commit: 8b953fe2c9b5ed6958a74c464ee607b7ec8f80da
Author: Stefan Behte <craig <AT> gentoo <DOT> org>
AuthorDate: Sun Mar 27 23:51:55 2011 +0000
Commit: Pavlos Ratis <dastergon <AT> gentoo <DOT> org>
CommitDate: Sun Mar 27 23:51:55 2011 +0000
URL:
http://git.overlays.gentoo.org/gitweb/?p=proj/security.git;a=commit;h=8b953fe2
MITRE sync
svn path=/; revision=2221
---
data/CVE/list | 3536 ++++++++++++++++++++++++++++++++++++++++++++++-----------
1 file changed, 2865 insertions(+), 671 deletions(-)
diff --git a/data/CVE/list b/data/CVE/list
index 28ea497..b9de8d6 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -18316,8 +18316,7 @@ CVE-2004-0692 (The XPM parser in the QT library (qt3)
before 3.3.3 allows remote
BUG: 60855
CVE-2004-0693 (The GIF parser in the QT library (qt3) before 3.3.3 allows
remote ...)
BUG: 60855
-CVE-2004-0694
- RESERVED
+CVE-2004-0694 (Buffer overflow in LHA 1.14 and earlier allows remote attackers
to ...)
BUG: 62618
CVE-2004-0695 (Stack-based buffer overflow in the FTP service for 4D WebSTAR
5.3.2 ...)
NOT-FOR-US: Data pre-dating the Security Tracker
@@ -50938,7 +50937,7 @@ CVE-2007-1781 (Minna De Office 1.x and 2.x does not
properly restrict user acces
CVE-2007-1782 (CruiseWorks 1.09e and earlier does not properly restrict user
access ...)
TODO: check-old
CVE-2007-1783
- RESERVED
+ REJECTED
CVE-2007-1784 (The JNILoader ActiveX control (STJNILoader.ocx) 3.1.0.26 in IBM
Lotus ...)
TODO: check-old
CVE-2007-1785 (The RPC service in mediasvr.exe in CA BrightStor ARCserve
Backup 11.5 ...)
@@ -66941,7 +66940,7 @@ CVE-2008-2954 (client/NmdcHub.cpp in Linux DC++
(linuxdcpp) before 0.707 allows
BUG: 230075
CVE-2008-2955 (Pidgin 2.4.1 allows remote attackers to cause a denial of
service ...)
BUG: 230045
-CVE-2008-2956 (Memory leak in Pidgin 2.0.0, and possibly other versions,
allows ...)
+CVE-2008-2956 (** DISPUTED ** ...)
BUG: 230045
CVE-2008-2957 (The UPnP functionality in Pidgin 2.0.0, and possibly other
versions, ...)
BUG: 230045
@@ -67852,7 +67851,7 @@ CVE-2008-3406 (SQL injection vulnerability in
showcat.php in phpLinkat 0.1 allow
NOT-FOR-US: phpLinkat
CVE-2008-3407 (phpLinkat 0.1 allows remote attackers to bypass authentication
and ...)
NOT-FOR-US: phpLinkat
-CVE-2008-3408 (Stack-based buffer overflow in CoolPlayer allows user-assisted
remote ...)
+CVE-2008-3408 (Stack-based buffer overflow in CoolPlayer 2.18, and possibly
other ...)
NOT-FOR-US: CoolPlayer
CVE-2008-3409 (Buffer overflow in Unreal Tournament 3 1.3beta4 and earlier
allows ...)
NOT-FOR-US: not in tree
@@ -75604,6 +75603,32 @@ CVE-2008-7272
RESERVED
CVE-2008-7273
RESERVED
+CVE-2008-7274 (IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS
Login ...)
+ TODO: check
+CVE-2008-7275 (Multiple cross-site scripting (XSS) vulnerabilities in Open
Ticket ...)
+ TODO: check
+CVE-2008-7276 (Kernel/System/Web/Request.pm in Open Ticket Request System
(OTRS) ...)
+ TODO: check
+CVE-2008-7277 (Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for
the rw ...)
+ TODO: check
+CVE-2008-7278 (The S/MIME feature in Open Ticket Request System (OTRS) before
2.2.5, ...)
+ TODO: check
+CVE-2008-7279 (The CustomerInterface component in Open Ticket Request System
(OTRS) ...)
+ TODO: check
+CVE-2008-7280 (Kernel/System/EmailParser.pm in PostmasterPOP3.pl in Open
Ticket ...)
+ TODO: check
+CVE-2008-7281 (Open Ticket Request System (OTRS) before 2.2.7 sends e-mail
containing ...)
+ TODO: check
+CVE-2008-7282 (Kernel/Output/HTML/CustomerNewTicketQueueSelectionGeneric.pm in
Open ...)
+ TODO: check
+CVE-2008-7283 (Open Ticket Request System (OTRS) before 2.2.6, when customer
group ...)
+ TODO: check
+CVE-2008-7284 (IBM Lotus Quickr 8.1 before 8100.003 services for Lotus Domino
allows ...)
+ TODO: check
+CVE-2008-7285 (Unspecified vulnerability in the docnote string handling ...)
+ TODO: check
+CVE-2008-7286 (IBM Lotus Quickr 8.1 before 8.1.0.2 services for Lotus Domino
does not ...)
+ TODO: check
CVE-2009-0001 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows
remote ...)
NOT-FOR-US: apple quicktime
CVE-2009-0002 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows
remote ...)
@@ -75982,9 +76007,9 @@ CVE-2009-0187 (Stack-based buffer overflow in Orbit
Downloader 2.8.2 and 2.8.3,
CVE-2009-0188 (Apple QuickTime before 7.6.2 allows remote attackers to execute
...)
NOT-FOR-US: apple quicktime
CVE-2009-0189
- RESERVED
+ REJECTED
CVE-2009-0190
- RESERVED
+ REJECTED
CVE-2009-0191 (Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506,
...)
NOT-FOR-US: foxitsoftware foxit_reader
CVE-2009-0192 (Off-by-one error in the iMonitor component in Novell eDirectory
8.8 ...)
@@ -81687,8 +81712,8 @@ CVE-2009-3026 (protocols/jabber/auth.c in libpurple in
Pidgin 2.6.0, and possibl
BUG: 283324
CVE-2009-3027 (VRTSweb.exe in VRTSweb in Symantec Backup Exec Continuous
Protection ...)
NOT-FOR-US: VRTSweb in Symantec Backup Exec Continuous Protection
Server CPS
-CVE-2009-3028
- RESERVED
+CVE-2009-3028 (The Altiris eXpress NS SC Download ActiveX control in ...)
+ TODO: check
CVE-2009-3029 (Cross-site scripting (XSS) vulnerability in the console in
Symantec ...)
NOT-FOR-US: symantec securityexpressions_audit_and_compliance_server
CVE-2009-3030 (Cross-site scripting (XSS) vulnerability in Symantec ...)
@@ -85764,6 +85789,28 @@ CVE-2009-5050
RESERVED
CVE-2009-5051 (Hastymail2 before RC 8 does not set the secure flag for the
session ...)
TODO: check
+CVE-2009-5052 (Multiple unspecified vulnerabilities in Smarty before 3.0.0
beta 6 ...)
+ TODO: check
+CVE-2009-5053 (Unspecified vulnerability in Smarty before 3.0.0 beta 6 allows
remote ...)
+ TODO: check
+CVE-2009-5054 (Smarty before 3.0.0 beta 4 does not consider the umask value
when ...)
+ TODO: check
+CVE-2009-5055 (Open Ticket Request System (OTRS) before 2.4.4 grants ticket
access on ...)
+ TODO: check
+CVE-2009-5056 (Open Ticket Request System (OTRS) before 2.4.0-beta2 does not
properly ...)
+ TODO: check
+CVE-2009-5057 (The S/MIME feature in Open Ticket Request System (OTRS) before
2.3.4 ...)
+ TODO: check
+CVE-2009-5058 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before
8.1.0.5 ...)
+ TODO: check
+CVE-2009-5059 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before
8.1.0.10 ...)
+ TODO: check
+CVE-2009-5060 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before
8.1.0.11 ...)
+ TODO: check
+CVE-2009-5061 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before
8.1.0.14 ...)
+ TODO: check
+CVE-2009-5062 (IBM Lotus Quickr 8.1 before 8.1.0.15 services for Lotus Domino
on AIX ...)
+ TODO: check
CVE-2010-0001 (Integer underflow in the unlzw function in unlzw.c in gzip
before 1.4 ...)
BUG: 300943
CVE-2010-0002 (The /etc/profile.d/60alias.sh script in the Mandriva bash
package for ...)
@@ -85982,10 +86029,10 @@ CVE-2010-0108 (Buffer overflow in the
cliproxy.objects.1 ActiveX control in the
NOT-FOR-US: symantec endpoint_protection
CVE-2010-0109
RESERVED
-CVE-2010-0110
- RESERVED
-CVE-2010-0111
- RESERVED
+CVE-2010-0110 (Multiple stack-based buffer overflows in Intel Alert Management
System ...)
+ TODO: check
+CVE-2010-0111 (HDNLRSVC.EXE in the Intel Alert Handler service (aka Symantec
Intel ...)
+ TODO: check
CVE-2010-0112 (Multiple SQL injection vulnerabilities in the Administrative
Interface ...)
NOT-FOR-US: symantec im_manager
CVE-2010-0113 (The Symantec Norton Mobile Security application 1.0 Beta for
Android ...)
@@ -88955,7 +89002,7 @@ CVE-2010-1583 (SQL injection vulnerability in the
loadByKey function in the ...)
NOT-FOR-US: tirzen_framework
CVE-2010-1584 (Cross-site scripting (XSS) vulnerability in the Context module
before ...)
NOT-FOR-US: steven_jones context
-CVE-2010-1585 (The nsIScriptableUnescapeHTML.parseFragment method in Mozilla
Firefox ...)
+CVE-2010-1585 (The nsIScriptableUnescapeHTML.parseFragment method in the ...)
TODO: check
CVE-2010-1586 (Open redirect vulnerability in red2301.html in HP System
Management ...)
NOT-FOR-US: hp system_management_homepage
@@ -89401,7 +89448,7 @@ CVE-2010-1805 (Untrusted search path vulnerability in
Apple Safari 4.x before 4.
NOT-FOR-US: apple safari
CVE-2010-1806 (Use-after-free vulnerability in Apple Safari 4.x before 4.1.2
and 5.x ...)
TODO: check
-CVE-2010-1807 (WebKit in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2,
and ...)
+CVE-2010-1807 (WebKit in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2;
Android ...)
TODO: check
CVE-2010-1808 (Stack-based buffer overflow in Apple Type Services (ATS) in
Apple Mac ...)
NOT-FOR-US: apple mac_os_x_server
@@ -89415,7 +89462,7 @@ CVE-2010-1812 (Use-after-free vulnerability in WebKit
in Apple iOS before 4.1 on
TODO: check
CVE-2010-1813 (WebKit in Apple iOS before 4.1 on the iPhone and iPod touch
allows ...)
TODO: check
-CVE-2010-1814 (WebKit in Apple iOS before 4.1 on the iPhone and iPod touch
allows ...)
+CVE-2010-1814 (WebKit in Apple iOS before 4.1 on the iPhone and iPod touch,
and ...)
TODO: check
CVE-2010-1815 (Use-after-free vulnerability in WebKit in Apple iOS before 4.1
on the ...)
TODO: check
@@ -89435,7 +89482,7 @@ CVE-2010-1822 (WebKit, as used in Apple Safari before
4.1.3 and 5.0.x before 5.0
TODO: check
CVE-2010-1823 (Use-after-free vulnerability in WebKit before r65958, as used
in ...)
TODO: check
-CVE-2010-1824 (Use-after-free vulnerability in WebKit, as used in Google
Chrome ...)
+CVE-2010-1824 (Use-after-free vulnerability in WebKit, as used in Apple iTunes
before ...)
TODO: check
CVE-2010-1825 (Use-after-free vulnerability in WebKit, as used in Google
Chrome ...)
TODO: check
@@ -89595,7 +89642,7 @@ CVE-2010-1902 (Buffer overflow in Microsoft Office Word
2002 SP3, 2003 SP3, and
NOT-FOR-US: microsoft word
CVE-2010-1903 (Microsoft Office Word 2002 SP3 and 2003 SP3, and Office Word
Viewer, ...)
NOT-FOR-US: microsoft word
-CVE-2010-1904 (SQL injection vulnerability in EMC RSA Key Manager Client 1.5.x
allows ...)
+CVE-2010-1904 (SQL injection vulnerability in EMC RSA Key Manager (RKM) C
Client ...)
NOT-FOR-US: emc rsa_key_manager_client
CVE-2010-1905 (Multiple cross-site scripting (XSS) vulnerabilities in Consona
Live ...)
NOT-FOR-US: consona_subscriber_assistance
@@ -90965,12 +91012,12 @@ CVE-2010-2585 (Multiple buffer overflows in the
RealPage Module Upload ActiveX .
NOT-FOR-US: realpage module_activex_control
CVE-2010-2586 (Multiple integer overflows in in_nsv.dll in the in_nsv plugin
in ...)
NOT-FOR-US: nullsoft winamp
-CVE-2010-2587
- RESERVED
-CVE-2010-2588
- RESERVED
-CVE-2010-2589
- RESERVED
+CVE-2010-2587 (The dirapi.dll module in Adobe Shockwave Player before
11.5.9.620 ...)
+ TODO: check
+CVE-2010-2588 (The dirapi.dll module in Adobe Shockwave Player before
11.5.9.620 ...)
+ TODO: check
+CVE-2010-2589 (Integer overflow in the dirapi.dll module in Adobe Shockwave
Player ...)
+ TODO: check
CVE-2010-2590 (Heap-based buffer overflow in the ...)
NOT-FOR-US: sap crystal_reports
CVE-2010-2591
@@ -91345,12 +91392,12 @@ CVE-2010-2775
RESERVED
CVE-2010-2776
RESERVED
-CVE-2010-2777
- RESERVED
-CVE-2010-2778
- RESERVED
-CVE-2010-2779
- RESERVED
+CVE-2010-2777 (Stack-based buffer overflow in the IMAP server component in
GroupWise ...)
+ TODO: check
+CVE-2010-2778 (Cross-site scripting (XSS) vulnerability in WebAccess in Novell
...)
+ TODO: check
+CVE-2010-2779 (Cross-site scripting (XSS) vulnerability in WebAccess in Novell
...)
+ TODO: check
CVE-2010-2780
RESERVED
CVE-2010-2781
@@ -91647,8 +91694,8 @@ CVE-2010-2926 (SQL injection vulnerability in index.php
in sNews 1.7 allows remo
NOT-FOR-US: solucija snews
CVE-2010-2927 (The slapi_printmessage function in IBM Tivoli Directory Server
(ITDS) ...)
NOT-FOR-US: ibm tivoli_directory_server
-CVE-2010-2928
- RESERVED
+CVE-2010-2928 (The vCenter Tomcat Management Application in VMware vCenter
Server 4.1 ...)
+ TODO: check
CVE-2010-2929 (Untrusted search path vulnerability in hsolinkcontrol in
hsolink ...)
NOT-FOR-US: pharscape hsolink
CVE-2010-2930 (Multiple stack-based buffer overflows in hsolinkcontrol in
hsolink ...)
@@ -91661,7 +91708,7 @@ CVE-2010-2933 (SQL injection vulnerability in AV
Scripts AV Arcade 3 allows remo
NOT-FOR-US: AV Scripts AV Arcade
CVE-2010-2934 (Multiple unspecified vulnerabilities in ZNC 0.092 allow remote
...)
BUG: 332535
-CVE-2010-2935 (simpress.bin in the Impress module in OpenOffice.org (OOo)
3.2.1 on ...)
+CVE-2010-2935 (simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x
and 3.x ...)
NOT-FOR-US: Windows only.
CVE-2010-2936 (Integer overflow in simpress.bin in the Impress module in ...)
NOT-FOR-US: Windows only.
@@ -91875,14 +91922,14 @@ CVE-2010-3039 (/usr/local/cm/bin/pktCap_protectData
in Cisco Unified Communicati
NOT-FOR-US: cisco unified_communications_manager
CVE-2010-3040 (Multiple stack-based buffer overflows in agent.exe in Setup
Manager in ...)
NOT-FOR-US: cisco intelligent_contact_manager
-CVE-2010-3041
- RESERVED
-CVE-2010-3042
- RESERVED
-CVE-2010-3043
- RESERVED
-CVE-2010-3044
- RESERVED
+CVE-2010-3041 (Multiple buffer overflows in the Cisco WebEx Recording Format
(WRF) ...)
+ TODO: check
+CVE-2010-3042 (Multiple buffer overflows in the Cisco WebEx Recording Format
(WRF) ...)
+ TODO: check
+CVE-2010-3043 (Multiple buffer overflows in the Cisco WebEx Recording Format
(WRF) ...)
+ TODO: check
+CVE-2010-3044 (Multiple buffer overflows in the Cisco WebEx Recording Format
(WRF) ...)
+ TODO: check
CVE-2010-3045
RESERVED
CVE-2010-3046
@@ -92019,11 +92066,11 @@ CVE-2010-3111 (Google Chrome before 6.0.472.53 does
not properly mitigate an ...
TODO: check
CVE-2010-3112 (Google Chrome before 5.0.375.127 does not properly implement
file ...)
TODO: check
-CVE-2010-3113 (Google Chrome before 5.0.375.127 does not properly handle SVG
...)
+CVE-2010-3113 (Google Chrome before 5.0.375.127, and webkitgtk before 1.2.5,
does not ...)
TODO: check
-CVE-2010-3114 (The text-editing implementation in Google Chrome before
5.0.375.127 ...)
+CVE-2010-3114 (The text-editing implementation in Google Chrome before
5.0.375.127, ...)
TODO: check
-CVE-2010-3115 (Google Chrome before 5.0.375.127 does not properly implement
the ...)
+CVE-2010-3115 (Google Chrome before 5.0.375.127, and webkitgtk before 1.2.6,
does not ...)
TODO: check
CVE-2010-3116 (Multiple use-after-free vulnerabilities in WebKit, as used in
Apple ...)
TODO: check
@@ -92031,7 +92078,7 @@ CVE-2010-3117 (Google Chrome before 5.0.375.127 does
not properly implement the
TODO: check
CVE-2010-3118 (The autosuggest feature in the Omnibox implementation in Google
Chrome ...)
TODO: check
-CVE-2010-3119 (Google Chrome before 5.0.375.127 does not properly support the
Ruby ...)
+CVE-2010-3119 (Google Chrome before 5.0.375.127 and webkitgtk before 1.2.6 do
not ...)
TODO: check
CVE-2010-3120 (Google Chrome before 5.0.375.127 does not properly implement
the ...)
TODO: check
@@ -92085,7 +92132,7 @@ CVE-2010-3144 (Untrusted search path vulnerability in
the Internet Connection Si
NOT-FOR-US: microsoft windows
CVE-2010-3145 (Untrusted search path vulnerability in the BitLocker Drive
Encryption ...)
NOT-FOR-US: microsoft windows_vista
-CVE-2010-3146 (Untrusted search path vulnerability in Microsoft Office Groove
2007 ...)
+CVE-2010-3146 (Multiple untrusted search path vulnerabilities in Microsoft
Groove ...)
NOT-FOR-US: microsoft groove
CVE-2010-3147 (Untrusted search path vulnerability in wab.exe 6.00.2900.5512
in ...)
NOT-FOR-US: microsoft outlook_express
@@ -92303,7 +92350,7 @@ CVE-2010-3253 (The implementation of notification
permissions in Google Chrome b
TODO: check
CVE-2010-3254 (The WebSockets implementation in Google Chrome before
6.0.472.53 does ...)
TODO: check
-CVE-2010-3255 (Google Chrome before 6.0.472.53 does not properly handle
counter ...)
+CVE-2010-3255 (Google Chrome before 6.0.472.53 and webkitgtk before 1.2.6 do
not ...)
TODO: check
CVE-2010-3256 (Google Chrome before 6.0.472.53 does not properly limit the
number of ...)
TODO: check
@@ -92311,7 +92358,7 @@ CVE-2010-3257 (Use-after-free vulnerability in WebKit,
as used in Apple Safari b
TODO: check
CVE-2010-3258 (The sandbox implementation in Google Chrome before 6.0.472.53
does not ...)
TODO: check
-CVE-2010-3259 (WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before
5.0.3 ...)
+CVE-2010-3259 (WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before
5.0.3, ...)
TODO: check
CVE-2010-3260
RESERVED
@@ -92331,18 +92378,18 @@ CVE-2010-3267 (Multiple SQL injection vulnerabilities
in BugTracker.NET before 3
NOT-FOR-US: ifdefined bugtracker net
CVE-2010-3268 (The GetStringAMSHandler function in prgxhndl.dll in
hndlrsvc.exe in ...)
TODO: check
-CVE-2010-3269
- RESERVED
-CVE-2010-3270
- RESERVED
+CVE-2010-3269 (Multiple stack-based buffer overflows in the Cisco WebEx
Recording ...)
+ TODO: check
+CVE-2010-3270 (Stack-based buffer overflow in Cisco WebEx Meeting Center T27LB
before ...)
+ TODO: check
CVE-2010-3271
RESERVED
-CVE-2010-3272
- RESERVED
-CVE-2010-3273
- RESERVED
-CVE-2010-3274
- RESERVED
+CVE-2010-3272 (accounts/ValidateAnswers in the security-questions
implementation in ...)
+ TODO: check
+CVE-2010-3273 (ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500
allows ...)
+ TODO: check
+CVE-2010-3274 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
CVE-2010-3275
RESERVED
CVE-2010-3276
@@ -92426,8 +92473,8 @@ CVE-2010-3314 (Cross-site scripting (XSS) vulnerability
in login.php in EGroupwa
TODO: check
CVE-2010-3315 (authz.c in the mod_dav_svn module for the Apache HTTP Server,
as ...)
TODO: check
-CVE-2010-3316
- RESERVED
+CVE-2010-3316 (The run_coprocess function in pam_xauth.c in the pam_xauth
module in ...)
+ TODO: check
CVE-2010-3317 (Cross-site scripting (XSS) vulnerability in IBM Records Manager
(RM) ...)
