Author: joeyh
Date: 2007-09-10 21:14:09 +0000 (Mon, 10 Sep 2007)
New Revision: 6566
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-09-10 14:35:52 UTC (rev 6565)
+++ data/CVE/list 2007-09-10 21:14:09 UTC (rev 6566)
@@ -1,4 +1,35 @@
+CVE-2007-4764 (Directory traversal vulnerability in pawfaliki.php in Pawfaliki
0.5.1 ...)
+ TODO: check
+CVE-2007-4763 (PHP remote file inclusion vulnerability in ...)
+ TODO: check
+CVE-2007-4762 (Multiple SQL injection vulnerabilities in embadmin/login.asp in
...)
+ TODO: check
+CVE-2007-4761 (Unrestricted file upload vulnerability in upload.php in Barbo91
1.1 ...)
+ TODO: check
+CVE-2007-4760 (The javadoc tool in Cosminexus Developer's Kit for Java in
Cosminexus ...)
+ TODO: check
+CVE-2007-4759 (Multiple unspecified vulnerabilities in the image-processing
APIs in ...)
+ TODO: check
+CVE-2007-4758 (Multiple buffer overflows in the image-processing APIs in
Cosminexus ...)
+ TODO: check
+CVE-2007-4757 (PHP remote file inclusion vulnerability in menu.php in
phpMytourney ...)
+ TODO: check
+CVE-2007-4756 (Directory traversal vulnerability in the FTP client in Total
Commander ...)
+ TODO: check
+CVE-2007-4755 (Alien Arena 2007 6.10 and earlier allows remote attackers to
cause a ...)
+ TODO: check
+CVE-2007-4754 (Format string vulnerability in the safe_bprintf function in ...)
+ TODO: check
+CVE-2007-4753 (The Thomson ST 2030 SIP phone with software 1.52.1 allows
remote ...)
+ TODO: check
+CVE-2007-4751
+ RESERVED
+CVE-2007-4750
+ RESERVED
+CVE-2007-4749
+ RESERVED
CVE-2007-4752 [Unsafe fallback to trusted X11 cookie in openssh]
+ RESERVED
- openssh <unfixed> (low)
[etch] - openssh <no-dsa> (minor issue in weak security measure)
[sarge] - openssh <no-dsa> (minor issue in weak security measure)
@@ -382,7 +413,7 @@
NOT-FOR-US: ACTi Network Video Recorder
CVE-2007-4581 (SQL injection vulnerability in acrotxt.php in WBB2-Addon:
Acrotxt 1 ...)
NOT-FOR-US: WBB2-Addon: Acrotxt 1
-CVE-2007-4601 (A regression error in tcp-wrappers 7.6.dbs-10 and 7.6.dbs-11
does not ...)
+CVE-2007-4601 (A regression error in tcp-wrappers 7.6.dbs-10 and 7.6.dbs-11
might ...)
- tcp-wrappers 7.6.dbs-12 (bug #405342; medium)
[etch] - tcp-wrappers <not-affected> (Vulnerability was introduced in
-10)
[sarge] - tcp-wrappers <not-affected> (Vulnerability was introduced in
-10)
@@ -1973,7 +2004,7 @@
- linux-2.6 2.6.22-4
CVE-2007-3850
RESERVED
-CVE-2007-3849 (Red Hat Enterprise Linux (RHEL) 5 creates the Advanced
Intrusion ...)
+CVE-2007-3849 (Red Hat Enterprise Linux (RHEL) 5 ships the rpm for the
Advanced ...)
TODO: check
CVE-2007-3848 (Linux kernel 2.4.35 and other versions allows local users to
send ...)
{DSA-1356-1}
@@ -2214,7 +2245,7 @@
RESERVED
CVE-2007-3753
RESERVED
-CVE-2007-3752 (Buffer overflow in Apple iTunes before 7.4 allows remote
attackers to ...)
+CVE-2007-3752 (Heap-based buffer overflow in Apple iTunes before 7.4 allows
remote ...)
NOT-FOR-US: iTunes
CVE-2007-3751
RESERVED
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
