[Secure-testing-commits] r6627 - data/CVE

Mon, 17 Sep 2007 15:20:21 -0700 

Author: joeyh
Date: 2007-09-17 21:14:07 +0000 (Mon, 17 Sep 2007)
New Revision: 6627

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2007-09-17 21:11:42 UTC (rev 6626)
+++ data/CVE/list       2007-09-17 21:14:07 UTC (rev 6627)
@@ -1,3 +1,23 @@
+CVE-2007-4901 (Unspecified vulnerability in AOL Instant Messenger (AIM) 
6.1.41.2 ...)
+       TODO: check
+CVE-2007-4900 (Cross-site scripting (XSS) vulnerability in the logon page in 
RSA ...)
+       TODO: check
+CVE-2007-4899 (Multiple cross-site scripting (XSS) vulnerabilities in Boinc 
Forum ...)
+       TODO: check
+CVE-2007-4898 (Unspecified vulnerability in the Multiwiki plugin in XWiki 
before 1.1 ...)
+       TODO: check
+CVE-2007-4897 (The SIPURL::GetHostAddress function in Ekiga (formerly 
GnomeMeeting) ...)
+       TODO: check
+CVE-2007-4896 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+       TODO: check
+CVE-2007-4895 (Directory traversal vulnerability in dwoprn.php in Sisfo Kampus 
2006 ...)
+       TODO: check
+CVE-2007-4894 (Multiple SQL injection vulnerabilities in Wordpress before 
2.2.3 and ...)
+       TODO: check
+CVE-2007-4893 (wp-admin/admin-functions.php in Wordpress before 2.2.3 and 
Wordpress ...)
+       TODO: check
+CVE-2007-4892 (Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 
8.1.0, ...)
+       TODO: check
 CVE-2007-XXXX [duplicity exposes FTP password in command line args]
        - duplicity <unfixed> (bug #442840)
 CVE-2007-XXXX [libgd2: gdImageColorTransparent can write outside buffer]
@@ -159,7 +179,7 @@
        [etch] - mediawiki <not-affected> (Does not include the vulnerable code)
 CVE-2007-4827
        RESERVED
-CVE-2007-4826 (bgpd in Quagga before 0.99.9 allows remote BGP peers to cause a 
denial ...)
+CVE-2007-4826 (bgpd in Quagga before 0.99.9, when debugging is enabled, allows 
remote ...)
        - quagga 0.99.9-1 (low; bug #442133)
        NOTE: Upstream says that this can only be exploited by configured peers.
 CVE-2007-4825 (Directory traversal vulnerability in PHP 5.2.4 and earlier 
allows ...)


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to