NOT-FOR-US: ibm filenet_content_manager
CVE-2010-3318 (IBM Records Manager (RM) 4.5.x before 4.5.1.1-IER-FP001
transmits ...)
@@ -92657,18 +92704,18 @@ CVE-2010-3428 (SQL injection vulnerability in
modules/notes/json.php in Intermes
NOT-FOR-US: intermesh group office
CVE-2010-3429 (flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in
...)
TODO: check
-CVE-2010-3430
- RESERVED
-CVE-2010-3431
- RESERVED
+CVE-2010-3430 (The privilege-dropping implementation in the (1) pam_env and
(2) ...)
+ TODO: check
+CVE-2010-3431 (The privilege-dropping implementation in the (1) pam_env and
(2) ...)
+ TODO: check
CVE-2010-3432 (The sctp_packet_config function in net/sctp/output.c in the
Linux ...)
TODO: check
CVE-2010-3433 (The PL/perl and PL/Tcl implementations in PostgreSQL 7.4 before
...)
TODO: check
CVE-2010-3434 (Buffer overflow in the find_stream_bounds function in pdf.c in
...)
TODO: check
-CVE-2010-3435
- RESERVED
+CVE-2010-3435 (The (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam)
before ...)
+ TODO: check
CVE-2010-3436 (fopen_wrappers.c in PHP 5.3.x through 5.3.3 might allow remote
...)
TODO: check
CVE-2010-3437 (Integer signedness error in the pkt_find_dev_from_minor
function in ...)
@@ -92679,8 +92726,8 @@ CVE-2010-3439
RESERVED
CVE-2010-3440
RESERVED
-CVE-2010-3441
- RESERVED
+CVE-2010-3441 (Multiple buffer overflows in abcm2ps before 5.9.12 might allow
remote ...)
+ TODO: check
CVE-2010-3442 (Multiple integer overflows in the snd_ctl_new function in ...)
TODO: check
CVE-2010-3443
@@ -92697,16 +92744,16 @@ CVE-2010-3448 (drivers/platform/x86/thinkpad_acpi.c
in the Linux kernel before 2
TODO: check
CVE-2010-3449 (Cross-site request forgery (CSRF) vulnerability in Redback
before ...)
NOT-FOR-US: codehaus redback
-CVE-2010-3450
- RESERVED
-CVE-2010-3451
- RESERVED
-CVE-2010-3452
- RESERVED
-CVE-2010-3453
- RESERVED
-CVE-2010-3454
- RESERVED
+CVE-2010-3450 (Multiple directory traversal vulnerabilities in OpenOffice.org
(OOo) ...)
+ TODO: check
+CVE-2010-3451 (Use-after-free vulnerability in oowriter in OpenOffice.org
(OOo) 2.x ...)
+ TODO: check
+CVE-2010-3452 (Use-after-free vulnerability in oowriter in OpenOffice.org
(OOo) 2.x ...)
+ TODO: check
+CVE-2010-3453 (The WW8ListManager::WW8ListManager function in oowriter in ...)
+ TODO: check
+CVE-2010-3454 (Multiple off-by-one errors in the WW8DopTypography::ReadFromMem
...)
+ TODO: check
CVE-2010-3455 (Cross-site scripting (XSS) vulnerability in index.php in
AChecker 1.0 ...)
NOT-FOR-US: atutor achecker
CVE-2010-3456 (Directory traversal vulnerability in download.php in
EnergyScripts ...)
@@ -93015,8 +93062,8 @@ CVE-2010-3607 (Cross-site scripting (XSS) vulnerability
in AGENTS/index.php in N
NOT-FOR-US: netartmedia real_estate_portal
CVE-2010-3608 (Multiple SQL injection vulnerabilities in wpQuiz 2.7 allow
remote ...)
NOT-FOR-US: wire_plastic_design wpquiz
-CVE-2010-3609
- RESERVED
+CVE-2010-3609 (Unspecified vulnerability in the Service Location Protocol
daemon ...)
+ TODO: check
CVE-2010-3610
RESERVED
CVE-2010-3611 (ISC DHCP server 4.0 before 4.0.2, 4.1 before 4.1.2, and 4.2
before ...)
@@ -93175,8 +93222,8 @@ CVE-2010-3687 (Unspecified vulnerability in the
powermail extension 1.5.3 and ea
NOT-FOR-US: powermail extension
CVE-2010-3688 (Directory traversal vulnerability in ADMIN/login.php in
NetArtMEDIA ...)
NOT-FOR-US: websiteadmin
-CVE-2010-3689
- RESERVED
+CVE-2010-3689 (soffice in OpenOffice.org (OOo) 3.x before 3.3 places a
zero-length ...)
+ TODO: check
CVE-2010-3690 (Multiple cross-site scripting (XSS) vulnerabilities in phpCAS
before ...)
NOT-FOR-US: jasig phpcas
CVE-2010-3691 (PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode
is ...)
@@ -93233,10 +93280,10 @@ CVE-2010-3716 (The be_user_creation task in TYPO3
4.2.x before 4.2.15 and 4.3.x
NOT-FOR-US: typo3
CVE-2010-3717 (The t3lib_div::validEmail function in TYPO3 4.2.x before
4.2.15, 4.3.x ...)
NOT-FOR-US: typo3
-CVE-2010-3718
- RESERVED
-CVE-2010-3719
- RESERVED
+CVE-2010-3718 (Apache Tomcat 7.0.0 through 7.0.3, 6.0.x, and 5.5.x, when
running ...)
+ TODO: check
+CVE-2010-3719 (Eval injection vulnerability in IMAdminSchedTask.asp in the ...)
+ TODO: check
CVE-2010-3720
RESERVED
CVE-2010-3721
@@ -93259,7 +93306,7 @@ CVE-2010-3729 (The SPDY protocol implementation in
Google Chrome before 6.0.472.
TODO: check
CVE-2010-3730 (Google Chrome before 6.0.472.62 does not properly use
information ...)
TODO: check
-CVE-2010-3731 (Buffer overflow in the Administration Server component in IBM
DB2 UDB ...)
+CVE-2010-3731 (Stack-based buffer overflow in the validateUser implementation
in the ...)
NOT-FOR-US: ibm db2
CVE-2010-3732 (The DRDA Services component in IBM DB2 UDB 9.5 before FP6a
allows ...)
NOT-FOR-US: ibm db2
@@ -93421,9 +93468,9 @@ CVE-2010-3810 (WebKit in Apple Safari before 5.0.3 on
Mac OS X 10.5 through 10.6
TODO: check
CVE-2010-3811 (Use-after-free vulnerability in WebKit in Apple Safari before
5.0.3 on ...)
TODO: check
-CVE-2010-3812 (Integer overflow in the wholeText method in WebKit in Apple
Safari ...)
+CVE-2010-3812 (Integer overflow in the Text::wholeText method in dom/Text.cpp
in ...)
TODO: check
-CVE-2010-3813 (WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through
10.6 and ...)
+CVE-2010-3813 (The WebCore::HTMLLinkElement::process function in ...)
TODO: check
CVE-2010-3814 (Heap-based buffer overflow in the Ins_SHZ function in
ttinterp.c in ...)
TODO: check
@@ -93503,10 +93550,10 @@ CVE-2010-3851 (libguestfs before 1.5.23, as used in
virt-v2v, virt-inspector 1.5
NOT-FOR-US: libguestfs
CVE-2010-3852 (The default configuration of Luci 0.22.4 and earlier in Red Hat
Conga ...)
NOT-FOR-US: redhat luci
-CVE-2010-3853
- RESERVED
-CVE-2010-3854
- RESERVED
+CVE-2010-3853 (pam_namespace.c in the pam_namespace module in Linux-PAM (aka
pam) ...)
+ TODO: check
+CVE-2010-3854 (Multiple cross-site scripting (XSS) vulnerabilities in the web
...)
+ TODO: check
CVE-2010-3855 (Buffer overflow in the ft_var_readpackedpoints function in ...)
TODO: check
CVE-2010-3856 (ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3,
and ...)
@@ -93517,7 +93564,7 @@ CVE-2010-3858 (The setup_arg_pages function in
fs/exec.c in the Linux kernel bef
TODO: check
CVE-2010-3859 (Multiple integer signedness errors in the TIPC implementation
in the ...)
TODO: check
-CVE-2010-3860 (IcedTea before 1.9.2, as based on OpenJDK 6, declares multiple
...)
+CVE-2010-3860 (IcedTea 1.7.x before 1.7.6, 1.8.x before 1.8.3, and 1.9.x
before ...)
TODO: check
CVE-2010-3861 (The ethtool_get_rxnfc function in net/core/ethtool.c in the
Linux ...)
TODO: check
@@ -93555,8 +93602,8 @@ CVE-2010-3877 (The get_name function in
net/tipc/socket.c in the Linux kernel be
TODO: check
CVE-2010-3878 (Cross-site request forgery (CSRF) vulnerability in the JMX
Console in ...)
TODO: check
-CVE-2010-3879
- RESERVED
+CVE-2010-3879 (FUSE, possibly 2.8.5 and earlier, allows local users to create
mtab ...)
+ TODO: check
CVE-2010-3880 (net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does
not ...)
TODO: check
CVE-2010-3881 (arch/x86/kvm/x86.c in the Linux kernel before 2.6.36.2 does not
...)
@@ -93652,18 +93699,17 @@ CVE-2010-3925 (Contents-Mall before 15 does not
properly handle passwords, which
NOT-FOR-US: wb i contents mall
CVE-2010-3926 (Multiple cross-site scripting (XSS) vulnerabilities in Shop.cgi
in ...)
NOT-FOR-US: wb i sgx sp_final_ne
-CVE-2010-3927
- RESERVED
+CVE-2010-3927 (Untrusted search path vulnerability in Lunascape before 6.4.0
allows ...)
+ TODO: check
CVE-2010-3928 (Ruby Version Manager (RVM) before 1.2.1 writes file contents to
a ...)
NOT-FOR-US: Ruby
-CVE-2010-3929
- RESERVED
-CVE-2010-3930
- RESERVED
+CVE-2010-3929 (SQL injection vulnerability in MODx Evolution 1.0.4 and earlier
allows ...)
+ TODO: check
+CVE-2010-3930 (Directory traversal vulnerability in MODx Evolution 1.0.4 and
earlier ...)
+ TODO: check
CVE-2010-3931 (Cross-site scripting (XSS) vulnerability in multiple Rocomotion
...)
NOT-FOR-US: multiple Rocomotion products including P board
CVE-2010-3932
- RESERVED
REJECTED
CVE-2010-3933 (Ruby on Rails 2.3.9 and 3.0.0 does not properly handle nested
...)
TODO: check
@@ -93743,7 +93789,7 @@ CVE-2010-3970 (Stack-based buffer overflow in the
CreateSizedDIBSECTION function
NOT-FOR-US: microsoft windows_xp
CVE-2010-3971 (Use-after-free vulnerability in the CSharedStyleSheet::Notify
function ...)
NOT-FOR-US: microsoft ie
-CVE-2010-3972 (The TELNET_STREAM_CONTEXT::OnSendData function in the FTP
protocol ...)
+CVE-2010-3972 (Heap-based buffer overflow in the
TELNET_STREAM_CONTEXT::OnSendData ...)
NOT-FOR-US: microsoft iis
CVE-2010-3973 (The WBEMSingleView.ocx ActiveX control 1.50.1131.0 in Microsoft
WMI ...)
NOT-FOR-US: microsoft wmi_administrative_tools
@@ -93829,8 +93875,8 @@ CVE-2010-4013 (Format string vulnerability in
PackageKit in Apple Mac OS X 10.6.
NOT-FOR-US: apple mac_os_x_server
CVE-2010-4014
RESERVED
-CVE-2010-4015
- RESERVED
+CVE-2010-4015 (Buffer overflow in the gettoken function in ...)
+ TODO: check
CVE-2010-4016
RESERVED
CVE-2010-4017
@@ -93843,8 +93889,8 @@ CVE-2010-4020 (MIT Kerberos 5 (aka krb5) 1.8.x through
1.8.3 does not reject RC4
TODO: check
CVE-2010-4021 (The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5)
1.7 ...)
TODO: check
-CVE-2010-4022
- RESERVED
+CVE-2010-4022 (The do_standalone function in the MIT krb5 KDC database
propagation ...)
+ TODO: check
CVE-2010-4023 (Cross-site scripting (XSS) vulnerability in HP Insight Control
Power ...)
NOT-FOR-US: hp insight_control_power_management
CVE-2010-4024 (Cross-site request forgery (CSRF) vulnerability in HP Insight
Control ...)
@@ -93981,12 +94027,12 @@ CVE-2010-4089 (IML32.dll in Adobe Shockwave Player
before 11.5.9.615 allows atta
NOT-FOR-US: adobe shockwave_player
CVE-2010-4090 (Adobe Shockwave Player before 11.5.9.615 allows attackers to
execute ...)
NOT-FOR-US: adobe shockwave_player
-CVE-2010-4091 (The EScript.api plugin in Adobe Acrobat Reader 9.4.0, 8.1.7,
and ...)
+CVE-2010-4091 (The EScript.api plugin in Adobe Reader and Acrobat 10.x before
10.0.1, ...)
TODO: check
CVE-2010-4092 (Use-after-free vulnerability in an unspecified compatibility
component ...)
NOT-FOR-US: adobe shockwave_player
-CVE-2010-4093
- RESERVED
+CVE-2010-4093 (Adobe Shockwave Player before 11.5.9.620 allows attackers to
execute ...)
+ TODO: check
CVE-2010-4094 (The Tomcat server in IBM Rational Quality Manager and Rational
Test ...)
NOT-FOR-US: ibm rational_test_lab_manager
CVE-2010-4095 (Directory traversal vulnerability in the FTP client in
Serengeti ...)
@@ -94173,29 +94219,29 @@ CVE-2010-4185 (SQL injection vulnerability in
index.php in Energine, possibly 2.
NOT-FOR-US: energine
CVE-2010-4186 (SQL injection vulnerability in process.asp in OnlineTechTools
Online ...)
NOT-FOR-US: onlinetechtools com oasys_professional
-CVE-2010-4187
- RESERVED
-CVE-2010-4188
- RESERVED
-CVE-2010-4189
- RESERVED
-CVE-2010-4190
- RESERVED
-CVE-2010-4191
- RESERVED
-CVE-2010-4192
- RESERVED
-CVE-2010-4193
- RESERVED
-CVE-2010-4194
- RESERVED
-CVE-2010-4195
- RESERVED
-CVE-2010-4196
- RESERVED
-CVE-2010-4197 (Use-after-free vulnerability in Google Chrome before 7.0.517.44
allows ...)
+CVE-2010-4187 (Adobe Shockwave Player before 11.5.9.620 allows attackers to
execute ...)
+ TODO: check
+CVE-2010-4188 (The dirapi.dll module in Adobe Shockwave Player before
11.5.9.620 ...)
+ TODO: check
+CVE-2010-4189 (The IML32 module in Adobe Shockwave Player before 11.5.9.620
allows ...)
+ TODO: check
+CVE-2010-4190 (Adobe Shockwave Player before 11.5.9.620 allows attackers to
execute ...)
+ TODO: check
+CVE-2010-4191 (Adobe Shockwave Player before 11.5.9.620 allows attackers to
execute ...)
+ TODO: check
+CVE-2010-4192 (Adobe Shockwave Player before 11.5.9.620 allows attackers to
execute ...)
+ TODO: check
+CVE-2010-4193 (Adobe Shockwave Player before 11.5.9.620 does not properly
validate ...)
+ TODO: check
+CVE-2010-4194 (The dirapi.dll module in Adobe Shockwave Player before
11.5.9.620 does ...)
+ TODO: check
+CVE-2010-4195 (The TextXtra module in Adobe Shockwave Player before 11.5.9.620
does ...)
+ TODO: check
+CVE-2010-4196 (The Shockwave 3d Asset module in Adobe Shockwave Player before
...)
TODO: check
-CVE-2010-4198 (Google Chrome before 7.0.517.44 does not properly handle large
text ...)
+CVE-2010-4197 (Use-after-free vulnerability in WebKit, as used in Google
Chrome ...)
+ TODO: check
+CVE-2010-4198 (WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk
before ...)
TODO: check
CVE-2010-4199 (Google Chrome before 7.0.517.44 does not properly perform a
cast of an ...)
TODO: check
@@ -94208,11 +94254,11 @@ CVE-2010-4202 (Multiple integer overflows in Google
Chrome before 7.0.517.44 on
TODO: check
CVE-2010-4203 (WebM libvpx (aka the VP8 Codec SDK) before 0.9.5, as used in
Google ...)
TODO: check
-CVE-2010-4204 (Google Chrome before 7.0.517.44 accesses a frame object after
this ...)
+CVE-2010-4204 (WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk
before ...)
TODO: check
CVE-2010-4205 (Google Chrome before 7.0.517.44 does not properly handle the
data ...)
TODO: check
-CVE-2010-4206 (Google Chrome before 7.0.517.44 accesses memory at an
out-of-bounds ...)
+CVE-2010-4206 (Array index error in the FEBlend::apply function in ...)
TODO: check
CVE-2010-4207 (Cross-site scripting (XSS) vulnerability in the Flash component
...)
NOT-FOR-US: yahoo yui
@@ -94254,10 +94300,10 @@ CVE-2010-4225 (Unspecified vulnerability in the
mod_mono module for XSP in Mono
TODO: check
CVE-2010-4226
RESERVED
-CVE-2010-4227
- RESERVED
-CVE-2010-4228
- RESERVED
+CVE-2010-4227 (The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5
before ...)
+ TODO: check
+CVE-2010-4228 (Stack-based buffer overflow in NWFTPD.NLM before 5.10.02 in the
FTP ...)
+ TODO: check
CVE-2010-4229
RESERVED
CVE-2010-4230 (Stack-based buffer overflow in a certain ActiveX control for
the ...)
@@ -94276,8 +94322,8 @@ CVE-2010-4236 (Untrusted search path vulnerability in
estaskwrapper in IBM OmniF
NOT-FOR-US: ibm omnifind
CVE-2010-4237
RESERVED
-CVE-2010-4238
- RESERVED
+CVE-2010-4238 (The vbd_create function in Xen 3.1.2, when the Linux kernel
2.6.18 on ...)
+ TODO: check
CVE-2010-4239
RESERVED
CVE-2010-4240
@@ -94286,8 +94332,8 @@ CVE-2010-4241
RESERVED
CVE-2010-4242 (The hci_uart_tty_open function in the HCI UART driver ...)
TODO: check
-CVE-2010-4243
- RESERVED
+CVE-2010-4243 (fs/exec.c in the Linux kernel before 2.6.37 does not enable the
OOM ...)
+ TODO: check
CVE-2010-4244
RESERVED
CVE-2010-4245
@@ -94306,14 +94352,14 @@ CVE-2010-4251
RESERVED
CVE-2010-4252 (OpenSSL before 1.0.0c, when J-PAKE is enabled, does not
properly ...)
TODO: check
-CVE-2010-4253
- RESERVED
+CVE-2010-4253 (Heap-based buffer overflow in Impress in OpenOffice.org (OOo)
2.x and ...)
+ TODO: check
CVE-2010-4254 (Mono, when Moonlight before 2.3.0.1 or 2.99.x before 2.99.0.10
is ...)
TODO: check
-CVE-2010-4255
- RESERVED
-CVE-2010-4256
- RESERVED
+CVE-2010-4255 (The fixup_page_fault function in arch/x86/traps.c in Xen 4.0.1
and ...)
+ TODO: check
+CVE-2010-4256 (The pipe_fcntl function in fs/pipe.c in the Linux kernel before
2.6.37 ...)
+ TODO: check
CVE-2010-4257 (SQL injection vulnerability in the do_trackbacks function in
...)
TODO: check
CVE-2010-4258 (The do_exit function in kernel/exit.c in the Linux kernel
before ...)
@@ -94412,10 +94458,10 @@ CVE-2010-4304 (The web interface in Cisco Unified
Videoconferencing (UVC) System
NOT-FOR-US: cisco unified_videoconferencing_system_5230
CVE-2010-4305 (Cisco Unified Videoconferencing (UVC) System 3545, 5110, 5115,
and ...)
NOT-FOR-US: cisco unified_videoconferencing_system_5230
-CVE-2010-4306
- RESERVED
-CVE-2010-4307
- RESERVED
+CVE-2010-4306 (Adobe Shockwave Player before 11.5.9.620 allows attackers to
execute ...)
+ TODO: check
+CVE-2010-4307 (Buffer overflow in Adobe Shockwave Player before 11.5.9.620
allows ...)
+ TODO: check
CVE-2010-4308
RESERVED
CVE-2010-4309
@@ -94446,18 +94492,18 @@ CVE-2010-4321 (Stack-based buffer overflow in an
ActiveX control in ienipp.ocx i
NOT-FOR-US: novell iprint_client
CVE-2010-4322 (Cross-site scripting (XSS) vulnerability in gwtTeaming.rpc in
Novell ...)
NOT-FOR-US: novell vibe_onprem
-CVE-2010-4323
- RESERVED
+CVE-2010-4323 (Heap-based buffer overflow in novell-tftp.exe in Novell
ZENworks ...)
+ TODO: check
CVE-2010-4324 (Cross-site scripting (XSS) vulnerability in the Approval Form
in the ...)
NOT-FOR-US: novell identity_manager_roles_based_provisioning_module
-CVE-2010-4325
- RESERVED
-CVE-2010-4326
- RESERVED
-CVE-2010-4327
- RESERVED
-CVE-2010-4328
- RESERVED
+CVE-2010-4325 (Buffer overflow in gwwww1.dll in GroupWise Internet Agent
(GWIA) in ...)
+ TODO: check
+CVE-2010-4326 (Multiple buffer overflows in gwwww1.dll in GroupWise Internet
Agent ...)
+ TODO: check
+CVE-2010-4327 (Unspecified vulnerability in the NCP service in Novell
eDirectory ...)
+ TODO: check
+CVE-2010-4328 (Multiple stack-based buffer overflows in
opt/novell/iprint/bin/ipsmd ...)
+ TODO: check
CVE-2010-4329 (Cross-site scripting (XSS) vulnerability in the
PMA_linkOrButton ...)
