[Secure-testing-commits] r5158 - data/CVE

Fri, 22 Dec 2006 00:14:24 -0800 

Author: joeyh
Date: 2006-12-22 09:14:17 +0100 (Fri, 22 Dec 2006)
New Revision: 5158

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2006-12-21 19:50:16 UTC (rev 5157)
+++ data/CVE/list       2006-12-22 08:14:17 UTC (rev 5158)
@@ -1,3 +1,85 @@
+CVE-2006-6697 (CRLF injection vulnerability in webapp/jsp/calendar.jsp in 
Oracle ...)
+       TODO: check
+CVE-2006-6696 (Double-free vulnerability in Microsoft Windows 2000, XP, 2003, 
and ...)
+       TODO: check
+CVE-2006-6695 (Multiple cross-site scripting (XSS) vulnerabilities in 
index.php in ...)
+       TODO: check
+CVE-2006-6694 (Directory traversal vulnerability in include/config.php in 
E-Uploader ...)
+       TODO: check
+CVE-2006-6693 (Multiple buffer overflows in zabbix before 20061006 allow 
attackers to ...)
+       TODO: check
+CVE-2006-6692 (Multiple format string vulnerabilities in zabbix before 
20061006 allow ...)
+       TODO: check
+CVE-2006-6691 (Multiple PHP remote file inclusion vulnerabilities in 
Valdersoft ...)
+       TODO: check
+CVE-2006-6690 (rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0 
through ...)
+       TODO: check
+CVE-2006-6689 (Multiple PHP remote file inclusion vulnerabilities in Paristemi 
0.8.3 ...)
+       TODO: check
+CVE-2006-6688 (Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 
Network ...)
+       TODO: check
+CVE-2006-6687 (Cross-site scripting (XSS) vulnerability in Web Automated Perl 
Portal ...)
+       TODO: check
+CVE-2006-6686 (PHP remote file inclusion vulnerability in sender.php in Carsen 
Klock ...)
+       TODO: check
+CVE-2006-6685 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 
2.3.3 ...)
+       TODO: check
+CVE-2006-6684 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 
before 2.4 ...)
+       TODO: check
+CVE-2006-6683 (Pedro Lineu Orso chetcpasswd 2.4.1 and earlier verifies and 
updates ...)
+       TODO: check
+CVE-2006-6682 (Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error 
message ...)
+       TODO: check
+CVE-2006-6681 (Pedro Lineu Orso chetcpasswd 2.3.3 does not have a rate limit 
for ...)
+       TODO: check
+CVE-2006-6680 (Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the 
need ...)
+       TODO: check
+CVE-2006-6679 (Pedro Lineu Orso chetcpasswd before 2.4 relies on the 
X-Forwarded-For ...)
+       TODO: check
+CVE-2006-6678 (The edit_textarea function in form-file.c in Netrik 1.15.4 and 
earlier ...)
+       TODO: check
+CVE-2006-6677 (ESET NOD32 Antivirus before 1.1743 allows remote attackers to 
cause a ...)
+       TODO: check
+CVE-2006-6676 (Integer overflow in ESET NOD32 Antivirus before 1.1743 allows 
remote ...)
+       TODO: check
+CVE-2006-6675 (Cross-site scripting (XSS) vulnerability in Novell NetWare 6.5 
Support ...)
+       TODO: check
+CVE-2006-6674 (Ozeki HTTP-SMS Gateway 1.0, and possibly earlier, stores 
usernames and ...)
+       TODO: check
+CVE-2006-6673 (WinFtp Server 2.0.2 allows remote attackers to cause a denial 
of ...)
+       TODO: check
+CVE-2006-6672 (Multiple SQL injection vulnerabilities in Burak Yylmaz Download 
Portal ...)
+       TODO: check
+CVE-2006-6671 (SQL injection vulnerability in down.asp in Burak Yylmaz 
Download ...)
+       TODO: check
+CVE-2006-6670 (Unspecified vulnerability in Nortel CallPilot 4.x Server has 
unknown ...)
+       TODO: check
+CVE-2006-6669 (Cross-site scripting (XSS) vulnerability in export_handler.php 
in ...)
+       TODO: check
+CVE-2006-6668 (Cross-site scripting (XSS) vulnerability in VerliAdmin 0.3 and 
earlier ...)
+       TODO: check
+CVE-2006-6667 (Multiple SQL injection vulnerabilities in VerliAdmin 0.3 and 
earlier ...)
+       TODO: check
+CVE-2006-6666 (PHP remote file inclusion vulnerability in index.php in 
VerliAdmin 0.3 ...)
+       TODO: check
+CVE-2006-6665 (Buffer overflow in Astonsoft DeepBurner Pro and Free 1.8.0 and 
earlier ...)
+       TODO: check
+CVE-2006-6664 (Format string vulnerability in Marathon Aleph One before 0.17.1 
and ...)
+       TODO: check
+CVE-2006-6663 (The server component in Marathon Aleph One before 0.17.1 and 
...)
+       TODO: check
+CVE-2006-6662 (Unspecified vulnerability in Linux User Management (novell-lum) 
on ...)
+       TODO: check
+CVE-2006-6661 (Variable overwrite vulnerability in blog.php in PHP-Update 2.7 
and ...)
+       TODO: check
+CVE-2006-6660 (The nodeType function in KDE libkhtml 4.2.0 and earlier, as 
used by ...)
+       TODO: check
+CVE-2002-2221 (Untrusted search path vulnerability in Pedro Lineu Orso 
chetcpasswd ...)
+       TODO: check
+CVE-2002-2220 (Buffer overflow in Pedro Lineu Orso chetcpasswd before 1.12, 
when ...)
+       TODO: check
+CVE-2002-2219 (chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 
allows ...)
+       TODO: check
 CVE-2007-0010
        RESERVED
 CVE-2007-0009
@@ -1276,8 +1358,8 @@
 CVE-2006-6105 (Format string vulnerability in the host chooser window 
(gdmchooser) in ...)
        - gdm 2.16.4-1 (medium; bug #403219)
        [sarge] - gdm <not-affected> (Vulnerable code not present)
-CVE-2006-6104
-       RESERVED
+CVE-2006-6104 (The System.Web class in the XSP for ASP.NET server 1.1 through 
2.0 in ...)
+       TODO: check
 CVE-2006-6103
        RESERVED
 CVE-2006-6102


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to