Author: joeyh Date: 2007-03-06 09:14:13 +0000 (Tue, 06 Mar 2007) New Revision: 5515 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-03-06 09:10:53 UTC (rev 5514) +++ data/CVE/list 2007-03-06 09:14:13 UTC (rev 5515) @@ -1,3 +1,73 @@ +CVE-2007-1282 (Integer overflow in Mozilla Thunderbird before 1.5.0.10 and SeaMonkey ...) + TODO: check +CVE-2007-1281 (Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux ...) + TODO: check +CVE-2007-1280 + RESERVED +CVE-2007-1279 + RESERVED +CVE-2007-1278 + RESERVED +CVE-2007-1277 (WordPress 2.1.1, as downloaded from some official distribution sites ...) + TODO: check +CVE-2007-1276 (Multiple cross-site scripting (XSS) vulnerabilities in chooser.cgi in ...) + TODO: check +CVE-2007-1275 + RESERVED +CVE-2007-1274 + RESERVED +CVE-2006-7134 (Unrestricted file upload vulnerability in main_user.php in Upload Tool ...) + TODO: check +CVE-2006-7133 (Directory traversal vulnerability in upload/bin/download.php in Upload ...) + TODO: check +CVE-2006-7132 (Directory traversal vulnerability in pmd-config.php in PHPMyDesk ...) + TODO: check +CVE-2006-7131 (PHP remote file inclusion vulnerability in extras/mt.php in Jinzora ...) + TODO: check +CVE-2006-7130 (PHP remote file inclusion vulnerability in ...) + TODO: check +CVE-2006-7129 (ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier ...) + TODO: check +CVE-2006-7128 (PHP remote file inclusion vulnerability in forum/forum.php JAF CMS 4.0 ...) + TODO: check +CVE-2006-7127 (Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 ...) + TODO: check +CVE-2006-7126 (SQL injection vulnerability in Joomla BSQ Sitestats 1.8.0 and 2.2.1 ...) + TODO: check +CVE-2006-7125 (Cross-site scripting (XSS) vulnerability in Joomla BSQ Sitestats 1.8.0 ...) + TODO: check +CVE-2006-7124 (PHP remote file inclusion vulnerability in external/rssfeeds.php in ...) + TODO: check +CVE-2006-7123 (Multiple SQL injection vulnerabilities in BSQ Sitestats (component for ...) + TODO: check +CVE-2006-7122 (Cross-site scripting (XSS) vulnerability in the IP Address Lookup ...) + TODO: check +CVE-2006-7121 (The HTTP server in Linksys SPA-921 VoIP Desktop Phone allows remote ...) + TODO: check +CVE-2006-7120 (** DISPUTED ** ...) + TODO: check +CVE-2006-7119 (PHP remote file inclusion vulnerability in kernel/system/startup.php ...) + TODO: check +CVE-2006-7118 (SQL injection vulnerability in index.asp in DMXReady Site Engine ...) + TODO: check +CVE-2006-7117 (Multiple directory traversal vulnerabilities in Kubix 0.7 and earlier ...) + TODO: check +CVE-2006-7116 (SQL injection vulnerability in includes/functions.php in Kubix 0.7 and ...) + TODO: check +CVE-2006-7115 (SQL injection vulnerability in PHPKit 1.6.1 RC2 allows remote ...) + TODO: check +CVE-2006-7114 (P-News 2.0 stores db/user.txt under the web document root with ...) + TODO: check +CVE-2006-7113 (Unrestricted file upload vulnerability in P-News 2.0 allows remote ...) + TODO: check +CVE-2006-7112 (Directory traversal vulnerability in error.php in MD-Pro 1.0.76 and ...) + TODO: check +CVE-2006-7111 (Unspecified vulnerability in Futomi''s CGI Cafe KMail CGI 1.0.3 and ...) + TODO: check +CVE-2006-7110 (Directory traversal vulnerability in the delete function in IMCE ...) + TODO: check +CVE-2006-7109 (Unrestricted file upload vulnerability in IMCE before 1.6, a Drupal ...) + TODO: check CVE-2007-XXXX [buffer overruns in GIT''s http-push.c, fixed in 1.5.0.3] - git-core <unfixed> (bug #413629; low) CVE-2007-1273 @@ -538,7 +608,8 @@ NOT-FOR-US: Hot Links CVE-2006-7085 (Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers ...) NOT-FOR-US: Rigter Portal System -CVE-2006-7084 (Directory traversal vulnerability in index.php in Rigter Portal System ...) +CVE-2006-7084 + REJECTED NOT-FOR-US: Rigter Portal System CVE-2006-7083 (Directory traversal vulnerability in index.php in Rigter Portal System ...) NOT-FOR-US: Rigter Portal System @@ -792,8 +863,8 @@ [sarge] - mozilla-tunderbird <unfixed> (low) [sarge] - mozilla-firefox <unfixed> (low) [sarge] - mozilla <unfixed> (low) -CVE-2007-0994 - RESERVED +CVE-2007-0994 (A regression error in Mozilla Firefox 2.x before 2.0.0.2 and 1.x ...) + TODO: check CVE-2007-0993 RESERVED CVE-2007-0992 @@ -1586,22 +1657,22 @@ RESERVED CVE-2007-0719 RESERVED -CVE-2007-0718 - RESERVED -CVE-2007-0717 - RESERVED -CVE-2007-0716 - RESERVED -CVE-2007-0715 - RESERVED -CVE-2007-0714 - RESERVED -CVE-2007-0713 - RESERVED -CVE-2007-0712 - RESERVED -CVE-2007-0711 - RESERVED +CVE-2007-0718 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...) + TODO: check +CVE-2007-0717 (Integer overflow in Apple QuickTime before 7.1.5 allows remote ...) + TODO: check +CVE-2007-0716 (Stack-based buffer overflow in Apple QuickTime before 7.1.5 allows ...) + TODO: check +CVE-2007-0715 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...) + TODO: check +CVE-2007-0714 (Integer overflow in Apple QuickTime before 7.1.5 allows remote ...) + TODO: check +CVE-2007-0713 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...) + TODO: check +CVE-2007-0712 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...) + TODO: check +CVE-2007-0711 (Integer overflow in Apple QuickTime before 7.1.5, when installed on ...) + TODO: check CVE-2007-0710 (The Bonjour functionality in iChat in Apple Mac OS X 10.3.9 allows remote ...) NOT-FOR-US: Apple iChat CVE-2007-0709 (cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) ...)