TODO: check
CVE-2010-4330 (Directory traversal vulnerability in includes/controller.php in
Pulse ...)
@@ -94476,14 +94522,14 @@ CVE-2010-4336 (The cu_rrd_create_file function
(src/utils_rrdcreate.c) in collec
TODO: check
CVE-2010-4337 (The configure script in gnash 0.8.8 allows local users to
overwrite ...)
BUG: 351724
-CVE-2010-4338 (ocrodjvu 0.4.6-1 on Debian GNU/Linux, when using Cuneiform as
the OCR ...)
+CVE-2010-4338 (ocrodjvu 0.4.6-1 on Debian GNU/Linux allows local users to
modify ...)
NOT-FOR-US: ocrodjvu
CVE-2010-4339 (Cross-site scripting (XSS) vulnerability in Hypermail 2.2.0
allows ...)
NOT-FOR-US: hypermail project hypermail
CVE-2010-4340
TODO: check
-CVE-2010-4341
- RESERVED
+CVE-2010-4341 (The pam_parse_in_data_v2 function in
src/responder/pam/pamsrv_cmd.c in ...)
+ TODO: check
CVE-2010-4342 (The aun_incoming function in net/econet/af_econet.c in the
Linux ...)
TODO: check
CVE-2010-4343 (drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35
does not ...)
@@ -94506,8 +94552,8 @@ CVE-2010-4351 (The JNLP SecurityManager in IcedTea
(IcedTea.so) 1.7 before 1.7.7
BUG: 352035
CVE-2010-4352 (Stack consumption vulnerability in D-Bus (aka DBus) before
1.4.1 ...)
TODO: check
-CVE-2010-4353
- RESERVED
+CVE-2010-4353 (Unrestricted file upload vulnerability in ...)
+ TODO: check
CVE-2010-4354 (The remote-access IPSec VPN implementation on Cisco Adaptive
Security ...)
NOT-FOR-US: cisco vpn_3080_concentrator
CVE-2010-4355 (Cross-site scripting (XSS) vulnerability in DaDaBIK before 4.3
beta2, ...)
@@ -94586,8 +94632,8 @@ CVE-2010-4391 (Heap-based buffer overflow in
RealNetworks RealPlayer 11.0 throug
NOT-FOR-US: realnetworks realplayer_sp
CVE-2010-4392 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0
through ...)
NOT-FOR-US: realnetworks realplayer_sp
-CVE-2010-4393
- RESERVED
+CVE-2010-4393 (Heap-based buffer overflow in vidplin.dll in RealNetworks
RealPlayer ...)
+ TODO: check
CVE-2010-4394 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0
through ...)
NOT-FOR-US: realnetworks realplayer_sp
CVE-2010-4395 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0
through ...)
@@ -94644,8 +94690,8 @@ CVE-2010-4420 (Unspecified vulnerability in the
Database Vault component in Orac
NOT-FOR-US: oracle database_server
CVE-2010-4421 (Unspecified vulnerability in the Database Vault component in
Oracle ...)
NOT-FOR-US: oracle database_server
-CVE-2010-4422
- RESERVED
+CVE-2010-4422 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
CVE-2010-4423 (Unspecified vulnerability in the Cluster Verify Utility
component in ...)
NOT-FOR-US: oracle database_server
CVE-2010-4424 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
@@ -94694,22 +94740,22 @@ CVE-2010-4445 (Unspecified vulnerability in the
PeopleSoft Enterprise HRMS compo
NOT-FOR-US: oracle peoplesoft_and_jdedwards_product_suite
CVE-2010-4446 (Unspecified vulnerability in Oracle Solaris 11 Express allows
local ...)
NOT-FOR-US: sunos
-CVE-2010-4447
- RESERVED
-CVE-2010-4448
- RESERVED
+CVE-2010-4447 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4448 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
CVE-2010-4449 (Unspecified vulnerability in the Audit Vault component in
Oracle Audit ...)
NOT-FOR-US: oracle audit_vault
-CVE-2010-4450
- RESERVED
-CVE-2010-4451
- RESERVED
-CVE-2010-4452
- RESERVED
+CVE-2010-4450 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4451 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4452 (Unspecified vulnerability in the Deployment component in Java
Runtime ...)
+ TODO: check
CVE-2010-4453 (Unspecified vulnerability in the Oracle WebLogic Server
component in ...)
NOT-FOR-US: oracle weblogic_server
-CVE-2010-4454
- RESERVED
+CVE-2010-4454 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
CVE-2010-4455 (Unspecified vulnerability in the Oracle HTTP Server component
in ...)
NOT-FOR-US: oracle fusion_middleware
CVE-2010-4456 (Unspecified vulnerability in Oracle Sun Java System
Communications ...)
@@ -94724,36 +94770,36 @@ CVE-2010-4460 (Unspecified vulnerability in Oracle
Solaris 10 allows local users
NOT-FOR-US: sunos
CVE-2010-4461 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
NOT-FOR-US: oracle peoplesoft_and_jdedwards_product_suite
-CVE-2010-4462
- RESERVED
-CVE-2010-4463
- RESERVED
+CVE-2010-4462 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4463 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
CVE-2010-4464 (Unspecified vulnerability in Oracle Sun Convergence 1.0 allows
remote ...)
NOT-FOR-US: oracle sun_convergence
-CVE-2010-4465
- RESERVED
-CVE-2010-4466
- RESERVED
-CVE-2010-4467
- RESERVED
-CVE-2010-4468
- RESERVED
-CVE-2010-4469
- RESERVED
-CVE-2010-4470
- RESERVED
-CVE-2010-4471
- RESERVED
-CVE-2010-4472
- RESERVED
-CVE-2010-4473
- RESERVED
-CVE-2010-4474
- RESERVED
-CVE-2010-4475
- RESERVED
-CVE-2010-4476
- RESERVED
+CVE-2010-4465 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4466 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4467 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4468 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4469 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4470 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4471 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4472 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4473 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4474 (Unspecified vulnerability in the Java DB component in Oracle
Java SE ...)
+ TODO: check
+CVE-2010-4475 (Unspecified vulnerability in the Java Runtime Environment (JRE)
in ...)
+ TODO: check
+CVE-2010-4476 (The Double.parseDouble method in Java Runtime Environment (JRE)
in ...)
+ TODO: check
CVE-2010-4477
RESERVED
CVE-2010-4478 (OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not
properly ...)
@@ -94778,7 +94824,7 @@ CVE-2010-4487 (Incomplete blacklist vulnerability in
Google Chrome before 8.0.55
TODO: check
CVE-2010-4488 (Google Chrome before 8.0.552.215 does not properly handle HTTP
proxy ...)
TODO: check
-CVE-2010-4489 (Google Chrome before 8.0.552.215 does not properly handle WebM
video, ...)
+CVE-2010-4489 (libvpx, as used in Google Chrome before 8.0.552.215 and
possibly other ...)
TODO: check
CVE-2010-4490 (Google Chrome before 8.0.552.215 allows remote attackers to
cause a ...)
TODO: check
@@ -94813,8 +94859,8 @@ CVE-2010-4504 (Multiple cross-site scripting (XSS)
vulnerabilities in eSyndiCat
NOT-FOR-US: intelliants esyndicat
CVE-2010-4505 (Multiple SQL injection vulnerabilities in login.php in Injader
2.4.4, ...)
NOT-FOR-US: injader
-CVE-2010-4506
- RESERVED
+CVE-2010-4506 (Passlogix v-GO Self-Service Password Reset (SSPR) and OEM
before 7.0A ...)
+ TODO: check
CVE-2010-4507 (Multiple cross-site request forgery (CSRF) vulnerabilities on
the ...)
NOT-FOR-US: clear ispot
CVE-2010-4508 (The WebSockets implementation in Mozilla Firefox 4 through 4.0
Beta 7 ...)
@@ -94934,20 +94980,20 @@ CVE-2010-4564
RESERVED
CVE-2010-4565 (The bcm_connect function in net/can/bcm.c (aka the Broadcast
Manager) ...)
TODO: check
-CVE-2010-4566 (Unspecified vulnerability in the NT4 authentication component
in ...)
+CVE-2010-4566 (The web authentication form in the NT4 authentication component
in ...)
NOT-FOR-US: citrix access_gateway
-CVE-2010-4567
- RESERVED
-CVE-2010-4568
- RESERVED
-CVE-2010-4569
- RESERVED
-CVE-2010-4570
- RESERVED
+CVE-2010-4567 (Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before
3.6.4, and ...)
+ TODO: check
+CVE-2010-4568 (Bugzilla 2.14 through 2.22.7; 3.0.x, 3.1.x, and 3.2.x before
3.2.10; ...)
+ TODO: check
+CVE-2010-4569 (Cross-site scripting (XSS) vulnerability in Bugzilla 3.7.1,
3.7.2, ...)
+ TODO: check
+CVE-2010-4570 (Cross-site scripting (XSS) vulnerability in the
duplicate-detection ...)
+ TODO: check
CVE-2010-4571
RESERVED
-CVE-2010-4572
- RESERVED
+CVE-2010-4572 (CRLF injection vulnerability in chart.cgi in Bugzilla before
3.2.10, ...)
+ TODO: check
CVE-2010-4573 (The Update Installer in VMware ESXi 4.1, when a modified
sfcb.cfg is ...)
NOT-FOR-US: vmware esxi
CVE-2010-4574 (The Pickle::Pickle function in base/pickle.cc in Google Chrome
before ...)
@@ -94956,7 +95002,7 @@ CVE-2010-4575 (The
ThemeInstalledInfoBarDelegate::Observe function in ...)
TODO: check
CVE-2010-4576 (browser/worker_host/message_port_dispatcher.cc in Google Chrome
before ...)
TODO: check
-CVE-2010-4577 (Google Chrome before 8.0.552.224 and Chrome OS before
8.0.552.343 do ...)
+CVE-2010-4577 (The CSSParser::parseFontFaceSrc function in
WebCore/css/CSSParser.cpp ...)
TODO: check
CVE-2010-4578 (Google Chrome before 8.0.552.224 and Chrome OS before
8.0.552.343 do ...)
TODO: check
@@ -95088,8 +95134,8 @@ CVE-2010-4641 (SQL injection vulnerability in XWiki
Enterprise before 2.5 allows
NOT-FOR-US: xwiki
CVE-2010-4642 (Cross-site scripting (XSS) vulnerability in XWiki Enterprise
before ...)
NOT-FOR-US: xwiki
-CVE-2010-4643
- RESERVED
+CVE-2010-4643 (Heap-based buffer overflow in Impress in OpenOffice.org (OOo)
2.x and ...)
+ TODO: check
CVE-2010-4644 (Multiple memory leaks in rev_hunt.c in Apache Subversion before
1.6.15 ...)
TODO: check
CVE-2010-4645 (strtod.c, as used in the zend_strtod function in PHP 5.2 before
5.2.17 ...)
@@ -95100,14 +95146,14 @@ CVE-2010-4647 (Multiple cross-site scripting (XSS)
vulnerabilities in the Help .
TODO: check
CVE-2010-4648
RESERVED
-CVE-2010-4649
- RESERVED
+CVE-2010-4649 (Integer overflow in the ib_uverbs_poll_cq function in ...)
+ TODO: check
CVE-2010-4650
RESERVED
-CVE-2010-4651
- RESERVED
-CVE-2010-4652
- RESERVED
+CVE-2010-4651 (Directory traversal vulnerability in util.c in GNU patch 2.6.1
and ...)
+ TODO: check
+CVE-2010-4652 (Heap-based buffer overflow in the sql_prepare_where function
...)
+ TODO: check
CVE-2010-4653
RESERVED
CVE-2010-4654
@@ -95210,10 +95256,156 @@ CVE-2010-4702 (SQL injection vulnerability in JRadio
(com_jradio) component befo
NOT-FOR-US: JRadio com_jradio component
CVE-2010-4703 (SQL injection vulnerability in default.asp in HotWebScripts
HotWeb ...)
NOT-FOR-US: HotWebScripts
-CVE-2011-0001
- RESERVED
-CVE-2011-0002
- RESERVED
+CVE-2010-4704 (libavcodec/vorbis_dec.c in the Vorbis decoder in FFmpeg 0.6.1
and ...)
+ TODO: check
+CVE-2010-4705 (Integer overflow in the vorbis_residue_decode_internal function
in ...)
+ TODO: check
+CVE-2010-4706 (The pam_sm_close_session function in pam_xauth.c in the
pam_xauth ...)
+ TODO: check
+CVE-2010-4707 (The check_acl function in pam_xauth.c in the pam_xauth module
in ...)
+ TODO: check
+CVE-2010-4708 (The pam_env module in Linux-PAM (aka pam) 1.1.2 and earlier
reads the ...)
+ TODO: check
+CVE-2010-4709 (Heap-based buffer overflow in Automated Solutions Modbus/TCP
Master ...)
+ TODO: check
+CVE-2010-4710 (Cross-site scripting (XSS) vulnerability in the addItem method
in the ...)
+ TODO: check
+CVE-2010-4711 (Double free vulnerability in the IMAP server component in
GroupWise ...)
+ TODO: check
+CVE-2010-4712 (Multiple stack-based buffer overflows in gwia.exe in GroupWise
...)
+ TODO: check
+CVE-2010-4713 (Integer signedness error in gwia.exe in GroupWise Internet
Agent ...)
+ TODO: check
+CVE-2010-4714 (Multiple stack-based buffer overflows in Novell GroupWise
before ...)
+ TODO: check
+CVE-2010-4715 (Multiple directory traversal vulnerabilities in the (1)
WebAccess ...)
+ TODO: check
+CVE-2010-4716 (Cross-site scripting (XSS) vulnerability in the WebPublisher
component ...)
+ TODO: check
+CVE-2010-4717 (Multiple stack-based buffer overflows in the IMAP server
component in ...)
+ TODO: check
+CVE-2010-4718 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
+ TODO: check
+CVE-2010-4719 (Directory traversal vulnerability in JRadio (com_jradio)
component ...)
+ TODO: check
+CVE-2010-4720 (SQL injection vulnerability in the JExtensions JE Auto
(com_jeauto) ...)
+ TODO: check
+CVE-2010-4721 (SQL injection vulnerability in news.php in Immo Makler allows
remote ...)
+ TODO: check
+CVE-2010-4722 (Unspecified vulnerability in the fetch plugin in Smarty before
3.0.2 ...)
+ TODO: check
+CVE-2010-4723 (Smarty before 3.0.0, when security is enabled, does not prevent
access ...)
+ TODO: check
+CVE-2010-4724 (Multiple unspecified vulnerabilities in the parser
implementation in ...)
+ TODO: check
+CVE-2010-4725 (Smarty before 3.0.0 RC3 does not properly handle an on value of
the ...)
+ TODO: check
+CVE-2010-4726 (Unspecified vulnerability in the math plugin in Smarty before
3.0.0 ...)
+ TODO: check
+CVE-2010-4727 (Smarty before 3.0.0 beta 7 does not properly handle the
<?php and ?> ...)
+ TODO: check
+CVE-2010-4728 (Zikula before 1.3.1 uses the rand and srand PHP functions for
random ...)
+ TODO: check
+CVE-2010-4729 (Zikula before 1.2.3 does not use the authid protection
mechanism for ...)
+ TODO: check
+CVE-2010-4730 (Directory traversal vulnerability in cgi-bin/read.cgi in
WebSCADA ...)
+ TODO: check
+CVE-2010-4731 (Absolute path traversal vulnerability in cgi-bin/read.cgi in
WebSCADA ...)
+ TODO: check
+CVE-2010-4732 (cgi-bin/read.cgi in WebSCADA WS100 and WS200, Easy Connect
EC150, ...)
+ TODO: check
+CVE-2010-4733 (WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP
Gateway ...)
+ TODO: check
+CVE-2010-4734 (Multiple cross-site scripting (XSS) vulnerabilities in the
comment ...)
+ TODO: check
+CVE-2010-4735 (SQL injection vulnerability in shoppingcart.asp in Ecommercemax
...)
+ TODO: check
+CVE-2010-4736 (SQL injection vulnerability in ECO.asp in GateSoft DocuSafe
4.1.0 and ...)
+ TODO: check
+CVE-2010-4737 (SQL injection vulnerability in resorts.asp in HotWebScripts
HotWeb ...)
+ TODO: check
+CVE-2010-4738 (Multiple SQL injection vulnerabilities in Rae Media INC Real
Estate ...)
+ TODO: check
+CVE-2010-4739 (SQL injection vulnerability in the Maian Media Silver
(com_maianmedia) ...)
+ TODO: check
+CVE-2010-4740 (Stack-based buffer overflow in WTclient.dll in SCADA Engine
BACnet OPC ...)
+ TODO: check
+CVE-2010-4741 (Stack-based buffer overflow in MDMUtil.dll in MDMTool.exe in
MDM Tool ...)
+ TODO: check
+CVE-2010-4742 (Stack-based buffer overflow in a certain ActiveX control in ...)
+ TODO: check
+CVE-2010-4743 (Heap-based buffer overflow in the getarena function in abc2ps.c
in ...)
+ TODO: check
+CVE-2010-4744 (Multiple unspecified vulnerabilities in abcm2ps before 5.9.13
have ...)
+ TODO: check
+CVE-2010-4745 (Cross-site scripting (XSS) vulnerability in nav.html in PHPXref
before ...)
+ TODO: check
+CVE-2010-4746 (Multiple memory leaks in the normalization functionality in 389
...)
+ TODO: check
+CVE-2010-4747 (Cross-site scripting (XSS) vulnerability in ...)
+ TODO: check
+CVE-2010-4748 (Cross-site scripting (XSS) vulnerability in pmwiki.php in
PmWiki ...)
+ TODO: check
+CVE-2010-4749 (Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS
...)
+ TODO: check
+CVE-2010-4750 (Cross-site request forgery (CSRF) vulnerability in ...)
+ TODO: check
+CVE-2010-4751 (SQL injection vulnerability in LightNEasy.php in LightNEasy
3.2.1, ...)
+ TODO: check
+CVE-2010-4752 (SQL injection vulnerability in LightNEasy.php in LightNEasy
3.2.1, ...)
+ TODO: check
+CVE-2010-4753 (Cross-site scripting (XSS) vulnerability in LightNEasy.php in
...)
+ TODO: check
+CVE-2010-4754 (The glob implementation in libc in FreeBSD 7.3 and 8.1, NetBSD
5.0.2, ...)
+ TODO: check
+CVE-2010-4755 (The (1) remote_glob function in sftp-glob.c and the (2)
process_put ...)
+ TODO: check
+CVE-2010-4756 (The glob implementation in the GNU C Library (aka glibc or
libc6) ...)
+ TODO: check
+CVE-2010-4757 (Cross-site scripting (XSS) vulnerability in submitnews.php in
e107 ...)
+ TODO: check
+CVE-2010-4758 (installer.pl in Open Ticket Request System (OTRS) before 3.0.3
has an ...)
+ TODO: check
+CVE-2010-4759 (Open Ticket Request System (OTRS) before 3.0.0-beta7 does not
properly ...)
+ TODO: check
+CVE-2010-4760 (Open Ticket Request System (OTRS) before 3.0.0-beta6 adds ...)
+ TODO: check
+CVE-2010-4761 (The customer-interface ticket-print dialog in Open Ticket
Request ...)
+ TODO: check
+CVE-2010-4762 (Cross-site scripting (XSS) vulnerability in the
rich-text-editor ...)
+ TODO: check
+CVE-2010-4763 (The ACL-customer-status Ticket Type setting in Open Ticket
Request ...)
+ TODO: check
+CVE-2010-4764 (Open Ticket Request System (OTRS) before 2.4.10, and 3.x before
3.0.3, ...)
+ TODO: check
+CVE-2010-4765 (Race condition in the Kernel::System::Main::FileWrite method in
Open ...)
+ TODO: check
+CVE-2010-4766 (The AgentTicketForward feature in Open Ticket Request System
(OTRS) ...)
+ TODO: check
+CVE-2010-4767 (Open Ticket Request System (OTRS) before 2.3.6 does not
properly ...)
+ TODO: check
+CVE-2010-4768 (Open Ticket Request System (OTRS) before 2.3.5 does not
properly ...)
+ TODO: check
+CVE-2010-4769 (Directory traversal vulnerability in the Jimtawl (com_jimtawl)
...)
+ TODO: check
+CVE-2010-4770 (SQL injection vulnerability in index.php in CommodityRentals
DVD ...)
+ TODO: check
+CVE-2010-4771 (SQL injection vulnerability to viewforum.php in S-CMS 2.5
allows ...)
+ TODO: check
+CVE-2010-4772 (Cross-site scripting (XSS) vulnerability in blocks/lang.php in
S-CMS ...)
+ TODO: check
+CVE-2010-4773 (Unspecified vulnerability in Hitachi EUR Form Client before
05-10 -/D ...)
+ TODO: check
+CVE-2010-4774 (SQL injection vulnerability in pdf.php in AuraCMS 1.62 allows
remote ...)
+ TODO: check
+CVE-2010-4775 (The Relevant Content module 5.x before 5.x-1.4 and 6.x before
6.x-1.5 ...)
+ TODO: check
+CVE-2010-4776 (SQL injection vulnerability in takefreestart.php in PreProjects
Pre ...)
+ TODO: check
+CVE-2011-0001 (Double free vulnerability in the iscsi_rx_handler function ...)
+ TODO: check
+CVE-2011-0002 (libuser before 0.57 uses a cleartext password value of (1) !!
or (2) x ...)
+ TODO: check
CVE-2011-0003 (MediaWiki before 1.16.1, when user or site JavaScript or CSS is
...)
TODO: check
CVE-2011-0004 (Multiple cross-site scripting (XSS) vulnerabilities in Piwik
before ...)
@@ -95226,118 +95418,118 @@ CVE-2011-0007 (pimd 2.1.5 and possibly earlier
versions allows user-assisted loc
TODO: check
CVE-2011-0008 (A certain Fedora patch for parse.c in sudo before
1.7.4p5-1.fc14 on ...)
TODO: check
-CVE-2011-0009
- RESERVED
+CVE-2011-0009 (Best Practical Solutions RT 3.x before 3.8.9rc2 and 4.x before
...)
