Author: joeyh
Date: 2007-06-22 21:14:09 +0000 (Fri, 22 Jun 2007)
New Revision: 6046
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-06-22 15:03:20 UTC (rev 6045)
+++ data/CVE/list 2007-06-22 21:14:09 UTC (rev 6046)
@@ -1,3 +1,105 @@
+CVE-2007-3371 (PHP remote file inclusion vulnerability in ...)
+ TODO: check
+CVE-2007-3370 (Multiple PHP remote file inclusion vulnerabilities in Sun Board
...)
+ TODO: check
+CVE-2007-3369 (Buffer overflow in the Polycom SoundPoint IP 601 SIP phone with
...)
+ TODO: check
+CVE-2007-3368 (Buffer overflow in the HTTP server on the Polycom SoundPoint IP
601 ...)
+ TODO: check
+CVE-2007-3367 (Simple CGI Wrapper (scgiwrap) in cPanel before 10.9.1, and 11.x
before ...)
+ TODO: check
+CVE-2007-3366 (Cross-site scripting (XSS) vulnerability in Simple CGI Wrapper
...)
+ TODO: check
+CVE-2007-3365 (MyServer 0.8.9 and earlier does not properly handle uppercase
...)
+ TODO: check
+CVE-2007-3364 (Cross-site scripting (XSS) vulnerability in the
cgi-bin/post.mscgi ...)
+ TODO: check
+CVE-2007-3363 (Multiple unspecified vulnerabilities in ageet AGEphone before
1.6.3 ...)
+ TODO: check
+CVE-2007-3362 (ageet AGEphone before 1.6.2, running on Windows Mobile 5 on the
HTC ...)
+ TODO: check
+CVE-2007-3361 (The Nortel PC Client SIP Soft Phone 4.1 3.5.208[20051015]
allows ...)
+ TODO: check
+CVE-2007-3360 (hook.c in BitchX 1.1-final allows remote IRC servers to execute
...)
+ TODO: check
+CVE-2007-3359 (Multiple PHP remote file inclusion vulnerabilities in SerWeb
0.9.6 and ...)
+ TODO: check
+CVE-2007-3358 (PHP remote file inclusion vulnerability in html/load_lang.php
in ...)
+ TODO: check
+CVE-2007-3357 (NetClassifieds Premium Edition does not use encryption for (1)
stored ...)
+ TODO: check
+CVE-2007-3356 (NetClassifieds Premium Edition allows remote attackers to
obtain ...)
+ TODO: check
+CVE-2007-3355 (Multiple cross-site scripting (XSS) vulnerabilities in
NetClassifieds ...)
+ TODO: check
+CVE-2007-3354 (Multiple SQL injection vulnerabilities in NetClassifieds
Premium ...)
+ TODO: check
+CVE-2007-3353 (** DISPUTED ** ...)
+ TODO: check
+CVE-2007-3352 (Cross-site scripting (XSS) vulnerability in the preview form in
...)
+ TODO: check
+CVE-2007-3351 (The SJPhone SIP soft phone 1.60.303c, when installed on the
Dell Axim ...)
+ TODO: check
+CVE-2007-3350 (AOL Instant Messenger (AIM) 6.1.32.1 on Windows XP allows
remote ...)
+ TODO: check
+CVE-2007-3349 (The Aastra 9112i SIP Phone with firmware 1.4.0.1048 and boot
version ...)
+ TODO: check
+CVE-2007-3348 (The D-Link DPH-540/DPH-541 phone allows remote attackers to
cause a ...)
+ TODO: check
+CVE-2007-3347 (The D-Link DPH-540/DPH-541 phone accepts SIP INVITE messages
that are ...)
+ TODO: check
+CVE-2007-3346 (Directory traversal vulnerability in index.php in PHPAccounts
0.5 ...)
+ TODO: check
+CVE-2007-3345 (Multiple SQL injection vulnerabilities in index.php in
PHPAccounts 0.5 ...)
+ TODO: check
+CVE-2007-3344 (Multiple cross-site scripting (XSS) vulnerabilities in
netjukebox ...)
+ TODO: check
+CVE-2007-3343 (Cross-site scripting (XSS) vulnerability in RaidenHTTPD before
2.0.14 ...)
+ TODO: check
+CVE-2007-3342 (Multiple cross-site scripting (XSS) vulnerabilities in Movable
Type ...)
+ TODO: check
+CVE-2007-3341 (Unspecified vulnerability in the FTP implementation in
Microsoft ...)
+ TODO: check
+CVE-2007-3340 (HTTP SERVER 1.6.2 allows remote attackers to cause a denial of
service ...)
+ TODO: check
+CVE-2007-3339 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
+CVE-2007-3338 (Multiple buffer stack-based overflows in Ingres database server
2006 ...)
+ TODO: check
+CVE-2007-3337 (wakeup in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5,
as used ...)
+ TODO: check
+CVE-2007-3336 (Multiple "pointer overwrite" vulnerabilities in
Ingres database server ...)
+ TODO: check
+CVE-2007-3335 (Multiple SQL injection vulnerabilities in the admin panel in
PHPEcho ...)
+ TODO: check
+CVE-2007-3334 (Multiple heap-based buffer overflows in the (1) Communications
Server ...)
+ TODO: check
+CVE-2007-3333
+ RESERVED
+CVE-2007-3332 (Directory traversal vulnerability in Satellite.php in Satel
Lite for ...)
+ TODO: check
+CVE-2007-3331 (Cross-site request forgery (CSRF) vulnerability in STphp
EasyNews PRO ...)
+ TODO: check
+CVE-2007-3330 (Cross-site scripting (XSS) vulnerability in STphp EasyNews PRO
4.0 ...)
+ TODO: check
+CVE-2007-3329 (Multiple array index errors in the (1) get_intra_block, (2) ...)
+ TODO: check
+CVE-2007-3328 (Multiple cross-site scripting (XSS) vulnerabilities in Interact
2.4 ...)
+ TODO: check
+CVE-2007-3327 (httpsv.exe in HTTP Server 1.6.2 allows remote attackers to
obtain ...)
+ TODO: check
+CVE-2007-3326 (Multiple directory traversal vulnerabilities in vBulletin 3.x.x
allow ...)
+ TODO: check
+CVE-2007-3325 (PHP remote file inclusion vulnerability in lib/language.php in
LAN ...)
+ TODO: check
+CVE-2007-3324 (Multiple cross-site scripting (XSS) vulnerabilities in Comersus
Cart ...)
+ TODO: check
+CVE-2007-3323 (SQL injection vulnerability in comersus_optReviewReadExec.asp
in ...)
+ TODO: check
+CVE-2006-7207 (Buffer overflow in ageet AGEphone before 1.4.0 might allow
remote ...)
+ TODO: check
+CVE-2006-7206 (Microsoft Internet Explorer 6 on Windows XP SP2 allows remote
...)
+ TODO: check
CVE-2007-4168
REJECTED
TODO: check
@@ -1079,8 +1181,8 @@
RESERVED
CVE-2007-2834
RESERVED
-CVE-2007-2833
- RESERVED
+CVE-2007-2833 (Emacs 21 allows user-assisted attackers to cause a denial of
service ...)
+ TODO: check
CVE-2007-2832 (Cross-site scripting (XSS) vulnerability in the web application
...)
NOT-FOR-US: Cisco
CVE-2007-2831 (Array index error in the (1) ieee80211_ioctl_getwmmparams and
(2) ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
