 +1,47 @@
+CVE-2010-2032 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
+CVE-2010-2031 (KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield ...)
+ TODO: check
+CVE-2010-2030 (Cross-site scripting (XSS) vulnerability in the External Link Page ...)
+ TODO: check
+CVE-2010-2029 (Cybozu Office 7 Ktai and Dotsales do not properly restrict access to ...)
+ TODO: check
+CVE-2010-2028 (Buffer overflow in k23productions TFTPUtil GUI (aka TFTPGUI) 1.4.5 ...)
+ TODO: check
+CVE-2010-2027 (Mathematica 7, when running on Linux, allows local users to overwrite ...)
+ TODO: check
+CVE-2010-2026
+ RESERVED
+CVE-2010-2025
+ RESERVED
+CVE-2010-2024
+ RESERVED
+CVE-2010-2023
+ RESERVED
+CVE-2010-2022
+ RESERVED
+CVE-2010-2021
+ RESERVED
+CVE-2010-2020
+ RESERVED
+CVE-2010-2019 (SQL injection vulnerability in downlot.php in Lokomedia CMS 1.4.1, ...)
+ TODO: check
+CVE-2010-2018 (Directory traversal vulnerability in downlot.php in Lokomedia CMS ...)
+ TODO: check
+CVE-2010-2017 (Cross-site scripting (XSS) vulnerability in hasil-pencarian.html in ...)
+ TODO: check
+CVE-2010-2016 (SQL injection vulnerability in details.php in Iceberg CMS allows ...)
+ TODO: check
+CVE-2010-2015 (Multiple SQL injection vulnerabilities in LiSK CMS 4.4 allow remote ...)
+ TODO: check
+CVE-2010-2014 (Cross-site scripting (XSS) vulnerability in cp/list_content.php in ...)
+ TODO: check
+CVE-2010-2013 (Cross-site scripting (XSS) vulnerability in cp/edit_email.php in LiSK ...)
+ TODO: check
+CVE-2010-2012 (SQL injection vulnerability in function.php in MigasCMS 1.1, when ...)
+ TODO: check
+CVE-2006-7239 (The _gnutls_x509_oid2mac_algorithm function in lib/gnutls_algorithms.c ...)
+ TODO: check
CVE-2010-2011 (Microsoft Dynamics GP uses a substitution cipher to encrypt the system ...)
NOT-FOR-US: Microsoft Dynamics GP
CVE-2010-2010 (Multiple cross-site scripting (XSS) vulnerabilities in the Chaos Tool ...)
@@ -620,7 +664,8 @@
RESERVED
CVE-2010-1746 (Multiple cross-site scripting (XSS) vulnerabilities in the Table JX ...)
NOT-FOR-US: com_grid component for joomla!
-CVE-2010-1745 (SQL injection vulnerability in ...)
+CVE-2010-1745
+ REJECTED
NOT-FOR-US: Campsite
CVE-2010-1744 (SQL injection vulnerability in product.html in B2B Gold Script allows ...)
NOT-FOR-US: B2B Gold Script
@@ -759,8 +804,8 @@
NOT-FOR-US: Microsoft Windows
CVE-2010-1689 (The DNS implementation in smtpsvc.dll before 6.0.2600.5949 in ...)
NOT-FOR-US: Microsoft Windows
-CVE-2010-1688
- RESERVED
+CVE-2010-1688 (Stack-based buffer overflow in 2BrightSparks SyncBack Freeware ...)
+ TODO: check
CVE-2010-1687 (Stack-based buffer overflow in lpd.exe in Mocha W32 LPD 1.9 allows ...)
NOT-FOR-US: Mocha W32 LPD
CVE-2010-1686 (Stack-based buffer overflow in (1) Urgent Backup 3.20, and (2) ABC ...)
More information about the Secure-testing-commits
mailing list