+ TODO: check
CVE-2011-0010 (check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is ...)
TODO: check
CVE-2011-0011
RESERVED
CVE-2011-0012
RESERVED
-CVE-2011-0013
- RESERVED
-CVE-2011-0014
- RESERVED
+CVE-2011-0013 (Multiple cross-site scripting (XSS) vulnerabilities in the HTML
...)
+ TODO: check
+CVE-2011-0014 (ssl/t1_lib.c in OpenSSL 0.9.8h through 0.9.8q and 1.0.0 through
1.0.0c ...)
+ TODO: check
CVE-2011-0015 (Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not
...)
TODO: check
CVE-2011-0016 (Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not
...)
TODO: check
-CVE-2011-0017
- RESERVED
-CVE-2011-0018
- RESERVED
-CVE-2011-0019
- RESERVED
-CVE-2011-0020
- RESERVED
-CVE-2011-0021
- RESERVED
-CVE-2011-0022
- RESERVED
+CVE-2011-0017 (The open_log function in log.c in Exim 4.72 and earlier does
not check ...)
+ TODO: check
+CVE-2011-0018 (The email function in manage_sql.c in OpenVAS Manager 1.0.x
through ...)
+ TODO: check
+CVE-2011-0019 (slapd (aka ns-slapd) in 389 Directory Server 1.2.7.5 (aka Red
Hat ...)
+ TODO: check
+CVE-2011-0020 (Heap-based buffer overflow in the
pango_ft2_font_render_box_glyph ...)
+ TODO: check
+CVE-2011-0021 (Multiple heap-based buffer overflows in cdg.c in the CDG
decoder in ...)
+ TODO: check
+CVE-2011-0022 (The setup scripts in 389 Directory Server 1.2.x (aka Red Hat
Directory ...)
+ TODO: check
CVE-2011-0023
RESERVED
CVE-2011-0024
RESERVED
-CVE-2011-0025
- RESERVED
+CVE-2011-0025 (IcedTea 1.7 before 1.7.8, 1.8 before 1.8.5, and 1.9 before
1.9.5 does ...)
+ TODO: check
CVE-2011-0026 (Integer signedness error in the SQLConnectW function in an ODBC
API ...)
TODO: check
CVE-2011-0027 (Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2, and
Windows ...)
TODO: check
CVE-2011-0028
RESERVED
-CVE-2011-0029
- RESERVED
-CVE-2011-0030
- RESERVED
-CVE-2011-0031
- RESERVED
-CVE-2011-0032
- RESERVED
-CVE-2011-0033
- RESERVED
+CVE-2011-0029 (Untrusted search path vulnerability in the client in Microsoft
Remote ...)
+ TODO: check
+CVE-2011-0030 (The Client/Server Run-time Subsystem (CSRSS) in Microsoft
Windows XP ...)
+ TODO: check
+CVE-2011-0031 (The (1) JScript 5.8 and (2) VBScript 5.8 scripting engines in
...)
+ TODO: check
+CVE-2011-0032 (Untrusted search path vulnerability in DirectShow in Microsoft
Windows ...)
+ TODO: check
+CVE-2011-0033 (The OpenType Compact Font Format (CFF) driver in Microsoft
Windows XP ...)
+ TODO: check
CVE-2011-0034
RESERVED
-CVE-2011-0035
- RESERVED
-CVE-2011-0036
- RESERVED
-CVE-2011-0037
- RESERVED
-CVE-2011-0038
- RESERVED
-CVE-2011-0039
- RESERVED
-CVE-2011-0040
- RESERVED
+CVE-2011-0035 (Microsoft Internet Explorer 6, 7, and 8 does not properly
handle ...)
+ TODO: check
+CVE-2011-0036 (Microsoft Internet Explorer 6, 7, and 8 does not properly
handle ...)
+ TODO: check
+CVE-2011-0037 (Microsoft Malware Protection Engine before 1.1.6603.0, as used
in ...)
+ TODO: check
+CVE-2011-0038 (Untrusted search path vulnerability in Microsoft Internet
Explorer 8 ...)
+ TODO: check
+CVE-2011-0039 (The Local Security Authority Subsystem Service (LSASS) in
Microsoft ...)
+ TODO: check
+CVE-2011-0040 (The server in Microsoft Active Directory on Windows Server 2003
SP2 ...)
+ TODO: check
CVE-2011-0041
RESERVED
-CVE-2011-0042
- RESERVED
-CVE-2011-0043
- RESERVED
+CVE-2011-0042 (SBE.dll in the Stream Buffer Engine in Windows Media Player and
...)
+ TODO: check
+CVE-2011-0043 (Kerberos in Microsoft Windows XP SP2 and SP3 and Server 2003
SP2 ...)
+ TODO: check
CVE-2011-0044
RESERVED
-CVE-2011-0045
- RESERVED
-CVE-2011-0046
- RESERVED
-CVE-2011-0047
- RESERVED
-CVE-2011-0048
- RESERVED
-CVE-2011-0049
- RESERVED
-CVE-2011-0050
- RESERVED
-CVE-2011-0051
- RESERVED
+CVE-2011-0045 (The Trace Events functionality in the kernel in Microsoft
Windows XP ...)
+ TODO: check
+CVE-2011-0046 (Multiple cross-site request forgery (CSRF) vulnerabilities in
Bugzilla ...)
+ TODO: check
+CVE-2011-0047 (Cross-site scripting (XSS) vulnerability in MediaWiki before
1.16.2 ...)
+ TODO: check
+CVE-2011-0048 (Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before
3.6.4, and ...)
+ TODO: check
+CVE-2011-0049 (Directory traversal vulnerability in the _list_file_get
function in ...)
+ TODO: check
+CVE-2011-0050 (Cross-site scripting (XSS) vulnerability in the nonjs interface
...)
+ TODO: check
+CVE-2011-0051 (Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and
SeaMonkey ...)
+ TODO: check
CVE-2011-0052
RESERVED
-CVE-2011-0053
- RESERVED
-CVE-2011-0054
- RESERVED
-CVE-2011-0055
- RESERVED
-CVE-2011-0056
- RESERVED
-CVE-2011-0057
- RESERVED
-CVE-2011-0058
- RESERVED
-CVE-2011-0059
- RESERVED
+CVE-2011-0053 (Multiple unspecified vulnerabilities in the browser engine in
Mozilla ...)
+ TODO: check
+CVE-2011-0054 (Buffer overflow in the JavaScript engine in Mozilla Firefox
before ...)
+ TODO: check
+CVE-2011-0055 (Use-after-free vulnerability in the JSON.stringify method in
...)
+ TODO: check
+CVE-2011-0056 (Buffer overflow in the JavaScript engine in Mozilla Firefox
before ...)
+ TODO: check
+CVE-2011-0057 (Use-after-free vulnerability in the Web Workers implementation
in ...)
+ TODO: check
+CVE-2011-0058 (Buffer overflow in Mozilla Firefox before 3.5.17 and 3.6.x
before ...)
+ TODO: check
+CVE-2011-0059 (Cross-site request forgery (CSRF) vulnerability in Mozilla
Firefox ...)
+ TODO: check
CVE-2011-0060
RESERVED
-CVE-2011-0061
- RESERVED
-CVE-2011-0062
- RESERVED
-CVE-2011-0063
- RESERVED
-CVE-2011-0064
- RESERVED
+CVE-2011-0061 (Buffer overflow in Mozilla Firefox 3.6.x before 3.6.14,
Thunderbird ...)
+ TODO: check
+CVE-2011-0062 (Multiple unspecified vulnerabilities in the browser engine in
Mozilla ...)
+ TODO: check
+CVE-2011-0063 (The _list_file_get function in lib/Majordomo.pm in Majordomo 2
...)
+ TODO: check
+CVE-2011-0064 (The hb_buffer_ensure function in hb-buffer.c in HarfBuzz, as
used in ...)
+ TODO: check
CVE-2011-0065
RESERVED
CVE-2011-0066
@@ -95380,28 +95572,28 @@ CVE-2011-0084
RESERVED
CVE-2011-0085
RESERVED
-CVE-2011-0086
- RESERVED
-CVE-2011-0087
- RESERVED
-CVE-2011-0088
- RESERVED
-CVE-2011-0089
- RESERVED
-CVE-2011-0090
- RESERVED
-CVE-2011-0091
- RESERVED
-CVE-2011-0092
- RESERVED
-CVE-2011-0093
- RESERVED
+CVE-2011-0086 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP
SP2 and ...)
+ TODO: check
+CVE-2011-0087 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP
SP2 and ...)
+ TODO: check
+CVE-2011-0088 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP
SP2 and ...)
+ TODO: check
+CVE-2011-0089 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP
SP2 and ...)
+ TODO: check
+CVE-2011-0090 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP
SP2 and ...)
+ TODO: check
+CVE-2011-0091 (Kerberos in Microsoft Windows Server 2008 R2 and Windows 7 does
not ...)
+ TODO: check
+CVE-2011-0092 (The LZW stream decompression functionality in ORMELEMS.DLL in
...)
+ TODO: check
+CVE-2011-0093 (ELEMENTS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007
SP2 does ...)
+ TODO: check
CVE-2011-0094
RESERVED
CVE-2011-0095
RESERVED
-CVE-2011-0096
- RESERVED
+CVE-2011-0096 (The MHTML implementation in Microsoft Windows XP SP2 and SP3,
Windows ...)
+ TODO: check
CVE-2011-0097
RESERVED
CVE-2011-0098
@@ -95430,174 +95622,174 @@ CVE-2011-0109
RESERVED
CVE-2011-0110
RESERVED
-CVE-2011-0111
- RESERVED
-CVE-2011-0112
- RESERVED
-CVE-2011-0113
- RESERVED
-CVE-2011-0114
- RESERVED
-CVE-2011-0115
- RESERVED
-CVE-2011-0116
- RESERVED
-CVE-2011-0117
- RESERVED
-CVE-2011-0118
- RESERVED
-CVE-2011-0119
- RESERVED
-CVE-2011-0120
- RESERVED
-CVE-2011-0121
- RESERVED
-CVE-2011-0122
- RESERVED
-CVE-2011-0123
- RESERVED
-CVE-2011-0124
- RESERVED
-CVE-2011-0125
- RESERVED
-CVE-2011-0126
- RESERVED
-CVE-2011-0127
- RESERVED
-CVE-2011-0128
- RESERVED
-CVE-2011-0129
- RESERVED
-CVE-2011-0130
- RESERVED
-CVE-2011-0131
- RESERVED
-CVE-2011-0132
- RESERVED
-CVE-2011-0133
- RESERVED
-CVE-2011-0134
- RESERVED
-CVE-2011-0135
- RESERVED
-CVE-2011-0136
- RESERVED
-CVE-2011-0137
- RESERVED
-CVE-2011-0138
- RESERVED
-CVE-2011-0139
- RESERVED
-CVE-2011-0140
- RESERVED
-CVE-2011-0141
- RESERVED
-CVE-2011-0142
- RESERVED
-CVE-2011-0143
- RESERVED
-CVE-2011-0144
- RESERVED
-CVE-2011-0145
- RESERVED
-CVE-2011-0146
- RESERVED
-CVE-2011-0147
- RESERVED
-CVE-2011-0148
- RESERVED
-CVE-2011-0149
- RESERVED
-CVE-2011-0150
- RESERVED
-CVE-2011-0151
- RESERVED
-CVE-2011-0152
- RESERVED
-CVE-2011-0153
- RESERVED
-CVE-2011-0154
- RESERVED
-CVE-2011-0155
- RESERVED
-CVE-2011-0156
- RESERVED
-CVE-2011-0157
- RESERVED
-CVE-2011-0158
- RESERVED
-CVE-2011-0159
- RESERVED
-CVE-2011-0160
- RESERVED
-CVE-2011-0161
- RESERVED
-CVE-2011-0162
- RESERVED
-CVE-2011-0163
- RESERVED
-CVE-2011-0164
- RESERVED
-CVE-2011-0165
- RESERVED
-CVE-2011-0166
- RESERVED
-CVE-2011-0167
- RESERVED
-CVE-2011-0168
- RESERVED
-CVE-2011-0169
- RESERVED
-CVE-2011-0170
- RESERVED
+CVE-2011-0111 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0112 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0113 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0114 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0115 (The DOM level 2 implementation in WebKit, as used in Apple
iTunes ...)
+ TODO: check
+CVE-2011-0116 (Use-after-free vulnerability in the setOuterText method in the
...)
+ TODO: check
+CVE-2011-0117 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0118 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0119 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0120 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0121 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0122 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0123 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0124 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0125 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0126 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0127 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0128 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0129 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0130 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0131 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0132 (Use-after-free vulnerability in the Runin box functionality in
the ...)
+ TODO: check
+CVE-2011-0133 (WebKit, as used in Apple iTunes before 10.2 on Windows, does
not ...)
+ TODO: check
+CVE-2011-0134 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0135 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0136 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0137 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0138 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0139 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0140 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0141 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0142 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0143 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0144 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0145 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0146 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0147 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0148 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0149 (WebKit, as used in Apple iTunes before 10.2 on Windows, does
not ...)
+ TODO: check
+CVE-2011-0150 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0151 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0152 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0153 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0154 (WebKit, as used in Apple iTunes before 10.2 on Windows and
Apple iOS, ...)
+ TODO: check
+CVE-2011-0155 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0156 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0157 (WebKit, as used in Apple iOS before 4.3, allows remote
attackers to ...)
+ TODO: check
+CVE-2011-0158 (MobileSafari in Apple iOS before 4.3 does not properly
implement ...)
+ TODO: check
+CVE-2011-0159 (The Safari Settings feature in Safari in Apple iOS 4.x before
4.3 does ...)
+ TODO: check
+CVE-2011-0160 (WebKit, as used in Apple Safari before 5.0.4 and iOS before
4.3, does ...)
+ TODO: check
+CVE-2011-0161 (WebKit, as used in Apple Safari before 5.0.4 and iOS before
4.3, does ...)
+ TODO: check
+CVE-2011-0162 (Wi-Fi in Apple iOS before 4.3 and Apple TV before 4.2 does not
...)
+ TODO: check
+CVE-2011-0163 (WebKit, as used in Apple Safari before 5.0.4 and iOS before
4.3, does ...)
+ TODO: check
+CVE-2011-0164 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0165 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0166 (The HTML5 drag and drop functionality in WebKit in Apple Safari
before ...)
+ TODO: check
+CVE-2011-0167 (The windows functionality in WebKit in Apple Safari before
5.0.4 ...)
+ TODO: check
+CVE-2011-0168 (WebKit, as used in Apple iTunes before 10.2 on Windows, allows
...)
+ TODO: check
+CVE-2011-0169 (WebKit in Apple Safari before 5.0.4, when the Web Inspector is
used, ...)
+ TODO: check
+CVE-2011-0170 (Heap-based buffer overflow in ImageIO in CoreGraphics in Apple
iTunes ...)
+ TODO: check
CVE-2011-0171
RESERVED
-CVE-2011-0172
- RESERVED
-CVE-2011-0173
- RESERVED
-CVE-2011-0174
- RESERVED
-CVE-2011-0175
- RESERVED
-CVE-2011-0176
- RESERVED
-CVE-2011-0177
- RESERVED
-CVE-2011-0178
- RESERVED
-CVE-2011-0179
- RESERVED
-CVE-2011-0180
- RESERVED
-CVE-2011-0181
- RESERVED
-CVE-2011-0182
- RESERVED
-CVE-2011-0183
- RESERVED
-CVE-2011-0184
- RESERVED
+CVE-2011-0172 (AirPort in Apple Mac OS X 10.6 before 10.6.7 allows remote
attackers ...)
+ TODO: check
+CVE-2011-0173 (Multiple format string vulnerabilities in AppleScript in Apple
Mac OS ...)
+ TODO: check
+CVE-2011-0174 (Heap-based buffer overflow in Apple Type Services (ATS) in
Apple Mac ...)
+ TODO: check
+CVE-2011-0175 (Multiple buffer overflows in Apple Type Services (ATS) in Apple
Mac OS ...)
+ TODO: check
+CVE-2011-0176 (Multiple buffer overflows in Apple Type Services (ATS) in Apple
Mac OS ...)
+ TODO: check
+CVE-2011-0177 (Multiple buffer overflows in Apple Type Services (ATS) in Apple
Mac OS ...)
+ TODO: check
+CVE-2011-0178 (The FSFindFolder API in CarbonCore in Apple Mac OS X before
10.6.7 ...)
+ TODO: check
+CVE-2011-0179 (CoreText in Apple Mac OS X before 10.6.7 allows remote
attackers to ...)
+ TODO: check
+CVE-2011-0180 (Integer overflow in HFS in Apple Mac OS X before 10.6.7 allows
local ...)
+ TODO: check
+CVE-2011-0181 (Integer overflow in ImageIO in Apple Mac OS X before 10.6.7
allows ...)
+ TODO: check
+CVE-2011-0182 (The i386_set_ldt system call in the kernel in Apple Mac OS X
before ...)
+ TODO: check
+CVE-2011-0183 (Libinfo in Apple Mac OS X before 10.6.7 does not properly
handle an ...)
+ TODO: check
+CVE-2011-0184 (QuickLook in Apple Mac OS X 10.6 before 10.6.7 allows remote
attackers ...)
+ TODO: check
CVE-2011-0185
RESERVED
-CVE-2011-0186
- RESERVED
-CVE-2011-0187
- RESERVED
-CVE-2011-0188
- RESERVED
-CVE-2011-0189
- RESERVED
-CVE-2011-0190
- RESERVED
-CVE-2011-0191
- RESERVED
-CVE-2011-0192
- RESERVED
-CVE-2011-0193
- RESERVED
-CVE-2011-0194
- RESERVED
+CVE-2011-0186 (QuickTime in Apple Mac OS X before 10.6.7 allows remote
attackers to ...)
+ TODO: check
+CVE-2011-0187 (The plug-in in QuickTime in Apple Mac OS X before 10.6.7 allows
remote ...)
+ TODO: check
+CVE-2011-0188 (The VpMemAlloc function in bigdecimal.c in the BigDecimal class
in ...)
+ TODO: check
+CVE-2011-0189 (The default configuration of Terminal in Apple Mac OS X 10.6
before ...)
+ TODO: check
+CVE-2011-0190 (Install Helper in Installer in Apple Mac OS X before 10.6.7
does not ...)
+ TODO: check
+CVE-2011-0191 (Buffer overflow in LibTIFF in ImageIO in Apple iTunes before
10.2 on ...)
+ TODO: check
+CVE-2011-0192 (Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly
other ...)
+ TODO: check
+CVE-2011-0193 (Multiple buffer overflows in Image RAW in Apple Mac OS X before
10.6.7 ...)
+ TODO: check
+CVE-2011-0194 (Integer overflow in ImageIO in Apple Mac OS X 10.6 before
10.6.7 ...)
+ TODO: check
CVE-2011-0195
RESERVED
CVE-2011-0196
@@ -95754,30 +95946,30 @@ CVE-2011-0271 (The CGI scripts in HP OpenView Network
Node Manager (OV NNM) 7.51
TODO: check
CVE-2011-0272 (Unspecified vulnerability in HP LoadRunner 9.52 allows remote
...)
TODO: check
-CVE-2011-0273
- RESERVED
-CVE-2011-0274
- RESERVED
-CVE-2011-0275
- RESERVED
-CVE-2011-0276
- RESERVED
-CVE-2011-0277
- RESERVED
-CVE-2011-0278
- RESERVED
-CVE-2011-0279
- RESERVED
-CVE-2011-0280
- RESERVED
-CVE-2011-0281
- RESERVED
-CVE-2011-0282
- RESERVED
-CVE-2011-0283
- RESERVED
-CVE-2011-0284
- RESERVED
+CVE-2011-0273 (Buffer overflow in crs.exe in HP OpenView Storage Data
Protector Cell ...)
+ TODO: check
+CVE-2011-0274 (Cross-site scripting (XSS) vulnerability in HP Business
Availability ...)
+ TODO: check
+CVE-2011-0275 (Unspecified vulnerability in HP OpenView Storage Data Protector
6.0, ...)
+ TODO: check
+CVE-2011-0276 (HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and
5.41 ...)
+ TODO: check
+CVE-2011-0277 (Cross-site request forgery (CSRF) vulnerability in HP Power
Manager ...)
+ TODO: check
+CVE-2011-0278 (Unspecified vulnerability in HP Web Jetadmin 10.2 Service
Release 3 ...)
+ TODO: check
+CVE-2011-0279 (HP Multifunction Peripheral (MFP) Digital Sending Software
(DSS) ...)
+ TODO: check
+CVE-2011-0280 (Multiple cross-site scripting (XSS) vulnerabilities in HP Power
...)
+ TODO: check
+CVE-2011-0281 (The unparse implementation in the Key Distribution Center (KDC)
in MIT ...)
+ TODO: check
+CVE-2011-0282 (The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5)
1.6.x ...)
+ TODO: check
+CVE-2011-0283 (The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5)
1.9 ...)
+ TODO: check
+CVE-2011-0284 (Double free vulnerability in the prepare_error_as function in
...)
+ TODO: check
CVE-2011-0285
RESERVED
CVE-2011-0286
@@ -95850,14 +96042,14 @@ CVE-2011-0319
RESERVED
CVE-2011-0320
RESERVED
-CVE-2011-0321
- RESERVED
-CVE-2011-0322
- RESERVED
-CVE-2011-0323
- RESERVED
-CVE-2011-0324
- RESERVED
+CVE-2011-0321 (librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x
before ...)
+ TODO: check
+CVE-2011-0322 (Unspecified vulnerability in EMC RSA Access Manager Server
5.5.x, ...)
+ TODO: check
+CVE-2011-0323 (Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly
other ...)
+ TODO: check
+CVE-2011-0324 (Multiple heap-based buffer overflows in Topaz Systems SigPlus
Pro ...)
+ TODO: check
CVE-2011-0325
RESERVED
CVE-2011-0326
@@ -95866,14 +96058,14 @@ CVE-2011-0327
RESERVED
CVE-2011-0328
RESERVED
-CVE-2011-0329
- RESERVED
-CVE-2011-0330
- RESERVED
-CVE-2011-0331
- RESERVED
-CVE-2011-0332
- RESERVED
+CVE-2011-0329 (Directory traversal vulnerability in the GetData method in the
Dell ...)
