[Secure-testing-commits] r3698 - data/CVE

Joey Hess Mon, 27 Mar 2006 01:15:38 -0800

Author: joeyh
Date: 2006-03-27 09:14:22 +0000 (Mon, 27 Mar 2006)
New Revision: 3698


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2006-03-27 07:36:56 UTC (rev 3697)
+++ data/CVE/list       2006-03-27 09:14:22 UTC (rev 3698)
@@ -1,3 +1,45 @@
+CVE-2006-1396 (Multiple cross-site scripting (XSS) vulnerabilities in Cholod 
MySQL ...)
+       TODO: check
+CVE-2006-1395 (SQL injection vulnerability in mb.cgi in Cholod MySQL Based 
Message ...)
+       TODO: check
+CVE-2006-1394 (Multiple cross-site scripting (XSS) vulnerabilities in the 
Microsoft ...)
+       TODO: check
+CVE-2006-1393 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
+       TODO: check
+CVE-2006-1392 (Multiple cross-site scripting (XSS) vulnerabilities in 
index.cgi in ...)
+       TODO: check
+CVE-2006-1391 (The (a) Quick 'n Easy Web Server before 3.1.1 and (b) Baby ASP 
Web ...)
+       TODO: check
+CVE-2006-1390 (The configuration of NetHack 3.4.3-r1 and earlier, Falcon's Eye 
1.9.4a ...)
+       TODO: check
+CVE-2006-1389 (Unspecified vulnerability in swagentd in HP-UX B.11.00, 
B.11.04, and ...)
+       TODO: check
+CVE-2006-1388 (Unspecified vulnerability in Microsoft Internet Explorer 6.0 
allows ...)
+       TODO: check
+CVE-2006-1387 (TWiki 4.0, 4.0.1, and 20010901 through 20040904 allows remote 
...)
+       TODO: check
+CVE-2006-1386 (The (1) rdiff and (2) preview scripts in TWiki 4.0 and 4.0.1 
ignore ...)
+       TODO: check
+CVE-2006-1385 (Stack-based buffer overflow in the parseTaggedData function in 
...)
+       TODO: check
+CVE-2006-1384 (Cross-site scripting (XSS) vulnerability in apwc_win_main.jsp 
in the ...)
+       TODO: check
+CVE-2006-1383 (Directory traversal vulnerability in Baby FTP Server 1.24 
allows ...)
+       TODO: check
+CVE-2006-1382 (PHP remote file inclusion vulnerability in impex/ImpExData.php 
in ...)
+       TODO: check
+CVE-2006-1381 (Trend Micro OfficeScan 5.5, and probably other versions before 
6.5, ...)
+       TODO: check
+CVE-2006-1380 (ISNTSmtp directory in Trend Micro InterScan Messaging Security 
Suite ...)
+       TODO: check
+CVE-2006-1379 (Trend Micro PC-cillin Internet Security 2006 14.00.1485 and ...)
+       TODO: check
+CVE-2003-1300 (Unspecified vulnerability in Baby FTP Server versions before 
May 31, ...)
+       TODO: check
+CVE-2003-1299 (Directory traversal vulnerability in Baby FTP Server versions 
before ...)
+       TODO: check
+CVE-2002-2209 (Unspecified &quot;security vulnerability&quot; in Baby FTP 
Server versions ...)
+       TODO: check
 CVE-2006-1378 (PasswordSafe 3.0, when running on Windows before XP, uses a 
weak ...)
        NOT-FOR-US: PasswordSafe
 CVE-2006-1377 (Cross-site scripting (XSS) vulnerability in img.php in (1) 
EasyMoblog ...)
@@ -681,8 +723,7 @@
        NOT-FOR-US: VXWorks
 CVE-2006-1067 (Linksys WRT54G routers version 5 (running VXWorks) allow remote 
...)
        NOT-FOR-US: VXWorks
-CVE-2006-1066
-       RESERVED
+CVE-2006-1066 (Linux kernel 2.6.16-rc2 and earlier, when running on the IA64 
...)
        {DSA-1017-1}
 CVE-2006-1065 (SQL injection vulnerability in search.php in MyBulletinBoard 
(MyBB) ...)
        NOT-FOR-US: MyBulletinBoard
@@ -1222,8 +1263,8 @@
        RESERVED
 CVE-2006-0817
        RESERVED
-CVE-2006-0816
-       RESERVED
+CVE-2006-0816 (Orion Application Server before 2.0.7, when running on Windows, 
allows ...)
+       TODO: check
 CVE-2006-0815 (NetworkActiv Web Server 3.5.15 allows remote attackers to read 
script ...)
        TODO: check
 CVE-2006-0814 (response.c in Lighttpd 1.4.10 and possibly previous versions, 
when run ...)
@@ -5579,6 +5620,7 @@
 CVE-2005-3663 (Unquoted Windows search path vulnerability in Kaspersky 
Anti-Virus 5.0 ...)
        NOT-FOR-US: Kaspersky AV
 CVE-2005-3662 (Off-by-one buffer overflow in pnmtopng before 2.39, when using 
the ...)
+       {DSA-904-1}
        - netpbm-free 2:10.0-10.1 (medium; bug #351639)
 CVE-2005-3661 (Dell TrueMobile 2300 Wireless Broadband Router running firmware 
...)
        NOT-FOR-US: Dell hardware issue
@@ -10997,6 +11039,7 @@
        {DSA-764-1}
        - cacti 0.8.6f-1 (bug #316590; high)
 CVE-2005-2147 (Trac before 0.8.4 allows remote attackers to read or upload 
arbitrary ...)
+       {DSA-739-1}
        TODO: Check, whether this was covered by DSA-739 as well
        - trac 0.8.4-1
 CVE-2005-2146 (SSH Tectia Server 4.3.1 and earlier, and SSH Secure Shell for 
Windows ...)
@@ -11818,7 +11861,6 @@
 CVE-2005-2008 (Yaws Webserver 1.55 and earlier allows remote attackers to 
obtain the ...)
        - yaws 1.56-1 (low)
 CVE-2005-2007 (Directory traversal vulnerability in Edgewall Trac 0.8.3 and 
earlier ...)
-       {DSA-739-1}
        - trac 0.8.4-1 (bug #315145)
 CVE-2005-2006 (JBOSS 3.2.2 through 3.2.7 and 4.0.2 allows remote attackers to 
obtain ...)
        NOT-FOR-US: JBOSS


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r3698 - data/CVE

Reply via email to