Author: jmm-guest
Date: 2006-03-22 17:42:49 +0000 (Wed, 22 Mar 2006)
New Revision: 3663
Modified:
data/CVE/list
Log:
new gnome-screensaver issue
new jabberd issue
NFUs
new block
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-03-22 17:36:27 UTC (rev 3662)
+++ data/CVE/list 2006-03-22 17:42:49 UTC (rev 3663)
@@ -1,47 +1,45 @@
CVE-2006-2043 [firebird2 remote DoS]
- firebird2 1.5.3.4870-3 (bug #357580)
-begin claimed by jmm
CVE-2006-1341 (SQL injection vulnerability in events.php in Maian Events 1.0
allows ...)
- TODO: check
+ NOT-FOR-US: Maian Events
CVE-2006-1340 (CuteNews 1.4.1 and possibly other versions allows remote
attackers to ...)
- TODO: check
+ NOT-FOR-US: CuteNews
CVE-2006-1339 (Directory traversal vulnerability in inc/functions.inc.php in
CuteNews ...)
- TODO: check
+ NOT-FOR-US: CuteNews
CVE-2006-1338 (Webmail in MailEnable Professional Edition before 1.73 and
Enterprise ...)
- TODO: check
+ NOT-FOR-US: MailEnable
CVE-2006-1337 (Unspecified vulnerability in the POP service in MailEnable
Standard ...)
- TODO: check
+ NOT-FOR-US: MailEnable
CVE-2006-1336 (Cross-site scripting vulnerability in calendar.php in
ExtCalendar 1.0 ...)
- TODO: check
+ NOT-FOR-US: ExtCalendar
CVE-2006-1335 (gnome screensaver before 2.14, when running on an X server with
...)
- TODO: check
+ - gnome-screensaver <unfixed> (bug #357885)
CVE-2006-1334 (Multiple SQL injection vulnerabilities in Maian Weblog 2.0
allow ...)
- TODO: check
+ NOT-FOR-US: Maian Weblog
CVE-2006-1333 (Multpile SQL injection vulnerabilities in BetaParticle Blog 6.0
and ...)
- TODO: check
+ NOT-FOR-US: BetaParticle Blog
CVE-2006-1332 (Noah's Classifieds 1.3 and earlier allows remote attackers to
obtain ...)
- TODO: check
+ NOT-FOR-US: Noah's Classifieds
CVE-2006-1331 (Multiple cross-site scripting (XSS) vulnerabilities in
index.php in ...)
- TODO: check
+ NOT-FOR-US: Noah's Classifieds
CVE-2006-1330 (Multiple SQL injection vulnerabilities in phpWebsite allow
remote ...)
- TODO: check
+ NOT-FOR-US: phpWebsite
CVE-2006-1329 (The SASL negotiation in Jabber Studio jabberd before 2.0s11
allows ...)
- TODO: check
+ - jabberd2 <unfixed> (bug #357874)
CVE-2006-1328 (SQL injection vulnerability in count.php in Skull-Splitter PHP
...)
- TODO: check
+ NOT-FOR-US: Skull-Splitter PHP
CVE-2006-1327 (SQL injection vulnerability in reg.php in SoftBB 0.1 allows
remote ...)
- TODO: check
+ NOT-FOR-US: SoftBB
CVE-2006-1326 (Multiple cross-site scripting (XSS) vulnerabilities in Invision
Power ...)
- TODO: check
+ NOT-FOR-US: Invision Power Board
CVE-2006-1325 (Cross-site scripting (XSS) vulnerability in Streber 0.055
allows ...)
- TODO: check
+ NOT-FOR-US: Streber
CVE-2006-1324 (Cross-site scripting (XSS) vulnerability in
acp/lib/class_db_mysql.php ...)
- TODO: check
+ NOT-FOR-US: Woltlab Burning Board
CVE-2006-1323 (Directory traversal vulnerability in WinHKI 1.6 and earlier
allows ...)
- TODO: check
+ NOT-FOR-US: WinHKI
CVE-2006-1322 (Novell Netware NWFTPD 5.06.05 allows remote attackers to cause
a ...)
- TODO: check
-end claimed by jmm
+ NOT-FOR-US: Netware
CVE-2006-1318
RESERVED
CVE-2006-1317
@@ -82,6 +80,7 @@
RESERVED
CVE-2006-1299
RESERVED
+begin claimed by jmm
CVE-2006-1298 (Format string vulnerability in the Job Engine service
(bengine.exe) in ...)
TODO: check
CVE-2006-1297 (Unspecified vulnerability in Veritas Backup Exec for Windows
Server ...)
@@ -112,6 +111,7 @@
TODO: check
CVE-2006-1284 (The installation of SQLAnywhere in Symantec Ghost 8.0 and 8.2,
as used ...)
TODO: check
+end claimed by jmm
CVE-2006-1283
RESERVED
CVE-2006-1282 (CRLF injection vulnerability in inc/function.php in
MyBulletinBoard ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