+ TODO: check
+CVE-2011-0330 (The Dell DellSystemLite.Scanner ActiveX control in
DellSystemLite.ocx ...)
+ TODO: check
+CVE-2011-0331 (Use-after-free vulnerability in the addOSPLext method in the
Honeywell ...)
+ TODO: check
+CVE-2011-0332 (Integer overflow in Foxit Reader before 4.3.1.0218 and Foxit
Phantom ...)
+ TODO: check
CVE-2011-0333
RESERVED
CVE-2011-0334
@@ -95894,32 +96086,32 @@ CVE-2011-0341
RESERVED
CVE-2011-0342
RESERVED
-CVE-2011-0343
- RESERVED
-CVE-2011-0344
- RESERVED
-CVE-2011-0345
- RESERVED
+CVE-2011-0343 (Balabit syslog-ng 2.0, 3.0, 3.1, 3.2 OSE and PE, when running
on ...)
+ TODO: check
+CVE-2011-0344 (Multiple stack-based buffer overflows in unspecified CGI
programs in ...)
+ TODO: check
+CVE-2011-0345 (Directory traversal vulnerability in the NMS server in
Alcatel-Lucent ...)
+ TODO: check
CVE-2011-0346 (Use-after-free vulnerability in the ReleaseInterface function
in ...)
TODO: check
CVE-2011-0347 (Microsoft Internet Explorer on Windows XP allows remote
attackers to ...)
TODO: check
-CVE-2011-0348
- RESERVED
-CVE-2011-0349
- RESERVED
-CVE-2011-0350
- RESERVED
+CVE-2011-0348 (Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD before
...)
+ TODO: check
+CVE-2011-0349 (Unspecified vulnerability in Cisco IOS 12.4(24)MD before
12.4(24)MD2 ...)
+ TODO: check
+CVE-2011-0350 (Unspecified vulnerability in Cisco IOS 12.4(24)MD before
12.4(24)MD2 ...)
+ TODO: check
CVE-2011-0351
RESERVED
-CVE-2011-0352
- RESERVED
+CVE-2011-0352 (Buffer overflow in the web-based management interface on the
Cisco ...)
+ TODO: check
CVE-2011-0353
RESERVED
-CVE-2011-0354
- RESERVED
-CVE-2011-0355
- RESERVED
+CVE-2011-0354 (The default configuration of Cisco Tandberg C Series Endpoints,
and ...)
+ TODO: check
+CVE-2011-0355 (Cisco Nexus 1000V Virtual Ethernet Module (VEM) 4.0(4) SV1(1)
through ...)
+ TODO: check
CVE-2011-0356
RESERVED
CVE-2011-0357
@@ -95936,8 +96128,8 @@ CVE-2011-0362
RESERVED
CVE-2011-0363
RESERVED
-CVE-2011-0364
- RESERVED
+CVE-2011-0364 (The Management Console (webagent.exe) in Cisco Security Agent
5.1, ...)
+ TODO: check
CVE-2011-0365
RESERVED
CVE-2011-0366
@@ -95952,56 +96144,56 @@ CVE-2011-0370
RESERVED
CVE-2011-0371
RESERVED
-CVE-2011-0372
- RESERVED
-CVE-2011-0373
- RESERVED
-CVE-2011-0374
- RESERVED
-CVE-2011-0375
- RESERVED
-CVE-2011-0376
- RESERVED
-CVE-2011-0377
- RESERVED
-CVE-2011-0378
- RESERVED
-CVE-2011-0379
- RESERVED
-CVE-2011-0380
- RESERVED
-CVE-2011-0381
- RESERVED
-CVE-2011-0382
- RESERVED
-CVE-2011-0383
- RESERVED
-CVE-2011-0384
- RESERVED
-CVE-2011-0385
- RESERVED
-CVE-2011-0386
- RESERVED
-CVE-2011-0387
- RESERVED
-CVE-2011-0388
- RESERVED
-CVE-2011-0389
- RESERVED
-CVE-2011-0390
- RESERVED
-CVE-2011-0391
- RESERVED
-CVE-2011-0392
- RESERVED
-CVE-2011-0393
- RESERVED
-CVE-2011-0394
- RESERVED
-CVE-2011-0395
- RESERVED
-CVE-2011-0396
- RESERVED
+CVE-2011-0372 (The CGI implementation on Cisco TelePresence endpoint devices
with ...)
+ TODO: check
+CVE-2011-0373 (The CGI implementation on Cisco TelePresence endpoint devices
with ...)
+ TODO: check
+CVE-2011-0374 (The CGI implementation on Cisco TelePresence endpoint devices
with ...)
+ TODO: check
+CVE-2011-0375 (The CGI implementation on Cisco TelePresence endpoint devices
with ...)
+ TODO: check
+CVE-2011-0376 (The TFTP implementation on Cisco TelePresence endpoint devices
with ...)
+ TODO: check
+CVE-2011-0377 (Cisco TelePresence endpoint devices with software 1.2.x through
1.6.x ...)
+ TODO: check
+CVE-2011-0378 (The XML-RPC implementation on Cisco TelePresence endpoint
devices with ...)
+ TODO: check
+CVE-2011-0379 (Buffer overflow on Cisco Adaptive Security Appliances (ASA)
5500 ...)
+ TODO: check
+CVE-2011-0380 (Cisco TelePresence Manager 1.2.x through 1.6.x allows remote
attackers ...)
+ TODO: check
+CVE-2011-0381 (Cisco TelePresence Manager 1.2.x through 1.6.x allows remote
attackers ...)
+ TODO: check
+CVE-2011-0382 (The CGI subsystem on Cisco TelePresence Recording Server
devices with ...)
+ TODO: check
+CVE-2011-0383 (The Java Servlet framework on Cisco TelePresence Recording
Server ...)
+ TODO: check
+CVE-2011-0384 (The Java Servlet framework on Cisco TelePresence Multipoint
Switch ...)
+ TODO: check
+CVE-2011-0385 (The administrative web interface on Cisco TelePresence
Recording ...)
+ TODO: check
+CVE-2011-0386 (The XML-RPC implementation on Cisco TelePresence Recording
Server ...)
+ TODO: check
+CVE-2011-0387 (The administrative web interface on Cisco TelePresence
Multipoint ...)
+ TODO: check
+CVE-2011-0388 (Cisco TelePresence Recording Server devices with software 1.6.x
and ...)
+ TODO: check
+CVE-2011-0389 (Cisco TelePresence Multipoint Switch (CTMS) devices with
software ...)
+ TODO: check
+CVE-2011-0390 (The XML-RPC implementation on Cisco TelePresence Multipoint
Switch ...)
+ TODO: check
+CVE-2011-0391 (Cisco TelePresence Recording Server devices with software 1.6.x
allow ...)
+ TODO: check
+CVE-2011-0392 (Cisco TelePresence Recording Server devices with software 1.6.x
do not ...)
+ TODO: check
+CVE-2011-0393 (Cisco Adaptive Security Appliances (ASA) 5500 series devices
with ...)
+ TODO: check
+CVE-2011-0394 (Cisco Adaptive Security Appliances (ASA) 5500 series devices
with ...)
+ TODO: check
+CVE-2011-0395 (Cisco Adaptive Security Appliances (ASA) 5500 series devices
with ...)
+ TODO: check
+CVE-2011-0396 (Cisco Adaptive Security Appliances (ASA) 5500 series devices
with ...)
+ TODO: check
CVE-2011-0397
RESERVED
CVE-2011-0398 (The Piwik_Common::getIP function in Piwik before 1.1 does not
properly ...)
@@ -96028,16 +96220,16 @@ CVE-2011-0408 (pngrtran.c in libpng 1.5.x before
1.5.1 allows remote attackers t
TODO: check
CVE-2011-0409
RESERVED
-CVE-2011-0410
- RESERVED
-CVE-2011-0411
- RESERVED
+CVE-2011-0410 (CollabNet ScrumWorks Basic 1.8.4 uses cleartext credentials for
...)
+ TODO: check
+CVE-2011-0411 (The STARTTLS implementation in Postfix 2.4.x before 2.4.16,
2.5.x ...)
+ TODO: check
CVE-2011-0412
RESERVED
-CVE-2011-0413
- RESERVED
-CVE-2011-0414
- RESERVED
+CVE-2011-0413 (The DHCPv6 server in ISC DHCP 4.0.x and 4.1.x before 4.1.2-P1,
4.0-ESV ...)
+ TODO: check
+CVE-2011-0414 (ISC BIND 9.7.1 through 9.7.2-P3, when configured as an
authoritative ...)
+ TODO: check
CVE-2011-0415
RESERVED
CVE-2011-0416
@@ -96048,10 +96240,10 @@ CVE-2011-0418
RESERVED
CVE-2011-0419
RESERVED
-CVE-2011-0420
- RESERVED
-CVE-2011-0421
- RESERVED
+CVE-2011-0420 (The grapheme_extract function in the Internationalization
extension ...)
+ TODO: check
+CVE-2011-0421 (The _zip_name_locate function in zip_name_locate.c in the Zip
...)
+ TODO: check
CVE-2011-0422
RESERVED
CVE-2011-0423 (The PolyVision RoomWizard with firmware 3.2.3 has a default
password ...)
@@ -96068,62 +96260,62 @@ CVE-2011-0428
RESERVED
CVE-2011-0429
RESERVED
-CVE-2011-0430
- RESERVED
-CVE-2011-0431
- RESERVED
-CVE-2011-0432
- RESERVED
+CVE-2011-0430 (Double free vulnerability in the Rx server process in OpenAFS
1.4.14, ...)
+ TODO: check
+CVE-2011-0431 (The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the
kernel ...)
+ TODO: check
+CVE-2011-0432 (Multiple SQL injection vulnerabilities in the get_userinfo
method in ...)
+ TODO: check
CVE-2011-0433
RESERVED
-CVE-2011-0434
- RESERVED
-CVE-2011-0435
- RESERVED
-CVE-2011-0436
- RESERVED
-CVE-2011-0437
- RESERVED
-CVE-2011-0438
- RESERVED
+CVE-2011-0434 (Multiple SQL injection vulnerabilities in Domain Technologie
Control ...)
+ TODO: check
+CVE-2011-0435 (Domain Technologie Control (DTC) before 0.32.9 does not require
...)
+ TODO: check
+CVE-2011-0436 (The register_user function in client/new_account_form.php in
Domain ...)
+ TODO: check
+CVE-2011-0437 (shared/inc/sql/ssh.php in the SSH accounts management
implementation ...)
+ TODO: check
+CVE-2011-0438 (nslcd/pam.c in nss-pam-ldapd 0.8.0 PAM module returns a success
code ...)
+ TODO: check
CVE-2011-0439
RESERVED
CVE-2011-0440
RESERVED
CVE-2011-0441
RESERVED
-CVE-2011-0442
- RESERVED
+CVE-2011-0442 (The service utility in EMC Avamar 5.x before 5.0.4 uses
cleartext to ...)
+ TODO: check
CVE-2011-0443 (SQL injection vulnerability in inc/tinybb-settings.php in
tinyBB 1.2, ...)
TODO: check
CVE-2011-0444 (Buffer overflow in the MAC-LTE dissector ...)
TODO: check
CVE-2011-0445 (The ASN.1 BER dissector in Wireshark 1.4.0 through 1.4.2 allows
remote ...)
TODO: check
-CVE-2011-0446
- RESERVED
-CVE-2011-0447
- RESERVED
-CVE-2011-0448
- RESERVED
-CVE-2011-0449
- RESERVED
-CVE-2011-0450
- RESERVED
-CVE-2011-0451
- RESERVED
-CVE-2011-0452
- RESERVED
-CVE-2011-0453
- RESERVED
-CVE-2011-0454
- RESERVED
-CVE-2011-0455
- RESERVED
-CVE-2011-0456
- RESERVED
-CVE-2011-0457
- RESERVED
+CVE-2011-0446 (Multiple cross-site scripting (XSS) vulnerabilities in the
mail_to ...)
+ TODO: check
+CVE-2011-0447 (Ruby on Rails 2.1.x, 2.2.x, and 2.3.x before 2.3.11, and 3.x
before ...)
+ TODO: check
+CVE-2011-0448 (Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments
to the ...)
+ TODO: check
+CVE-2011-0449 (actionpack/lib/action_view/template/resolver.rb in Ruby on
Rails 3.0.x ...)
+ TODO: check
+CVE-2011-0450 (The downloads manager in Opera before 11.01 on Windows does not
...)
+ TODO: check
+CVE-2011-0451 (Multiple cross-site scripting (XSS) vulnerabilities in (1) ...)
+ TODO: check
+CVE-2011-0452 (Untrusted search path vulnerability in the script function in
...)
+ TODO: check
+CVE-2011-0453 (F-Secure Internet Gatekeeper for Linux 3.x before 3.03 does not
...)
+ TODO: check
+CVE-2011-0454 (Buffer overflow in the PPP Access Concentrator (PPPAC) on the
SEIL/x86 ...)
+ TODO: check
+CVE-2011-0455 (Cross-site scripting (XSS) vulnerability in Things BBS before
2.0.3 ...)
+ TODO: check
+CVE-2011-0456 (Open Ticket Request System (OTRS) 2.3.4 and earlier allows
remote ...)
+ TODO: check
+CVE-2011-0457 (Cross-site scripting (XSS) vulnerability in e107 0.7.22 and
earlier ...)
+ TODO: check
CVE-2011-0458
RESERVED
CVE-2011-0459
@@ -96136,8 +96328,8 @@ CVE-2011-0462
RESERVED
CVE-2011-0463
RESERVED
-CVE-2011-0464
- RESERVED
+CVE-2011-0464 (Unspecified vulnerability in Novell Vibe OnPrem 3.0 before Hot
Patch 1 ...)
+ TODO: check
CVE-2011-0465
RESERVED
CVE-2011-0466
@@ -96168,7 +96360,7 @@ CVE-2011-0478 (Google Chrome before 8.0.552.237 and
Chrome OS before 8.0.552.344
TODO: check
CVE-2011-0479 (Google Chrome before 8.0.552.237 and Chrome OS before
8.0.552.344 do ...)
TODO: check
-CVE-2011-0480 (Multiple buffer overflows in the Vorbis decoder in Google
Chrome ...)
+CVE-2011-0480 (Multiple buffer overflows in vorbis_dec.c in the Vorbis decoder
in ...)
TODO: check
CVE-2011-0481 (Buffer overflow in Google Chrome before 8.0.552.237 and Chrome
OS ...)
TODO: check
@@ -96214,7 +96406,7 @@ CVE-2011-0501 (Stack-based buffer overflow in Music
Animation Machine MIDI Playe
TODO: check
CVE-2011-0502 (Music Animation Machine MIDI Player 2006aug19 Release 035 and
possibly ...)
TODO: check
-CVE-2011-0503 (Cross-site request forgery (CSRF) vulnerability in VaM Shop
1.6, 1.6.1, ...)
+CVE-2011-0503 (Cross-site request forgery (CSRF) vulnerability in VaM Shop
1.6, ...)
TODO: check
CVE-2011-0504 (Multiple cross-site scripting (XSS) vulnerabilities in VaM Shop
1.6, ...)
TODO: check
@@ -96248,3 +96440,2005 @@ CVE-2011-0518 (Directory traversal vulnerability in
core/lib/router.php in Lotus
TODO: check
CVE-2011-0519 (SQL injection vulnerability in gallery.php in Gallarific PHP
Photo ...)
TODO: check
+CVE-2011-0520 (The compress_add_dlabel_points function in dns/Compress.c in
MaraDNS ...)
+ TODO: check
+CVE-2011-0521 (The dvb_ca_ioctl function in
drivers/media/dvb/ttpci/av7110_ca.c in ...)
+ TODO: check
+CVE-2011-0522 (The StripTags function in (1) the USF decoder ...)
+ TODO: check
+CVE-2011-0523
+ RESERVED
+CVE-2011-0524
+ RESERVED
+CVE-2011-0525
+ RESERVED
+CVE-2011-0526 (Cross-site scripting (XSS) vulnerability in index.php in
Vanilla ...)
+ TODO: check
+CVE-2011-0527
+ RESERVED
+CVE-2011-0528
+ RESERVED
+CVE-2011-0529
+ RESERVED
+CVE-2011-0530 (Buffer overflow in the mainloop function in nbd-server.c in the
server ...)
+ TODO: check
+CVE-2011-0531 (demux/mkv/mkv.hpp in the MKV demuxer plugin in VideoLAN VLC
media ...)
+ TODO: check
+CVE-2011-0532 (The (1) backup and restore scripts, (2) main initialization
script, ...)
+ TODO: check
+CVE-2011-0533 (Cross-site scripting (XSS) vulnerability in Apache Continuum
1.1 ...)
+ TODO: check
+CVE-2011-0534 (Apache Tomcat 7.0.0 through 7.0.6 and 6.0.0 through 6.0.30 does
not ...)
+ TODO: check
+CVE-2011-0535 (Cross-site request forgery (CSRF) vulnerability in the Users
module in ...)
+ TODO: check
+CVE-2011-0536
+ RESERVED
+CVE-2011-0537 (Multiple directory traversal vulnerabilities in (1) ...)
+ TODO: check
+CVE-2011-0538 (Wireshark 1.2.0 through 1.2.14, 1.4.0 through 1.4.3, and 1.5.0
frees ...)
+ TODO: check
+CVE-2011-0539 (The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6
and 5.7, ...)
+ TODO: check
+CVE-2011-0540
+ RESERVED
+CVE-2011-0541
+ RESERVED
+CVE-2011-0542
+ RESERVED
+CVE-2011-0543
+ RESERVED
+CVE-2011-0544
+ RESERVED
+CVE-2011-0545
+ RESERVED
+CVE-2011-0546
+ RESERVED
+CVE-2011-0547
+ RESERVED
+CVE-2011-0548
+ RESERVED
+CVE-2011-0549
+ RESERVED
+CVE-2011-0550
+ RESERVED
+CVE-2011-0551
+ RESERVED
+CVE-2011-0552
+ RESERVED
+CVE-2011-0553
+ RESERVED
+CVE-2011-0554
+ RESERVED
+CVE-2011-0555 (The TextXtra.x32 module in Adobe Shockwave Player before
11.5.9.620 ...)
+ TODO: check
+CVE-2011-0556 (The Font Xtra.x32 module in Adobe Shockwave Player before
11.5.9.620 ...)
+ TODO: check
+CVE-2011-0557 (Integer overflow in Adobe Shockwave Player before 11.5.9.620
allows ...)
+ TODO: check
+CVE-2011-0558 (Integer overflow in Adobe Flash Player before 10.2.152.26
allows ...)
+ TODO: check
+CVE-2011-0559 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0560 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0561 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0562 (Untrusted search path vulnerability in Adobe Reader and Acrobat
10.x ...)
+ TODO: check
+CVE-2011-0563 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0564 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0565 (Unspecified vulnerability in Adobe Reader and Acrobat 10.x
before ...)
+ TODO: check
+CVE-2011-0566 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0567 (AcroRd32.dll in Adobe Reader and Acrobat 10.x before 10.0.1,
9.x ...)
+ TODO: check
+CVE-2011-0568 (Unspecified vulnerability in Adobe Reader and Acrobat 10.x
before ...)
+ TODO: check
+CVE-2011-0569 (The Font Xtra.x32 module in Adobe Shockwave Player before
11.5.9.620 ...)
+ TODO: check
+CVE-2011-0570 (Untrusted search path vulnerability in Adobe Reader and Acrobat
10.x ...)
+ TODO: check
+CVE-2011-0571 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0572 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0573 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0574 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0575 (Untrusted search path vulnerability in Adobe Flash Player
before ...)
+ TODO: check
+CVE-2011-0576
+ RESERVED
+CVE-2011-0577 (Unspecified vulnerability in Adobe Flash Player before
10.2.152.26 ...)
+ TODO: check
+CVE-2011-0578 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0579
+ RESERVED
+CVE-2011-0580 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
+ TODO: check
+CVE-2011-0581 (Multiple CRLF injection vulnerabilities in Adobe ColdFusion 8.0
...)
+ TODO: check
+CVE-2011-0582 (Unspecified vulnerability in the administrator console in Adobe
...)
+ TODO: check
+CVE-2011-0583 (Cross-site scripting (XSS) vulnerability in Adobe ColdFusion
8.0 ...)
+ TODO: check
+CVE-2011-0584 (Session fixation vulnerability in Adobe ColdFusion 8.0 through
9.0.1 ...)
+ TODO: check
+CVE-2011-0585 (Unspecified vulnerability in Adobe Reader and Acrobat 10.x
before ...)
+ TODO: check
+CVE-2011-0586 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0587 (Cross-site scripting (XSS) vulnerability in Adobe Reader and
Acrobat ...)
+ TODO: check
+CVE-2011-0588 (Untrusted search path vulnerability in Adobe Reader and Acrobat
10.x ...)
+ TODO: check
+CVE-2011-0589 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0590 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0591 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0592 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0593 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0594 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0595 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0596 (The Bitmap parsing component in 2d.dll in Adobe Reader and
Acrobat ...)
+ TODO: check
+CVE-2011-0597
+ RESERVED
+CVE-2011-0598 (Integer overflow in ACE.dll in Adobe Reader and Acrobat 10.x
before ...)
+ TODO: check
+CVE-2011-0599 (The Bitmap parsing component in rt3d.dll in Adobe Reader and
Acrobat ...)
+ TODO: check
+CVE-2011-0600 (The U3D component in Adobe Reader and Acrobat 10.x before
10.0.1, 9.x ...)
+ TODO: check
+CVE-2011-0601
+ RESERVED
+CVE-2011-0602 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0603 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0604 (Cross-site scripting (XSS) vulnerability in Adobe Reader and
Acrobat ...)
+ TODO: check
+CVE-2011-0605 (Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2,
and 8.x ...)
+ TODO: check
+CVE-2011-0606 (Stack-based buffer overflow in rt3d.dll in Adobe Reader and
Acrobat ...)
+ TODO: check
+CVE-2011-0607 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0608 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
+ TODO: check
+CVE-2011-0609 (Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and
...)
