white at alioth.debian.org
2009-Mar-06 09:40 UTC
[Secure-testing-commits] r11330 - data/CVE
Author: white Date: 2009-03-06 09:40:45 +0000 (Fri, 06 Mar 2009) New Revision: 11330 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-03-06 07:57:12 UTC (rev 11329) +++ data/CVE/list 2009-03-06 09:40:45 UTC (rev 11330) @@ -1,7 +1,7 @@ CVE-2009-0821 (Mozilla Firefox 2.0.0.20 and earlier allows remote attackers to cause ...) TODO: check CVE-2009-0820 (Multiple eval injection vulnerabilities in phpScheduleIt before 1.2.11 ...) - TODO: check + NOT-FOR-US: phpScheduleIt CVE-2009-0819 (sql/item_xmlfunc.cc in MySQL before 5.1.32 allows remote authenticated ...) TODO: check CVE-2009-0818 (Cross-site scripting (XSS) vulnerability in the ...) @@ -13,31 +13,31 @@ CVE-2009-0815 (The jumpUrl mechanism in class.tslib_fe.php in TYPO3 4.0 before ...) TODO: check CVE-2009-0814 (Cross-site scripting (XSS) vulnerability in Widgets.aspx in Blogsa 1.0 ...) - TODO: check + NOT-FOR-US: Blogsa CVE-2009-0813 (Insecure method vulnerability in the ImeraIEPlugin ActiveX control ...) - TODO: check + NOT-FOR-US: ActiveX CVE-2009-0812 (Stack-based buffer overflow in BreakPoint Software Hex Workshop 4.23, ...) - TODO: check + NOT-FOR-US: BreakPoint Software Hex Workshop CVE-2009-0811 (Insecure method vulnerability in the SopCast SopCore ActiveX control ...) - TODO: check + NOT-FOR-US: ActiveX CVE-2009-0810 (SQL injection vulnerability in login.php in xGuestbook 2.0 allows ...) - TODO: check + NOT-FOR-US: xGuestbook CVE-2009-0809 (The Web Editor in Dassault Systemes ENOVIA SmarTeam V5 before Release ...) - TODO: check + NOT-FOR-US: Dassault Systemes ENOVIA SmarTeam CVE-2009-0808 (Multiple SQL injection vulnerabilities in SimpleCMMS before 0.1.0 ...) - TODO: check + NOT-FOR-US: SimpleCMMS CVE-2009-0807 (zFeeder 1.6 allows remote attackers to gain administrative access via ...) - TODO: check + NOT-FOR-US: zFeeder CVE-2009-0806 (Unspecified vulnerability in OpenGoo before 1.2.1 allows remote ...) - TODO: check + NOT-FOR-US: OpenGoo CVE-2009-0805 (Cross-site scripting (XSS) vulnerability in piCal 0.91h and earlier, a ...) TODO: check CVE-2009-0804 (Ziproxy 2.6.0, when transparent interception mode is enabled, uses the ...) TODO: check CVE-2009-0803 (SmoothWall SmoothGuardian, as used in SmoothWall Firewall, ...) - TODO: check + NOT-FOR-US: SmoothWall CVE-2009-0802 (Qbik WinGate, when transparent interception mode is enabled, uses the ...) - TODO: check + NOT-FOR-US: Qbik WinGate CVE-2009-0801 (Squid, when transparent interception mode is enabled, uses the HTTP ...) TODO: check CVE-2009-0800 @@ -81,9 +81,9 @@ CVE-2009-0781 RESERVED CVE-2009-0780 (The aspath_prepend function in rde_attr.c in bgpd in OpenBSD 4.3 and ...) - TODO: check + NOT-FOR-US: CVE-2009-0780 CVE-2009-0779 (Buffer overflow in pppdial in IBM AIX 5.3 and 6.1 allows local users ...) - TODO: check + NOT-FOR-US: IBM AIX CVE-2009-0778 RESERVED CVE-2009-0777 (Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and ...) @@ -103,25 +103,25 @@ CVE-2009-0770 (dkim-milter 2.6.0 through 2.8.0 allows remote attackers to cause a ...) TODO: check CVE-2009-0769 (QIP 2005 build 8082 allows remote attackers to cause a denial of ...) - TODO: check + NOT-FOR-US: QIP CVE-2009-0768 (SQL injection vulnerability in forumhop.php in YapBB 1.2 and earlier ...) - TODO: check + NOT-FOR-US: YapBB CVE-2009-0767 (Kipper 2.01 stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: Kipper CVE-2009-0766 (Directory traversal vulnerability in default.php in Kipper 2.01 allows ...) - TODO: check + NOT-FOR-US: Kipper CVE-2009-0765 (Directory traversal vulnerability in index.php in Kipper 2.01 allows ...) - TODO: check + NOT-FOR-US: Kipper CVE-2009-0764 (Multiple cross-site scripting (XSS) vulnerabilities in Kipper 2.01 ...) - TODO: check + NOT-FOR-US: Kipper CVE-2009-0763 (Cross-site scripting (XSS) vulnerability in default.php in Kipper 2.01 ...) - TODO: check + NOT-FOR-US: Kipper CVE-2009-0762 (Cross-site scripting (XSS) vulnerability in ScriptsEz Ez PHP Comment ...) - TODO: check + NOT-FOR-US: ScriptsEz Ez PHP Comment CVE-2009-0761 (Cross-site scripting (XSS) vulnerability in online.asp in Team Board ...) - TODO: check + NOT-FOR-US: Team Board CVE-2009-0760 (Team Board 1.x and 2.x stores sensitive information under the web root ...) - TODO: check + NOT-FOR-US: Team Board CVE-2009-0759 (Multiple CRLF injection vulnerabilities in webadmin in ZNC before ...) TODO: check CVE-2009-0758 (The originates_from_local_legacy_unicast_socket function in ...) @@ -141,11 +141,11 @@ CVE-2008-6397 (rlatex in AlcoveBook sgml2x 1.0.0 allows local users to overwrite ...) TODO: check CVE-2008-6396 (Cross-site scripting (XSS) vulnerability in account.php in Celerondude ...) - TODO: check + NOT-FOR-US: Celerondude Uploader CVE-2008-6395 (The web management interface in 3Com Wireless 8760 Dual Radio 11a/b/g ...) - TODO: check + NOT-FOR-US: web management interface in 3Com Wireless CVE-2008-6394 (SQL injection vulnerability in core/user.php in CS-Cart 1.3.5 and ...) - TODO: check + NOT-FOR-US: CS-Cart CVE-2008-6393 (PSI Jabber client before 0.12.1 allows remote attackers to cause a ...) TODO: check CVE-2009-0752 (Unspecified vulnerability in Movable Type Pro and Community Solution ...)