Author: stef-guest
Date: 2006-02-23 20:43:58 +0000 (Thu, 23 Feb 2006)
New Revision: 3532
Modified:
data/CVE/list
Log:
squirrelmail issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-02-23 14:47:10 UTC (rev 3531)
+++ data/CVE/list 2006-02-23 20:43:58 UTC (rev 3532)
@@ -1076,8 +1076,9 @@
NOT-FOR-US: FreeBSD, possibly affects kfreebsd-5
CVE-2006-0378 (Cross-site scripting (XSS) vulnerability in Netrix X-Site
Manager ...)
NOT-FOR-US: Netrix X-Site Manager
-CVE-2006-0377
+CVE-2006-0377 [squirrelmail IMAP injection]
RESERVED
+ - squirrelmail <unfixed> (bug #354063)
CVE-2006-0376 (The 802.11 wireless client in certain operating systems
including ...)
NOT-FOR-US: Windows
CVE-2006-0375 (Advantage Century Telecommunication (ACT) P202S IP Phone
1.01.21 ...)
@@ -1502,8 +1503,9 @@
- xorg-x11 <unfixed> (bug #349251; low)
CVE-2006-0196 (Unspecified vulnerability in Serial line sniffer (aka slsnif)
0.4.4 ...)
NOT-FOR-US: slsnif
-CVE-2006-0195
+CVE-2006-0195 [squirrelmail XSS]
RESERVED
+ - squirrelmail <unfixed> (bug #354062)
CVE-2006-0194 (Cross-site scripting (XSS) vulnerability in default.asp in
FogBugz ...)
NOT-FOR-US: FogBugz
CVE-2006-0193 (Cross-site scripting (XSS) vulnerability in the Hosting Control
Panel ...)
@@ -1516,8 +1518,9 @@
NOT-FOR-US: Sun Solaris
CVE-2006-0189 (Buffer overflow in eStara Softphone 3.0.1.14 through 3.0.1.46
allows ...)
NOT-FOR-US: eStara Softphone
-CVE-2006-0188
+CVE-2006-0188 [squirrelmail XSS]
RESERVED
+ - squirrelmail <unfixed> (bug #354064)
CVE-2005-4664 (SQL injection vulnerability in OcoMon 1.21, and possibly other
...)
NOT-FOR-US: OcoMon
CVE-2005-4663 (Cross-site scripting (XSS) vulnerability in OcoMon 1.20, and
possibly ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