+ TODO: check
+CVE-2011-0610
+ RESERVED
+CVE-2011-0611
+ RESERVED
+CVE-2011-0612
+ RESERVED
+CVE-2011-0613
+ RESERVED
+CVE-2011-0614
+ RESERVED
+CVE-2011-0615
+ RESERVED
+CVE-2011-0616
+ RESERVED
+CVE-2011-0617
+ RESERVED
+CVE-2011-0618
+ RESERVED
+CVE-2011-0619
+ RESERVED
+CVE-2011-0620
+ RESERVED
+CVE-2011-0621
+ RESERVED
+CVE-2011-0622
+ RESERVED
+CVE-2011-0623
+ RESERVED
+CVE-2011-0624
+ RESERVED
+CVE-2011-0625
+ RESERVED
+CVE-2011-0626
+ RESERVED
+CVE-2011-0627
+ RESERVED
+CVE-2011-0628
+ RESERVED
+CVE-2011-0629
+ RESERVED
+CVE-2011-0630
+ RESERVED
+CVE-2011-0631
+ RESERVED
+CVE-2011-0632
+ RESERVED
+CVE-2011-0633
+ RESERVED
+CVE-2011-0634
+ REJECTED
+ TODO: check
+CVE-2011-0635 (Static code injection vulnerability in Simploo CMS 1.7.1 and
earlier ...)
+ TODO: check
+CVE-2011-0636 (The (1) cudaHostAlloc and (2) cuMemHostAlloc functions in the
NVIDIA ...)
+ TODO: check
+CVE-2011-0637 (The FC SCSI protocol driver in IBM AIX 6.1 does not verify that
a ...)
+ TODO: check
+CVE-2011-0638 (Microsoft Windows does not properly warn the user before
enabling ...)
+ TODO: check
+CVE-2011-0639 (Apple Mac OS X does not properly warn the user before enabling
...)
+ TODO: check
+CVE-2011-0640 (The default configuration of udev on Linux does not warn the
user ...)
+ TODO: check
+CVE-2011-0641 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
+CVE-2011-0642 (Cross-site request forgery (CSRF) vulnerability in
news/admin.php in ...)
+ TODO: check
+CVE-2011-0643 (Cross-site request forgery (CSRF) vulnerability in ...)
+ TODO: check
+CVE-2011-0644 (SQL injection vulnerability in
include/admin/model_field.class.php in ...)
+ TODO: check
+CVE-2011-0645 (SQL injection vulnerability in data.php in PHPCMS 2008 V2
allows ...)
+ TODO: check
+CVE-2011-0646 (SQL injection vulnerability in viewfaqs.php in PHP LOW BIDS
allows ...)
+ TODO: check
+CVE-2011-0647 (The irccd.exe service in EMC Replication Manager Client before
5.3 and ...)
+ TODO: check
+CVE-2011-0648 (Unspecified vulnerability in EMC Avamar before 5.0.4-30 allows
remote ...)
+ TODO: check
+CVE-2011-0649 (Multiple unspecified vulnerabilities in TIBCO Rendezvous 8.2.1
through ...)
+ TODO: check
+CVE-2011-0650 (Cross-site request forgery (CSRF) vulnerability in Greenbone
Security ...)
+ TODO: check
+CVE-2011-0651 (Buffer overflow in the key exchange functionality in Icon Labs
...)
+ TODO: check
+CVE-2011-0652 (lnsfw1.sys 6.0.2900.5512 in Look 'n' Stop Firewall 2.06p4 and
2.07 ...)
+ TODO: check
+CVE-2011-0653
+ RESERVED
+CVE-2011-0654 (Integer underflow in the BowserWriteErrorLogEntry function in
the ...)
+ TODO: check
+CVE-2011-0655
+ RESERVED
+CVE-2011-0656
+ RESERVED
+CVE-2011-0657
+ RESERVED
+CVE-2011-0658
+ RESERVED
+CVE-2011-0659
+ RESERVED
+CVE-2011-0660
+ RESERVED
+CVE-2011-0661
+ RESERVED
+CVE-2011-0662
+ RESERVED
+CVE-2011-0663
+ RESERVED
+CVE-2011-0664
+ RESERVED
+CVE-2011-0665
+ RESERVED
+CVE-2011-0666
+ RESERVED
+CVE-2011-0667
+ RESERVED
+CVE-2011-0668
+ RESERVED
+CVE-2011-0669
+ RESERVED
+CVE-2011-0670
+ RESERVED
+CVE-2011-0671
+ RESERVED
+CVE-2011-0672
+ RESERVED
+CVE-2011-0673
+ RESERVED
+CVE-2011-0674
+ RESERVED
+CVE-2011-0675
+ RESERVED
+CVE-2011-0676
+ RESERVED
+CVE-2011-0677
+ RESERVED
+CVE-2011-0678 (Unrestricted file upload vulnerability in the EasyEdit module
in ...)
+ TODO: check
+CVE-2011-0679 (IBM WebSphere Portal 6.0.1.1 through 7.0.0.0, as used in IBM
Lotus Web ...)
+ TODO: check
+CVE-2011-0680 (data/WorkingMessage.java in the Mms application in Android
before ...)
+ TODO: check
+CVE-2011-0681 (The Cascading Style Sheets (CSS) Extensions for XML
implementation in ...)
+ TODO: check
+CVE-2011-0682 (Integer truncation error in opera.dll in Opera before 11.01
allows ...)
+ TODO: check
+CVE-2011-0683 (Opera before 11.01 does not properly restrict the use of opera:
URLs, ...)
+ TODO: check
+CVE-2011-0684 (Opera before 11.01 does not properly handle redirections and
...)
+ TODO: check
+CVE-2011-0685 (The Delete Private Data feature in Opera before 11.01 does not
...)
+ TODO: check
+CVE-2011-0686 (Unspecified vulnerability in Opera before 11.01 allows remote
...)
+ TODO: check
+CVE-2011-0687 (Opera before 11.01 does not properly implement Wireless
Application ...)
+ TODO: check
+CVE-2011-0688 (Intel Alert Management System (aka AMS or AMS2), as used in
Symantec ...)
+ TODO: check
+CVE-2011-0689
+ RESERVED
+CVE-2011-0690
+ RESERVED
+CVE-2011-0691
+ RESERVED
+CVE-2011-0692
+ RESERVED
+CVE-2011-0693
+ RESERVED
+CVE-2011-0694 (RealNetworks RealPlayer 11.0 through 11.1, SP 1.0 through
1.1.5, and ...)
+ TODO: check
+CVE-2011-0695 (Race condition in the cm_work_handler function in the
InfiniBand ...)
+ TODO: check
+CVE-2011-0696 (Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 does not
properly ...)
+ TODO: check
+CVE-2011-0697 (Cross-site scripting (XSS) vulnerability in Django 1.1.x before
1.1.4 ...)
+ TODO: check
+CVE-2011-0698 (Directory traversal vulnerability in Django 1.1.x before 1.1.4
and ...)
+ TODO: check
+CVE-2011-0699
+ RESERVED
+CVE-2011-0700 (Multiple cross-site scripting (XSS) vulnerabilities in
WordPress ...)
+ TODO: check
+CVE-2011-0701 (wp-admin/async-upload.php in the media uploader in WordPress
before ...)
+ TODO: check
+CVE-2011-0702 (The feh_unique_filename function in utils.c in feh before
1.11.2 might ...)
+ TODO: check
+CVE-2011-0703
+ RESERVED
+CVE-2011-0704
+ RESERVED
+CVE-2011-0705
+ RESERVED
+CVE-2011-0706 (The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used
in ...)
+ TODO: check
+CVE-2011-0707 (Multiple cross-site scripting (XSS) vulnerabilities in
Cgi/confirm.py ...)
+ TODO: check
+CVE-2011-0708 (exif.c in the Exif extension in PHP before 5.3.6 on 64-bit
platforms ...)
+ TODO: check
+CVE-2011-0709 (The br_mdb_ip_get function in net/bridge/br_multicast.c in the
Linux ...)
+ TODO: check
+CVE-2011-0710 (The task_show_regs function in arch/s390/kernel/traps.c in the
Linux ...)
+ TODO: check
+CVE-2011-0711 (The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux
kernel ...)
+ TODO: check
+CVE-2011-0712 (Multiple buffer overflows in the caiaq Native Instruments USB
audio ...)
+ TODO: check
+CVE-2011-0713 (Heap-based buffer overflow in wiretap/dct3trace.c in Wireshark
1.2.0 ...)
+ TODO: check
+CVE-2011-0714
+ RESERVED
+CVE-2011-0715 (The mod_dav_svn module for the Apache HTTP Server, as
distributed in ...)
+ TODO: check
+CVE-2011-0716
+ RESERVED
+CVE-2011-0717 (Session fixation vulnerability in Red Hat Network (RHN)
Satellite ...)
+ TODO: check
+CVE-2011-0718 (Red Hat Network (RHN) Satellite Server 5.4 does not use a time
delay ...)
+ TODO: check
+CVE-2011-0719 (Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before
3.5.7 ...)
+ TODO: check
+CVE-2011-0720 (Unspecified vulnerability in Plone 2.5 through 4.0 allows
remote ...)
+ TODO: check
+CVE-2011-0721 (Multiple CRLF injection vulnerabilities in (1) chfn and (2)
chsh in ...)
+ TODO: check
+CVE-2011-0722
+ RESERVED
+CVE-2011-0723
+ RESERVED
+CVE-2011-0724 (The Live DVD for Edubuntu 9.10, 10.04 LTS, and 10.10 does not
...)
+ TODO: check
+CVE-2011-0725 (Absolute path traversal vulnerability in the ...)
+ TODO: check
+CVE-2011-0726
+ RESERVED
+CVE-2011-0727
+ RESERVED
+CVE-2011-0728
+ RESERVED
+CVE-2011-0729
+ RESERVED
+CVE-2011-0730
+ RESERVED
+CVE-2011-0731 (Buffer overflow in the DB2 Administration Server (DAS)
component in ...)
+ TODO: check
+CVE-2011-0732 (Multiple unspecified vulnerabilities in IBM Tivoli Integrated
Portal ...)
+ TODO: check
+CVE-2011-0733 (Cross-site scripting (XSS) vulnerability in Adobe ColdFusion,
possibly ...)
+ TODO: check
+CVE-2011-0734 (Cross-site scripting (XSS) vulnerability in Adobe ColdFusion
9.0.1 ...)
+ TODO: check
+CVE-2011-0735 (Cross-site scripting (XSS) vulnerability in Adobe ColdFusion
before ...)
+ TODO: check
+CVE-2011-0736 (Adobe ColdFusion 9.0.1 CHF1 and earlier, when a web application
is ...)
+ TODO: check
+CVE-2011-0737 (Adobe ColdFusion 9.0.1 CHF1 and earlier allows remote attackers
to ...)
+ TODO: check
+CVE-2011-0738 (MyProxy 5.0 through 5.2, as used in Globus Toolkit 5.0.0
through ...)
+ TODO: check
+CVE-2011-0739 (The deliver function in the sendmail delivery agent ...)
+ TODO: check
+CVE-2011-0740 (Cross-site scripting (XSS) vulnerability in ...)
+ TODO: check
+CVE-2011-0741 (Multiple cross-site scripting (XSS) vulnerabilities in ModX
Evolution ...)
+ TODO: check
+CVE-2011-0742 (Buffer overflow in ZfHIPCND.exe in Novell ZENworks Handheld
Management ...)
+ TODO: check
+CVE-2011-0743
+ RESERVED
+CVE-2011-0744
+ RESERVED
+CVE-2011-0745 (SugarCRM before 6.1.3 does not properly handle reloads and
direct ...)
+ TODO: check
+CVE-2011-0746
+ RESERVED
+CVE-2011-0747
+ RESERVED
+CVE-2011-0748
+ RESERVED
+CVE-2011-0749
+ RESERVED
+CVE-2011-0750
+ RESERVED
+CVE-2011-0751 (Directory traversal vulnerability in nhttpd (aka Nostromo
webserver) ...)
+ TODO: check
+CVE-2011-0752 (The extract function in PHP before 5.2.15 does not prevent use
of the ...)
+ TODO: check
+CVE-2011-0753 (Race condition in the PCNTL extension in PHP before 5.3.4, when
a ...)
+ TODO: check
+CVE-2011-0754 (The SplFileInfo::getType function in the Standard PHP Library
(SPL) ...)
+ TODO: check
+CVE-2011-0755 (Integer overflow in the mt_rand function in PHP before 5.3.4
might ...)
+ TODO: check
+CVE-2011-0756
+ RESERVED
+CVE-2011-0757 (IBM DB2 9.1 before FP10, 9.5 before FP6a, and 9.7 before FP2 on
Linux, ...)
+ TODO: check
+CVE-2011-0758 (The eCS component (ECSQdmn.exe) in CA ETrust Secure Content
Manager ...)
+ TODO: check
+CVE-2011-0759 (Multiple cross-site request forgery (CSRF) vulnerabilities in
the ...)
+ TODO: check
+CVE-2011-0760
+ RESERVED
+CVE-2011-0761
+ RESERVED
+CVE-2011-0762 (The vsf_filename_passes_filter function in ls.c in vsftpd
before 2.3.3 ...)
+ TODO: check
+CVE-2011-0763
+ RESERVED
+CVE-2011-0764
+ RESERVED
+CVE-2011-0765
+ RESERVED
+CVE-2011-0766
+ RESERVED
+CVE-2011-0767
+ RESERVED
+CVE-2011-0768
+ RESERVED
+CVE-2011-0769
+ RESERVED
+CVE-2011-0770
+ RESERVED
+CVE-2011-0771 (Janrain Engage (formerly RPX) module 6.x-1.3 for Drupal does
not ...)
+ TODO: check
+CVE-2011-0772 (Multiple cross-site scripting (XSS) vulnerabilities in PivotX
2.2.0, ...)
+ TODO: check
+CVE-2011-0773 (Cross-site scripting (XSS) vulnerability in ...)
+ TODO: check
+CVE-2011-0774 (PivotX before 2.2.2 allows remote attackers to obtain sensitive
...)
+ TODO: check
+CVE-2011-0775 (pivotx/modules/module_image.php in PivotX 2.2.2 allows remote
...)
+ TODO: check
+CVE-2011-0776 (The sandbox implementation in Google Chrome before 9.0.597.84
on Mac ...)
+ TODO: check
+CVE-2011-0777 (Use-after-free vulnerability in Google Chrome before 9.0.597.84
allows ...)
+ TODO: check
+CVE-2011-0778 (Google Chrome before 9.0.597.84 does not properly restrict drag
and ...)
+ TODO: check
+CVE-2011-0779 (Google Chrome before 9.0.597.84 does not properly handle a
missing key ...)
+ TODO: check
+CVE-2011-0780 (The PDF event handler in Google Chrome before 9.0.597.84 does
not ...)
+ TODO: check
+CVE-2011-0781 (Google Chrome before 9.0.597.84 does not properly handle
autofill ...)
+ TODO: check
+CVE-2011-0782 (Google Chrome before 9.0.597.84 on Mac OS X does not properly
mitigate ...)
+ TODO: check
+CVE-2011-0783 (Unspecified vulnerability in Google Chrome before 9.0.597.84
allows ...)
+ TODO: check
+CVE-2011-0784 (Race condition in Google Chrome before 9.0.597.84 allows remote
...)
+ TODO: check
+CVE-2011-0785
+ RESERVED
+CVE-2011-0786
+ RESERVED
+CVE-2011-0787
+ RESERVED
+CVE-2011-0788
+ RESERVED
+CVE-2011-0789
+ RESERVED
+CVE-2011-0790
+ RESERVED
+CVE-2011-0791
+ RESERVED
+CVE-2011-0792
+ RESERVED
+CVE-2011-0793
+ RESERVED
+CVE-2011-0794
+ RESERVED
+CVE-2011-0795
+ RESERVED
+CVE-2011-0796
+ RESERVED
+CVE-2011-0797
+ RESERVED
+CVE-2011-0798
+ RESERVED
+CVE-2011-0799
+ RESERVED
+CVE-2011-0800
+ RESERVED
+CVE-2011-0801
+ RESERVED
+CVE-2011-0802
+ RESERVED
+CVE-2011-0803
+ RESERVED
+CVE-2011-0804
+ RESERVED
+CVE-2011-0805
+ RESERVED
+CVE-2011-0806
+ RESERVED
+CVE-2011-0807
+ RESERVED
+CVE-2011-0808
+ RESERVED
+CVE-2011-0809
+ RESERVED
+CVE-2011-0810
+ RESERVED
+CVE-2011-0811
+ RESERVED
+CVE-2011-0812
+ RESERVED
+CVE-2011-0813
+ RESERVED
+CVE-2011-0814
+ RESERVED
+CVE-2011-0815
+ RESERVED
+CVE-2011-0816
+ RESERVED
+CVE-2011-0817
+ RESERVED
+CVE-2011-0818
+ RESERVED
+CVE-2011-0819
+ RESERVED
+CVE-2011-0820
+ RESERVED
+CVE-2011-0821
+ RESERVED
+CVE-2011-0822
+ RESERVED
+CVE-2011-0823
+ RESERVED
+CVE-2011-0824
+ RESERVED
+CVE-2011-0825
+ RESERVED
+CVE-2011-0826
+ RESERVED
+CVE-2011-0827
+ RESERVED
+CVE-2011-0828
+ RESERVED
+CVE-2011-0829
+ RESERVED
+CVE-2011-0830
+ RESERVED
+CVE-2011-0831
+ RESERVED
+CVE-2011-0832
+ RESERVED
+CVE-2011-0833
+ RESERVED
+CVE-2011-0834
+ RESERVED
+CVE-2011-0835
+ RESERVED
+CVE-2011-0836
+ RESERVED
+CVE-2011-0837
+ RESERVED
+CVE-2011-0838
+ RESERVED
+CVE-2011-0839
+ RESERVED
+CVE-2011-0840
+ RESERVED
+CVE-2011-0841
+ RESERVED
+CVE-2011-0842
+ RESERVED
+CVE-2011-0843
+ RESERVED
+CVE-2011-0844
+ RESERVED
+CVE-2011-0845
+ RESERVED
+CVE-2011-0846
+ RESERVED
+CVE-2011-0847
+ RESERVED
+CVE-2011-0848
+ RESERVED
+CVE-2011-0849
+ RESERVED
+CVE-2011-0850
+ RESERVED
+CVE-2011-0851
+ RESERVED
+CVE-2011-0852
+ RESERVED
+CVE-2011-0853
+ RESERVED
+CVE-2011-0854
+ RESERVED
+CVE-2011-0855
+ RESERVED
+CVE-2011-0856
+ RESERVED
+CVE-2011-0857
+ RESERVED
+CVE-2011-0858
+ RESERVED
+CVE-2011-0859
+ RESERVED
+CVE-2011-0860
+ RESERVED
+CVE-2011-0861
+ RESERVED
+CVE-2011-0862
+ RESERVED
+CVE-2011-0863
+ RESERVED
+CVE-2011-0864
+ RESERVED
+CVE-2011-0865
+ RESERVED
+CVE-2011-0866
+ RESERVED
+CVE-2011-0867
+ RESERVED
+CVE-2011-0868
+ RESERVED
+CVE-2011-0869
+ RESERVED
+CVE-2011-0870
+ RESERVED
+CVE-2011-0871
+ RESERVED
+CVE-2011-0872
+ RESERVED
+CVE-2011-0873
+ RESERVED
+CVE-2011-0874
+ RESERVED
+CVE-2011-0875
+ RESERVED
+CVE-2011-0876
+ RESERVED
+CVE-2011-0877
+ RESERVED
+CVE-2011-0878
+ RESERVED
+CVE-2011-0879
+ RESERVED
+CVE-2011-0880
+ RESERVED
+CVE-2011-0881
+ RESERVED
+CVE-2011-0882
+ RESERVED
+CVE-2011-0883
+ RESERVED
+CVE-2011-0884
+ RESERVED
+CVE-2011-0885 (A certain Comcast Business Gateway configuration of the SMC
SMCD3G-CCR ...)
+ TODO: check
+CVE-2011-0886 (Multiple cross-site request forgery (CSRF) vulnerabilities in
the web ...)
+ TODO: check
+CVE-2011-0887 (The web management portal on the SMC SMCD3G-CCR (aka Comcast
Business ...)
+ TODO: check
+CVE-2011-0888
+ RESERVED
+CVE-2011-0889 (Unspecified vulnerability in HP Client Automation Enterprise
(aka HPCA ...)
+ TODO: check
+CVE-2011-0890 (HP Discovery & Dependency Mapping Inventory (DDMI) 7.50, 7.51,
7.60, ...)
+ TODO: check
+CVE-2011-0891
+ RESERVED
+CVE-2011-0892
+ RESERVED
+CVE-2011-0893
+ RESERVED
+CVE-2011-0894
+ RESERVED
+CVE-2011-0895
+ RESERVED
+CVE-2011-0896
+ RESERVED
+CVE-2011-0897
+ RESERVED
+CVE-2011-0898
+ RESERVED
+CVE-2011-0899 (The AES encryption module 7.x-1.4 for Drupal leaves certain
debugging ...)
+ TODO: check
+CVE-2011-0900 (Stack-based buffer overflow in the tsc_launch_remote function
...)
+ TODO: check
+CVE-2011-0901 (Multiple stack-based buffer overflows in the tsc_launch_remote
...)
+ TODO: check
+CVE-2011-0902 (Multiple untrusted search path vulnerabilities in the Java
Service in ...)
+ TODO: check
+CVE-2011-0903 (Multiple directory traversal vulnerabilities in AR Web Content
Manager ...)
+ TODO: check
+CVE-2011-0904
+ RESERVED
+CVE-2011-0905
+ RESERVED
+CVE-2011-0906
+ RESERVED
+CVE-2011-0907
+ RESERVED
+CVE-2011-0908 (Open redirect vulnerability in Vanilla Forums before 2.0.17.6
allows ...)
+ TODO: check
+CVE-2011-0909 (Cross-site scripting (XSS) vulnerability in Vanilla Forums
before ...)
+ TODO: check
+CVE-2011-0910 (The cookie implementation in Vanilla Forums before 2.0.17.6
makes it ...)
