Author: enerv-guest Date: 2007-02-04 22:31:55 +0100 (Sun, 04 Feb 2007) New Revision: 5412 Modified: data/CVE/list Log: fixups. Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-02-04 21:24:11 UTC (rev 5411) +++ data/CVE/list 2007-02-04 21:31:55 UTC (rev 5412) @@ -20,7 +20,8 @@ CVE-2007-0681 (profile.php in ExtCalendar 2 and earlier allows remote attackers to ...) NOT-FOR-US: ExtCalendar CVE-2007-0680 (PHP remote file inclusion vulnerability in includes/functions.php in ...) - TODO: check PHPBB + - phpbb2 <not-affected> + NOTE: This vulnerability is for CVE-2007-0679 (PHP remote file inclusion vulnerability in lang/leslangues.php in ...) NOT-FOR-US: PHPMyRing CVE-2007-0678 (SQL injection vulnerability in windows.asp in Fullaspsite Asp Hosting ...) @@ -46,14 +47,15 @@ CVE-2007-0668 (The Loopback Filesystem (LOFS) in Sun Solaris 10 allows local users in ...) NOT-FOR-US: Sun Solaris. CVE-2007-0667 (Unspecified vulnerability in (1) LedgerSMB before 1.1.5 and (2) ...) - - sql-ledger <unfixed> (bug #409703; ) + - sql-ledger <unfixed> (bug #409703) CVE-2007-0666 (Ipswitch WS_FTP Server 5.04 allows attackers to execute arbitrary code ...) NOT-FOR-US: WS_FTP Server CVE-2007-0665 (Format string vulnerability in the SCP module in Ipswitch WS_FTP 2007 ...) NOT-FOR-US: WS_FTP Server CVE-2007-0664 (thttpd before 2.25b-r6 in Gentoo Linux is started from the system root ...) - thttpd <not-affected> - NOTE: In accordance with Debian Policy is not possible start Webserver in root directory (/). + NOTE: In accordance with Debian Policy is not possible start Webserver + NOTE: in root directory (/). CVE-2007-0663 (SQL injection vulnerability in index.php in Eclectic Designs ...) NOT-FOR-US: Eclectic Designs CascadianFAQ CVE-2007-0662 (PHP remote file inclusion vulnerability in ...)