+ TODO: check
+CVE-2011-0911 (Cross-site scripting (XSS) vulnerability in the Users module in
Zikula ...)
+ TODO: check
+CVE-2011-0912 (Argument injection vulnerability in IBM Lotus Notes 8.0.x
before 8.0.2 ...)
+ TODO: check
+CVE-2011-0913 (Stack-based buffer overflow in ndiiop.exe in the DIIOP
implementation ...)
+ TODO: check
+CVE-2011-0914 (Integer signedness error in ndiiop.exe in the DIIOP
implementation in ...)
+ TODO: check
+CVE-2011-0915 (Stack-based buffer overflow in nrouter.exe in IBM Lotus Domino
before ...)
+ TODO: check
+CVE-2011-0916 (Stack-based buffer overflow in the SMTP service in IBM Lotus
Domino ...)
+ TODO: check
+CVE-2011-0917 (Buffer overflow in nLDAP.exe in IBM Lotus Domino allows remote
...)
+ TODO: check
+CVE-2011-0918 (Stack-based buffer overflow in the NRouter (aka Router) service
in IBM ...)
+ TODO: check
+CVE-2011-0919 (Multiple stack-based buffer overflows in the (1) POP3 and (2)
IMAP ...)
+ TODO: check
+CVE-2011-0920 (The Remote Console in IBM Lotus Domino, when a certain
unsupported ...)
+ TODO: check
+CVE-2011-0921 (crs.exe in the Cell Manager Service in the client in HP Data
Protector ...)
+ TODO: check
+CVE-2011-0922 (The client in HP Data Protector allows remote attackers to
execute ...)
+ TODO: check
+CVE-2011-0923 (The client in HP Data Protector does not properly validate
EXEC_CMD ...)
+ TODO: check
+CVE-2011-0924 (The client in HP Data Protector does not verify the contents of
files ...)
+ TODO: check
+CVE-2011-0925 (The CSDWebInstallerCtrl ActiveX control in CSDWebInstaller.ocx
in ...)
+ TODO: check
+CVE-2011-0926 (A certain ActiveX control in CSDWebInstaller.ocx in Cisco
Secure ...)
+ TODO: check
+CVE-2011-0927
+ RESERVED
+CVE-2011-0928
+ RESERVED
+CVE-2011-0929
+ RESERVED
+CVE-2011-0930
+ RESERVED
+CVE-2011-0931
+ RESERVED
+CVE-2011-0932
+ RESERVED
+CVE-2011-0933
+ RESERVED
+CVE-2011-0934
+ RESERVED
+CVE-2011-0935
+ RESERVED
+CVE-2011-0936
+ RESERVED
+CVE-2011-0937
+ RESERVED
+CVE-2011-0938
+ RESERVED
+CVE-2011-0939
+ RESERVED
+CVE-2011-0940
+ RESERVED
+CVE-2011-0941
+ RESERVED
+CVE-2011-0942
+ RESERVED
+CVE-2011-0943
+ RESERVED
+CVE-2011-0944
+ RESERVED
+CVE-2011-0945
+ RESERVED
+CVE-2011-0946
+ RESERVED
+CVE-2011-0947
+ RESERVED
+CVE-2011-0948
+ RESERVED
+CVE-2011-0949
+ RESERVED
+CVE-2011-0950
+ RESERVED
+CVE-2011-0951
+ RESERVED
+CVE-2011-0952
+ RESERVED
+CVE-2011-0953
+ RESERVED
+CVE-2011-0954
+ RESERVED
+CVE-2011-0955
+ RESERVED
+CVE-2011-0956
+ RESERVED
+CVE-2011-0957
+ RESERVED
+CVE-2011-0958
+ RESERVED
+CVE-2011-0959
+ RESERVED
+CVE-2011-0960
+ RESERVED
+CVE-2011-0961
+ RESERVED
+CVE-2011-0962
+ RESERVED
+CVE-2011-0963
+ RESERVED
+CVE-2011-0964
+ RESERVED
+CVE-2011-0965
+ RESERVED
+CVE-2011-0966
+ RESERVED
+CVE-2011-0967
+ RESERVED
+CVE-2011-0968
+ RESERVED
+CVE-2011-0969
+ RESERVED
+CVE-2011-0970
+ RESERVED
+CVE-2011-0971
+ RESERVED
+CVE-2011-0972
+ RESERVED
+CVE-2011-0973
+ RESERVED
+CVE-2011-0974
+ RESERVED
+CVE-2011-0975 (Stack-based buffer overflow in BMC PATROL Agent Service Daemon
for in ...)
+ TODO: check
+CVE-2011-0976 (Microsoft Office PowerPoint 2007 does not properly handle
Office Art ...)
+ TODO: check
+CVE-2011-0977 (Use-after-free vulnerability in Microsoft Excel 2007 allows
remote ...)
+ TODO: check
+CVE-2011-0978 (Stack-based buffer overflow in Microsoft Office Excel allows
remote ...)
+ TODO: check
+CVE-2011-0979 (Microsoft Office Excel does not properly handle errors during
the ...)
+ TODO: check
+CVE-2011-0980 (Microsoft Office Excel 2003 does not properly parse Office Art
...)
+ TODO: check
+CVE-2011-0981 (Google Chrome before 9.0.597.94 does not properly perform event
...)
+ TODO: check
+CVE-2011-0982 (Use-after-free vulnerability in Google Chrome before 9.0.597.94
allows ...)
+ TODO: check
+CVE-2011-0983 (Google Chrome before 9.0.597.94 does not properly handle
anonymous ...)
+ TODO: check
+CVE-2011-0984 (Google Chrome before 9.0.597.94 does not properly handle
plug-ins, ...)
+ TODO: check
+CVE-2011-0985 (Google Chrome before 9.0.597.94 does not properly perform
process ...)
+ TODO: check
+CVE-2011-0986 (phpMyAdmin 2.11.x before 2.11.11.2, and 3.3.x before 3.3.9.1,
does not ...)
+ TODO: check
+CVE-2011-0987 (The PMA_Bookmark_get function in libraries/bookmark.lib.php in
...)
+ TODO: check
+CVE-2011-0988
+ RESERVED
+CVE-2011-0989
+ RESERVED
+CVE-2011-0990
+ RESERVED
+CVE-2011-0991
+ RESERVED
+CVE-2011-0992
+ RESERVED
+CVE-2011-0993
+ RESERVED
+CVE-2011-0994
+ RESERVED
+CVE-2011-0995
+ RESERVED
+CVE-2011-0996
+ RESERVED
+CVE-2011-0997
+ RESERVED
+CVE-2011-0998
+ RESERVED
+CVE-2011-0999 (mm/huge_memory.c in the Linux kernel before 2.6.38-rc5 does not
...)
+ TODO: check
+CVE-2011-1000 (jingle-factory.c in Telepathy Gabble 0.11 before 0.11.7, 0.10
before ...)
+ TODO: check
+CVE-2011-1001
+ RESERVED
+CVE-2011-1002 (avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29
allows ...)
+ TODO: check
+CVE-2011-1003 (Double free vulnerability in the vba_read_project_strings
function in ...)
+ TODO: check
+CVE-2011-1004 (The FileUtils.remove_entry_secure method in Ruby 1.8.6 through
...)
+ TODO: check
+CVE-2011-1005 (The safe-level feature in Ruby 1.8.6 through 1.8.6-420, 1.8.7
through ...)
+ TODO: check
+CVE-2011-1006 (Heap-based buffer overflow in the parse_cgroup_spec function in
...)
+ TODO: check
+CVE-2011-1007 (Best Practical Solutions RT before 3.8.9 does not perform
certain ...)
+ TODO: check
+CVE-2011-1008 (Scrips_Overlay.pm in Best Practical Solutions RT before 3.8.9
does not ...)
+ TODO: check
+CVE-2011-1009
+ RESERVED
+CVE-2011-1010 (Buffer overflow in the mac_partition function in
fs/partitions/mac.c ...)
+ TODO: check
+CVE-2011-1011 (The seunshare_mount function in sandbox/seunshare.c in
seunshare in ...)
+ TODO: check
+CVE-2011-1012 (The ldm_parse_vmdb function in fs/partitions/ldm.c in the Linux
kernel ...)
+ TODO: check
+CVE-2011-1013
+ RESERVED
+CVE-2011-1014
+ RESERVED
+CVE-2011-1015
+ RESERVED
+CVE-2011-1016 (The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do
not ...)
+ TODO: check
+CVE-2011-1017 (Heap-based buffer overflow in the ldm_frag_add function in ...)
+ TODO: check
+CVE-2011-1018 (logwatch.pl in Logwatch 7.3.6 allows remote attackers to
execute ...)
+ TODO: check
+CVE-2011-1019
+ RESERVED
+CVE-2011-1020 (The proc filesystem implementation in the Linux kernel 2.6.37
and ...)
+ TODO: check
+CVE-2011-1021
+ RESERVED
+CVE-2011-1022 (The cgre_receive_netlink_msg function in daemon/cgrulesengd.c
in ...)
+ TODO: check
+CVE-2011-1023
+ RESERVED
+CVE-2011-1024 (chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a
...)
+ TODO: check
+CVE-2011-1025 (bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not
require ...)
+ TODO: check
+CVE-2011-1026
+ RESERVED
+CVE-2011-1027 (Off-by-one error in the convert_query_hexchar function in
html.c in ...)
+ TODO: check
+CVE-2011-1028
+ RESERVED
+CVE-2011-1029 (Cross-site scripting (XSS) vulnerability in IBM Rational Team
Concert ...)
+ TODO: check
+CVE-2011-1030 (Cross-site scripting (XSS) vulnerability in the Wikis component
in IBM ...)
+ TODO: check
+CVE-2011-1031 (The feh_unique_filename function in utils.c in feh 1.11.2 and
earlier ...)
+ TODO: check
+CVE-2011-1032 (IBM Lotus Connections 3.0, when IBM WebSphere Application
Server ...)
+ TODO: check
+CVE-2011-1033 (Stack-based buffer overflow in oninit in IBM Informix Dynamic
Server ...)
+ TODO: check
+CVE-2011-1034 (Cross-site scripting (XSS) vulnerability in the UI in IBM
Rational ...)
+ TODO: check
+CVE-2011-1035 (The password reset in PivotX before 2.2.4 allows remote
attackers to ...)
+ TODO: check
+CVE-2011-1036 (The XML Security Database Parser class in the XMLSecDB ActiveX
control ...)
+ TODO: check
+CVE-2011-1037
+ RESERVED
+CVE-2011-1038 (Multiple cross-site scripting (XSS) vulnerabilities in
stconf.nsf in ...)
+ TODO: check
+CVE-2011-1039
+ RESERVED
+CVE-2011-1040
+ RESERVED
+CVE-2011-1041
+ RESERVED
+CVE-2011-1042 (Use-after-free vulnerability in flimflamd in flimflam in Google
Chrome ...)
+ TODO: check
+CVE-2011-1043
+ RESERVED
+CVE-2011-1044 (The ib_uverbs_poll_cq function in
drivers/infiniband/core/uverbs_cmd.c ...)
+ TODO: check
+CVE-2011-1045 (Unspecified vulnerability in the Rendition Engine (aka P8RE)
4.0.1 ...)
+ TODO: check
+CVE-2011-1046 (IBM FileNet P8 Content Engine (aka P8CE) 4.0.1 through 5.0.0,
as used ...)
+ TODO: check
+CVE-2011-1047 (Multiple SQL injection vulnerabilities in VastHTML Forum Server
(aka ...)
+ TODO: check
+CVE-2011-1048 (SQL injection vulnerability in product.php in MihanTools 1.33
allows ...)
+ TODO: check
+CVE-2011-1049 (Buffer overflow in the Mach-O input file loader in Hex-Rays IDA
Pro ...)
+ TODO: check
+CVE-2011-1050 (Unspecified vulnerability in Hex-Rays IDA Pro 5.7 and 6.0 has
unknown ...)
+ TODO: check
+CVE-2011-1051 (Integer overflow in the COFF/EPOC/EXPLOAD input file loaders in
...)
+ TODO: check
+CVE-2011-1052 (Integer overflow in the PSX/GEOS input file loaders in Hex-Rays
IDA ...)
+ TODO: check
+CVE-2011-1053 (Unspecified vulnerability in the Mach-O input file loader in
Hex-Rays ...)
+ TODO: check
+CVE-2011-1054 (Unspecified vulnerability in the PEF input file loader in
Hex-Rays IDA ...)
+ TODO: check
+CVE-2011-1055 (SQL injection vulnerability in api/ice_media.cfc in Lingxia
I.C.E CMS ...)
+ TODO: check
+CVE-2011-1056 (The installer for Metasploit Framework 3.5.1, when running on
Windows, ...)
+ TODO: check
+CVE-2011-1057 (The installer for Metasploit Framework 3.5.1, when running on
Windows, ...)
+ TODO: check
+CVE-2011-1058 (Cross-site scripting (XSS) vulnerability in the
reStructuredText (rst) ...)
+ TODO: check
+CVE-2011-1059 (Use-after-free vulnerability in WebCore in WebKit before
r77705, as ...)
+ TODO: check
+CVE-2011-1060 (SQL injection vulnerability in the member function in ...)
+ TODO: check
+CVE-2011-1061 (SQL injection vulnerability in memberlist.php in WSN Guest 1.24
allows ...)
+ TODO: check
+CVE-2011-1062 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
+CVE-2011-1063 (Multiple cross-site scripting (XSS) vulnerabilities in
Cherry-Design ...)
+ TODO: check
+CVE-2011-1064 (SQL injection vulnerability in member/list.php in qibosoft Qi
Bo CMS 7 ...)
+ TODO: check
+CVE-2011-1065 (Multiple stack-based buffer overflows in the PIPIWebPlayer
ActiveX ...)
+ TODO: check
+CVE-2011-1066 (Cross-site scripting (XSS) vulnerability in the Messaging
module ...)
+ TODO: check
+CVE-2011-1067 (slapd (aka ns-slapd) in 389 Directory Server before 1.2.8.a2
does not ...)
+ TODO: check
+CVE-2011-1068 (Microsoft Windows Azure Software Development Kit (SDK) 1.3.x
before ...)
+ TODO: check
+CVE-2011-1069
+ RESERVED
+CVE-2011-1070
+ RESERVED
+CVE-2011-1071
+ RESERVED
+CVE-2011-1072 (The installer in PEAR before 1.9.2 allows local users to
overwrite ...)
+ TODO: check
+CVE-2011-1073 (crontab.c in crontab in FreeBSD and Apple Mac OS X allows local
users ...)
+ TODO: check
+CVE-2011-1074 (crontab.c in crontab in FreeBSD allows local users to determine
the ...)
+ TODO: check
+CVE-2011-1075
+ RESERVED
+CVE-2011-1076
+ RESERVED
+CVE-2011-1077
+ RESERVED
+CVE-2011-1078
+ RESERVED
+CVE-2011-1079
+ RESERVED
+CVE-2011-1080
+ RESERVED
+CVE-2011-1081 (modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote
...)
+ TODO: check
+CVE-2011-1082
+ RESERVED
+CVE-2011-1083
+ RESERVED
+CVE-2011-1084
+ RESERVED
+CVE-2011-1085
+ RESERVED
+CVE-2011-1086
+ RESERVED
+CVE-2011-1087
+ RESERVED
+CVE-2011-1088 (Apache Tomcat 7.x before 7.0.10 does not follow ServletSecurity
...)
+ TODO: check
+CVE-2011-1089
+ RESERVED
+CVE-2011-1090
+ RESERVED
+CVE-2011-1091 (libymsg.c in the Yahoo! protocol plugin in libpurple in Pidgin
2.6.0 ...)
+ TODO: check
+CVE-2011-1092 (Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6
allows ...)
+ TODO: check
+CVE-2011-1093
+ RESERVED
+CVE-2011-1094 (kio/kio/tcpslavebase.cpp in KDE KSSL in kdelibs before 4.6.1
does not ...)
+ TODO: check
+CVE-2011-1095
+ RESERVED
+CVE-2011-1096
+ RESERVED
+CVE-2011-1097
+ RESERVED
+CVE-2011-1098
+ RESERVED
+CVE-2011-1099 (Multiple directory traversal vulnerabilities in FocalMedia.Net
Quick ...)
+ TODO: check
+CVE-2011-1100 (Multiple SQL injection vulnerabilities in admin/index.php in
Pixelpost ...)
+ TODO: check
+CVE-2011-1101 (Multiple unspecified vulnerabilities in a third-party component
of the ...)
+ TODO: check
+CVE-2011-1102 (Cross-site scripting (XSS) vulnerability in the WebReporting
module in ...)
+ TODO: check
+CVE-2011-1103 (The WebReporting module in F-Secure Policy Manager 7.x, 8.00
before ...)
+ TODO: check
+CVE-2011-1104 (Multiple cross-site request forgery (CSRF) vulnerabilities in
Mutare ...)
+ TODO: check
+CVE-2011-1105 (Multiple cross-site scripting (XSS) vulnerabilities in Mutare
EVM ...)
+ TODO: check
+CVE-2011-1106 (Cross-site scripting (XSS) vulnerability in stcenter.nsf in the
server ...)
+ TODO: check
+CVE-2011-1107 (Unspecified vulnerability in Google Chrome before 9.0.597.107
allows ...)
+ TODO: check
+CVE-2011-1108 (Google Chrome before 9.0.597.107 does not properly implement
...)
+ TODO: check
+CVE-2011-1109 (Google Chrome before 9.0.597.107 does not properly process
nodes in ...)
+ TODO: check
+CVE-2011-1110 (Google Chrome before 9.0.597.107 does not properly implement
key frame ...)
+ TODO: check
+CVE-2011-1111 (Google Chrome before 9.0.597.107 does not properly implement
forms ...)
+ TODO: check
+CVE-2011-1112 (Google Chrome before 9.0.597.107 does not properly perform SVG
...)
+ TODO: check
+CVE-2011-1113 (Google Chrome before 9.0.597.107 on 64-bit Linux platforms does
not ...)
+ TODO: check
+CVE-2011-1114 (Google Chrome before 9.0.597.107 does not properly handle
tables, ...)
+ TODO: check
+CVE-2011-1115 (Google Chrome before 9.0.597.107 does not properly render
tables, ...)
+ TODO: check
+CVE-2011-1116 (Google Chrome before 9.0.597.107 does not properly handle SVG
...)
+ TODO: check
+CVE-2011-1117 (Google Chrome before 9.0.597.107 does not properly handle XHTML
...)
+ TODO: check
+CVE-2011-1118 (Google Chrome before 9.0.597.107 does not properly handle
TEXTAREA ...)
+ TODO: check
+CVE-2011-1119 (Google Chrome before 9.0.597.107 does not properly determine
device ...)
+ TODO: check
+CVE-2011-1120 (The WebGL implementation in Google Chrome before 9.0.597.107
allows ...)
+ TODO: check
+CVE-2011-1121 (Integer overflow in Google Chrome before 9.0.597.107 allows
remote ...)
+ TODO: check
+CVE-2011-1122 (The WebGL implementation in Google Chrome before 9.0.597.107
allows ...)
+ TODO: check
+CVE-2011-1123 (Google Chrome before 9.0.597.107 does not properly restrict
access to ...)
+ TODO: check
+CVE-2011-1124 (Use-after-free vulnerability in Google Chrome before
9.0.597.107 ...)
+ TODO: check
+CVE-2011-1125 (Google Chrome before 9.0.597.107 does not properly perform
layout, ...)
+ TODO: check
+CVE-2011-1126
+ RESERVED
+CVE-2011-1127
+ RESERVED
+CVE-2011-1128
+ RESERVED
+CVE-2011-1129
+ RESERVED
+CVE-2011-1130
+ RESERVED
+CVE-2011-1131
+ RESERVED
+CVE-2011-1132
+ RESERVED
+CVE-2011-1133
+ RESERVED
+CVE-2011-1134
+ RESERVED
+CVE-2011-1135
+ RESERVED
+CVE-2011-1136
+ RESERVED
+CVE-2011-1137 (Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD
1.3.3d ...)
+ TODO: check
+CVE-2011-1138 (Off-by-one error in the dissect_6lowpan_iphc function in ...)
+ TODO: check
+CVE-2011-1139 (wiretap/pcapng.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0
through ...)
+ TODO: check
+CVE-2011-1140 (Multiple stack consumption vulnerabilities in the ...)
+ TODO: check
+CVE-2011-1141 (epan/dissectors/packet-ldap.c in Wireshark 1.0.x, 1.2.0 through
...)
+ TODO: check
+CVE-2011-1142 (Stack consumption vulnerability in the dissect_ber_choice
function in ...)
+ TODO: check
+CVE-2011-1143 (epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in
Wireshark ...)
+ TODO: check
+CVE-2011-1144 (The installer in PEAR 1.9.2 and earlier allows local users to
...)
+ TODO: check
+CVE-2011-1145
+ RESERVED
+CVE-2011-1146 (libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly
...)
+ TODO: check
+CVE-2011-1147 (Multiple stack-based and heap-based buffer overflows in the (1)
...)
+ TODO: check
+CVE-2011-1148 (Use-after-free vulnerability in the substr_replace function in
PHP ...)
+ TODO: check
+CVE-2011-1149
+ RESERVED
+CVE-2011-1150
+ RESERVED
+CVE-2011-1151
+ RESERVED
+CVE-2011-1152
+ RESERVED
+CVE-2011-1153 (Multiple format string vulnerabilities in phar_object.c in the
phar ...)
+ TODO: check
+CVE-2011-1154
+ RESERVED
+CVE-2011-1155
+ RESERVED
+CVE-2011-1156
+ RESERVED
+CVE-2011-1157
+ RESERVED
+CVE-2011-1158
+ RESERVED
+CVE-2011-1159
+ RESERVED
+CVE-2011-1160
+ RESERVED
+CVE-2011-1161
+ RESERVED
+CVE-2011-1162
+ RESERVED
+CVE-2011-1163
+ RESERVED
+CVE-2011-1164
+ RESERVED
+CVE-2011-1165
+ RESERVED
+CVE-2011-1166
+ RESERVED
+CVE-2011-1167
+ RESERVED
+CVE-2011-1168
+ RESERVED
+CVE-2011-1169
+ RESERVED
+CVE-2011-1170
+ RESERVED
+CVE-2011-1171
+ RESERVED
+CVE-2011-1172
+ RESERVED
+CVE-2011-1173
+ RESERVED
+CVE-2011-1174
+ RESERVED
+CVE-2011-1175
+ RESERVED
+CVE-2011-1176
+ RESERVED
+CVE-2011-1177
+ RESERVED
+CVE-2011-1178
+ RESERVED
+CVE-2011-1179
+ RESERVED
+CVE-2011-1180
+ RESERVED
+CVE-2011-1181
+ RESERVED
+CVE-2011-1182
+ RESERVED
+CVE-2011-1183
+ RESERVED
+CVE-2011-1184
+ RESERVED
+CVE-2011-1185 (Google Chrome before 10.0.648.127 does not prevent (1)
navigation and ...)
+ TODO: check
+CVE-2011-1186 (Google Chrome before 10.0.648.127 on Linux does not properly
handle ...)
+ TODO: check
+CVE-2011-1187 (Google Chrome before 10.0.648.127 allows remote attackers to
bypass ...)
+ TODO: check
+CVE-2011-1188 (Google Chrome before 10.0.648.127 does not properly handle
counter ...)
+ TODO: check
+CVE-2011-1189 (Google Chrome before 10.0.648.127 does not properly perform box
...)
+ TODO: check
+CVE-2011-1190 (The Web Workers implementation in Google Chrome before
10.0.648.127 ...)
+ TODO: check
+CVE-2011-1191 (Use-after-free vulnerability in Google Chrome before
10.0.648.127 ...)
+ TODO: check
+CVE-2011-1192 (Google Chrome before 10.0.648.127 on Linux does not properly
handle ...)
+ TODO: check
+CVE-2011-1193 (Google V8, as used in Google Chrome before 10.0.648.127, allows
remote ...)
+ TODO: check
+CVE-2011-1194 (Multiple unspecified vulnerabilities in Google Chrome before
...)
+ TODO: check
+CVE-2011-1195 (Use-after-free vulnerability in Google Chrome before
10.0.648.127 ...)
+ TODO: check
+CVE-2011-1196 (The OGG container implementation in Google Chrome before
10.0.648.127 ...)
+ TODO: check
+CVE-2011-1197 (Google Chrome before 10.0.648.127 does not properly perform
table ...)
+ TODO: check
+CVE-2011-1198 (The video functionality in Google Chrome before 10.0.648.127
allows ...)
+ TODO: check
+CVE-2011-1199 (Google Chrome before 10.0.648.127 does not properly handle
DataView ...)
+ TODO: check
+CVE-2011-1200 (Google Chrome before 10.0.648.127 does not properly perform a
cast of ...)
+ TODO: check
+CVE-2011-1201 (The context implementation in WebKit, as used in Google Chrome
before ...)
+ TODO: check
+CVE-2011-1202 (Unspecified vulnerability in the XSLT implementation in Google
Chrome ...)
+ TODO: check
+CVE-2011-1203 (Google Chrome before 10.0.648.127 does not properly handle SVG
...)
+ TODO: check
+CVE-2011-1204 (Google Chrome before 10.0.648.127 does not properly handle
attributes, ...)
+ TODO: check
+CVE-2011-1205
+ RESERVED
+CVE-2011-1206
+ RESERVED
+CVE-2011-1207
+ RESERVED
+CVE-2011-1208
+ RESERVED
+CVE-2011-1209
+ RESERVED
+CVE-2011-1210
+ RESERVED
+CVE-2011-1211
+ RESERVED
+CVE-2011-1212
+ RESERVED
+CVE-2011-1213
+ RESERVED
+CVE-2011-1214
+ RESERVED
+CVE-2011-1215
+ RESERVED
+CVE-2011-1216
+ RESERVED
+CVE-2011-1217
+ RESERVED
+CVE-2011-1218
+ RESERVED
+CVE-2011-1219
+ RESERVED
+CVE-2011-1220
+ RESERVED
+CVE-2011-1221
+ RESERVED
+CVE-2011-1222
+ RESERVED
+CVE-2011-1223
+ RESERVED
+CVE-2011-1224
+ RESERVED
+CVE-2011-1225
+ RESERVED
+CVE-2011-1226
+ RESERVED
+CVE-2011-1227
+ RESERVED
+CVE-2011-1228
+ RESERVED
+CVE-2011-1229
+ RESERVED
+CVE-2011-1230
+ RESERVED
+CVE-2011-1231
+ RESERVED
+CVE-2011-1232
+ RESERVED
+CVE-2011-1233
+ RESERVED
+CVE-2011-1234
+ RESERVED
+CVE-2011-1235
+ RESERVED
+CVE-2011-1236
+ RESERVED
+CVE-2011-1237
+ RESERVED
+CVE-2011-1238
+ RESERVED
+CVE-2011-1239
+ RESERVED
+CVE-2011-1240
+ RESERVED
+CVE-2011-1241
+ RESERVED
+CVE-2011-1242
+ RESERVED
+CVE-2011-1243
+ RESERVED
+CVE-2011-1244
+ RESERVED
+CVE-2011-1245
+ RESERVED
+CVE-2011-1246
+ RESERVED
+CVE-2011-1247
+ RESERVED
+CVE-2011-1248
+ RESERVED
+CVE-2011-1249
+ RESERVED
+CVE-2011-1250
+ RESERVED
+CVE-2011-1251
+ RESERVED
+CVE-2011-1252
+ RESERVED
+CVE-2011-1253
+ RESERVED
+CVE-2011-1254
+ RESERVED
+CVE-2011-1255
+ RESERVED
+CVE-2011-1256
+ RESERVED
+CVE-2011-1257
+ RESERVED
+CVE-2011-1258
+ RESERVED
+CVE-2011-1259
+ RESERVED
+CVE-2011-1260
+ RESERVED
+CVE-2011-1261
+ RESERVED
+CVE-2011-1262
+ RESERVED
+CVE-2011-1263
+ RESERVED
+CVE-2011-1264
+ RESERVED
+CVE-2011-1265
+ RESERVED
+CVE-2011-1266
+ RESERVED
+CVE-2011-1267
+ RESERVED
+CVE-2011-1268
+ RESERVED
+CVE-2011-1269
+ RESERVED
+CVE-2011-1270
+ RESERVED
+CVE-2011-1271
+ RESERVED
+CVE-2011-1272
+ RESERVED
+CVE-2011-1273
+ RESERVED
+CVE-2011-1274
+ RESERVED
+CVE-2011-1275
+ RESERVED
+CVE-2011-1276
+ RESERVED
+CVE-2011-1277
+ RESERVED
+CVE-2011-1278
+ RESERVED
+CVE-2011-1279
+ RESERVED
+CVE-2011-1280
+ RESERVED
+CVE-2011-1281
+ RESERVED
+CVE-2011-1282
+ RESERVED
+CVE-2011-1283
+ RESERVED
+CVE-2011-1284
+ RESERVED
+CVE-2011-1285 (The regular-expression functionality in Google Chrome before
...)
+ TODO: check
+CVE-2011-1286 (Google V8, as used in Google Chrome before 10.0.648.127, allows
remote ...)
+ TODO: check
+CVE-2011-1287
+ RESERVED
+CVE-2011-1288
+ RESERVED
+CVE-2011-1289
+ RESERVED
+CVE-2011-1290 (Integer overflow in WebKit, as used on the Research In Motion
(RIM) ...)
+ TODO: check
+CVE-2011-1291 (Google Chrome before 10.0.648.204 does not properly handle base
...)
+ TODO: check
+CVE-2011-1292 (Use-after-free vulnerability in the frame-loader implementation
in ...)
+ TODO: check
+CVE-2011-1293 (Use-after-free vulnerability in the HTMLCollection
implementation in ...)
+ TODO: check
+CVE-2011-1294 (Google Chrome before 10.0.648.204 does not properly handle
Cascading ...)
+ TODO: check
+CVE-2011-1295 (Google Chrome before 10.0.648.204 does not properly handle node
...)
+ TODO: check
+CVE-2011-1296 (Google Chrome before 10.0.648.204 does not properly handle SVG
text, ...)
+ TODO: check
+CVE-2011-1297
+ RESERVED
+CVE-2011-1298
+ RESERVED
+CVE-2011-1299
+ RESERVED
+CVE-2011-1300
+ RESERVED
+CVE-2011-1301
+ RESERVED
+CVE-2011-1302
+ RESERVED
+CVE-2011-1303
+ RESERVED
+CVE-2011-1304
+ RESERVED
+CVE-2011-1305
+ RESERVED
+CVE-2011-1306 (Unspecified vulnerability in the Scratchpad application in
Google ...)
+ TODO: check
+CVE-2011-1307 (The installer in IBM WebSphere Application Server (WAS) before
...)
+ TODO: check
+CVE-2011-1308 (Cross-site scripting (XSS) vulnerability in the Installation
...)
+ TODO: check
+CVE-2011-1309 (The Plug-in component in IBM WebSphere Application Server (WAS)
before ...)
+ TODO: check
+CVE-2011-1310 (The Administrative Scripting Tools component in IBM WebSphere
...)
+ TODO: check
+CVE-2011-1311 (The Security component in IBM WebSphere Application Server
(WAS) ...)
+ TODO: check
+CVE-2011-1312 (The Administrative Console component in IBM WebSphere
Application ...)
+ TODO: check
+CVE-2011-1313 (Double free vulnerability in IBM WebSphere Application Server
(WAS) ...)
+ TODO: check
+CVE-2011-1314 (The Service Integration Bus (SIB) messaging engine in IBM
WebSphere ...)
+ TODO: check
+CVE-2011-1315 (Memory leak in the messaging engine in IBM WebSphere
Application ...)
+ TODO: check
+CVE-2011-1316 (The Session Initiation Protocol (SIP) Proxy in the HTTP
Transport ...)
+ TODO: check
+CVE-2011-1317 (Memory leak in com.ibm.ws.jsp.runtime.WASJSPStrBufferImpl in
the ...)
+ TODO: check
+CVE-2011-1318 (Memory leak in org.apache.jasper.runtime.JspWriterImpl.response
in the ...)
+ TODO: check
+CVE-2011-1319 (The Security component in IBM WebSphere Application Server
(WAS) ...)
+ TODO: check
+CVE-2011-1320 (The Security component in IBM WebSphere Application Server
(WAS) ...)
+ TODO: check
+CVE-2011-1321 (The AuthCache purge implementation in the Security component in
IBM ...)
+ TODO: check
+CVE-2011-1322 (The SOAP with Attachments API for Java (SAAJ) implementation in
the ...)
+ TODO: check
+CVE-2011-1323
+ RESERVED
+CVE-2011-1324
+ RESERVED
+CVE-2011-1325
+ RESERVED
+CVE-2011-1326
+ RESERVED
+CVE-2011-1327
+ RESERVED
+CVE-2011-1328
+ RESERVED
+CVE-2011-1329
+ RESERVED
+CVE-2011-1330
+ RESERVED
+CVE-2011-1331
+ RESERVED
+CVE-2011-1332
+ RESERVED
+CVE-2011-1333
+ RESERVED
+CVE-2011-1334
+ RESERVED
+CVE-2011-1335
+ RESERVED
+CVE-2011-1336
+ RESERVED
+CVE-2011-1337
+ RESERVED
+CVE-2011-1338
+ RESERVED
+CVE-2011-1339
+ RESERVED
+CVE-2011-1340
+ RESERVED
+CVE-2011-1341
+ RESERVED
+CVE-2011-1342
+ RESERVED
+CVE-2011-1343 (SQL injection vulnerability in the Web GUI in IBM Tivoli ...)
+ TODO: check
+CVE-2011-1344 (Unspecified vulnerability in WebKit, as used in Apple Safari
5.0.4 on ...)
+ TODO: check
+CVE-2011-1345 (Unspecified vulnerability in Microsoft Internet Explorer 8 on
Windows ...)
+ TODO: check
+CVE-2011-1346 (Unspecified vulnerability in Microsoft Internet Explorer 8 on
Windows ...)
+ TODO: check
+CVE-2011-1347 (Unspecified vulnerability in Microsoft Internet Explorer 8 on
Windows ...)
+ TODO: check
+CVE-2011-1348
+ RESERVED
+CVE-2011-1349
+ RESERVED
+CVE-2011-1350
+ RESERVED
+CVE-2011-1351
+ RESERVED
+CVE-2011-1352
+ RESERVED
+CVE-2011-1353
+ RESERVED
+CVE-2011-1354
+ RESERVED
+CVE-2011-1355
+ RESERVED
+CVE-2011-1356
+ RESERVED
+CVE-2011-1357
+ RESERVED
+CVE-2011-1358
+ RESERVED
+CVE-2011-1359
+ RESERVED
+CVE-2011-1360
+ RESERVED
+CVE-2011-1361
+ RESERVED
+CVE-2011-1362
+ RESERVED
+CVE-2011-1363
+ RESERVED
+CVE-2011-1364
+ RESERVED
+CVE-2011-1365
+ RESERVED
+CVE-2011-1366
+ RESERVED
+CVE-2011-1367
+ RESERVED
+CVE-2011-1368
+ RESERVED
+CVE-2011-1369
+ RESERVED
+CVE-2011-1370
+ RESERVED
+CVE-2011-1371
+ RESERVED
+CVE-2011-1372
+ RESERVED
+CVE-2011-1373
+ RESERVED
+CVE-2011-1374
+ RESERVED
+CVE-2011-1375
+ RESERVED
+CVE-2011-1376
+ RESERVED
+CVE-2011-1377
+ RESERVED
+CVE-2011-1378
+ RESERVED
+CVE-2011-1379
+ RESERVED
+CVE-2011-1380
+ RESERVED
+CVE-2011-1381
+ RESERVED
+CVE-2011-1382
+ RESERVED
+CVE-2011-1383
+ RESERVED
+CVE-2011-1384
+ RESERVED
+CVE-2011-1385
+ RESERVED
+CVE-2011-1386
+ RESERVED
+CVE-2011-1387
+ RESERVED
+CVE-2011-1388
+ RESERVED
+CVE-2011-1389
+ RESERVED
+CVE-2011-1390
+ RESERVED
+CVE-2011-1391
+ RESERVED
+CVE-2011-1392
+ RESERVED
+CVE-2011-1393
+ RESERVED
+CVE-2011-1394
+ RESERVED
+CVE-2011-1395
+ RESERVED
+CVE-2011-1396
+ RESERVED
+CVE-2011-1397
+ RESERVED
+CVE-2011-1398
+ RESERVED
+CVE-2011-1399
+ RESERVED
+CVE-2011-1400 (The default configuration of the shell_escape_commands
directive in ...)
+ TODO: check
+CVE-2011-1401
+ RESERVED
+CVE-2011-1402
+ RESERVED
+CVE-2011-1403
+ RESERVED
+CVE-2011-1404
+ RESERVED
+CVE-2011-1405
+ RESERVED
+CVE-2011-1406
+ RESERVED
+CVE-2011-1407
+ RESERVED
+CVE-2011-1408
+ RESERVED
+CVE-2011-1409
+ RESERVED
+CVE-2011-1410
+ RESERVED
+CVE-2011-1411
+ RESERVED
+CVE-2011-1412
+ RESERVED
+CVE-2011-1413 (Google Chrome before 10.0.648.127 on Linux does not properly
mitigate ...)
+ TODO: check
+CVE-2011-1414 (Cross-site scripting (XSS) vulnerability in the tibbr web
server, as ...)
+ TODO: check
+CVE-2011-1415
+ REJECTED
+ TODO: check
+CVE-2011-1416 (The Research In Motion (RIM) BlackBerry Torch 9800 with
firmware ...)
+ TODO: check
+CVE-2011-1417 (QuickLook, as used in Apple Mac OS X before 10.6.7 and
MobileSafari in ...)
+ TODO: check
+CVE-2011-1418 (The stateless address autoconfiguration (aka SLAAC)
functionality in ...)
+ TODO: check
+CVE-2011-1419 (Apache Tomcat 7.x before 7.0.11, when web.xml has no security
...)
+ TODO: check
+CVE-2011-1420
+ RESERVED
+CVE-2011-1421
+ RESERVED
+CVE-2011-1422
+ RESERVED
+CVE-2011-1423
+ RESERVED
+CVE-2011-1424
+ RESERVED
+CVE-2011-1425
+ RESERVED
+CVE-2011-1426
+ RESERVED
+CVE-2011-1427 (Multiple cross-site scripting (XSS) vulnerabilities in Kodak
InSite ...)
+ TODO: check
+CVE-2011-1428 (Wee Enhanced Environment for Chat (aka WeeChat) 0.3.4 and
earlier does ...)
+ TODO: check
+CVE-2011-1429 (Mutt does not verify that the smtps server hostname matches the
domain ...)
+ TODO: check
+CVE-2011-1430 (The STARTTLS implementation in the server in Ipswitch IMail
11.03 and ...)
+ TODO: check
+CVE-2011-1431 (The STARTTLS implementation in qmail-smtpd.c in qmail-smtpd in
the ...)
+ TODO: check
+CVE-2011-1432 (The STARTTLS implementation in SCO SCOoffice Server does not
properly ...)
+ TODO: check
+CVE-2011-1433 (The (1) AgentInterface and (2) CustomerInterface components in
Open ...)
+ TODO: check
+CVE-2011-1434
+ RESERVED
+CVE-2011-1435
+ RESERVED
+CVE-2011-1436
+ RESERVED
+CVE-2011-1437
+ RESERVED
+CVE-2011-1438
+ RESERVED
+CVE-2011-1439
+ RESERVED
+CVE-2011-1440
+ RESERVED
+CVE-2011-1441
+ RESERVED
+CVE-2011-1442
+ RESERVED
+CVE-2011-1443
+ RESERVED
+CVE-2011-1444
+ RESERVED
+CVE-2011-1445
+ RESERVED
+CVE-2011-1446
+ RESERVED
+CVE-2011-1447
+ RESERVED
+CVE-2011-1448
+ RESERVED
+CVE-2011-1449
+ RESERVED
+CVE-2011-1450
+ RESERVED
+CVE-2011-1451
+ RESERVED
+CVE-2011-1452
+ RESERVED
+CVE-2011-1453
+ RESERVED
+CVE-2011-1454
+ RESERVED
+CVE-2011-1455
+ RESERVED
+CVE-2011-1456
+ RESERVED
+CVE-2011-1457
+ RESERVED
+CVE-2011-1458
+ RESERVED
+CVE-2011-1459
+ RESERVED
+CVE-2011-1460
+ RESERVED
+CVE-2011-1461
+ RESERVED
+CVE-2011-1462
+ RESERVED
+CVE-2011-1463
+ RESERVED
+CVE-2011-1464 (Buffer overflow in the strval function in PHP before 5.3.6,
when the ...)
+ TODO: check
+CVE-2011-1465 (The SPDY implementation in net/http/http_network_transaction.cc
in ...)
+ TODO: check
+CVE-2011-1466 (Integer overflow in the SdnToJulian function in the Calendar
extension ...)
+ TODO: check
+CVE-2011-1467 (Unspecified vulnerability in the NumberFormatter::setSymbol
(aka ...)
+ TODO: check
+CVE-2011-1468 (Multiple memory leaks in the OpenSSL extension in PHP before
5.3.6 ...)
+ TODO: check
+CVE-2011-1469 (Unspecified vulnerability in the Streams component in PHP
before 5.3.6 ...)
+ TODO: check
+CVE-2011-1470 (The Zip extension in PHP before 5.3.6 allows context-dependent
...)
+ TODO: check
+CVE-2011-1471 (Integer signedness error in zip_stream.c in the Zip extension
in PHP ...)
+ TODO: check
+CVE-2011-1472
+ RESERVED
+CVE-2011-1473
+ RESERVED
+CVE-2011-1474
+ RESERVED
+CVE-2011-1475
+ RESERVED
+CVE-2011-1476
+ RESERVED
+CVE-2011-1477
+ RESERVED
+CVE-2011-1478
+ RESERVED
+CVE-2011-1479
+ RESERVED
+CVE-2011-1480
+ RESERVED
+CVE-2011-1481
+ RESERVED
+CVE-2011-1482
+ RESERVED
+CVE-2011-1483
+ RESERVED
+CVE-2011-1484
+ RESERVED
+CVE-2011-1485
+ RESERVED
+CVE-2011-1486
+ RESERVED
+CVE-2011-1487
+ RESERVED
+CVE-2011-1488
+ RESERVED
+CVE-2011-1489
+ RESERVED
+CVE-2011-1490
+ RESERVED
+CVE-2011-1491
+ RESERVED
+CVE-2011-1492
+ RESERVED
+CVE-2011-1493
+ RESERVED
+CVE-2011-1494
+ RESERVED
+CVE-2011-1495
+ RESERVED
+CVE-2011-1496
+ RESERVED
+CVE-2011-1497
+ RESERVED
+CVE-2011-1498
+ RESERVED
+CVE-2011-1499
+ RESERVED
+CVE-2011-1500
+ RESERVED
+CVE-2011-1501
+ RESERVED
+CVE-2011-1502
+ RESERVED
+CVE-2011-1503
+ RESERVED
+CVE-2011-1504
+ RESERVED
+CVE-2011-1505 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before
8.1.0.27 ...)
+ TODO: check
+CVE-2011-1506 (The STARTTLS implementation in Kerio Connect 7.1.4 build 2985
and ...)
+ TODO: check
+CVE-2011-1507
+ RESERVED
+CVE-2011-1508
+ RESERVED
+CVE-2011-1509
+ RESERVED
+CVE-2011-1510
+ RESERVED
+CVE-2011-1511
+ RESERVED
+CVE-2011-1512
+ RESERVED
+CVE-2011-1513
+ RESERVED
+CVE-2011-1514
+ RESERVED
+CVE-2011-1515
+ RESERVED
+CVE-2011-1516
+ RESERVED
+CVE-2011-1517
+ RESERVED
+CVE-2011-1519 (The remote console in the Server Controller in IBM Lotus Domino
7.x and ...)
+ TODO: check
+CVE-2011-1520 (The default configuration of the server console in IBM Lotus
Domino ...)
+ TODO: check
