Author: fw Date: 2006-12-25 10:49:33 +0100 (Mon, 25 Dec 2006) New Revision: 5168 Modified: data/CVE/list Log: chetcpasswd was removed from the archive Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-12-24 20:04:16 UTC (rev 5167) +++ data/CVE/list 2006-12-25 09:49:33 UTC (rev 5168) @@ -26,19 +26,19 @@ CVE-2006-6686 (PHP remote file inclusion vulnerability in sender.php in Carsen Klock ...) NOT-FOR-US: Carsen Klock TextSend CVE-2006-6685 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3 ...) - - chetcpasswd <unfixed> (medium) + - chetcpasswd <removed> (medium) CVE-2006-6684 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd before 2.4 ...) - - chetcpasswd <unfixed> (medium) + - chetcpasswd <removed> (medium) CVE-2006-6683 (Pedro Lineu Orso chetcpasswd 2.4.1 and earlier verifies and updates ...) - - chetcpasswd <unfixed> (medium) + - chetcpasswd <removed> (medium) CVE-2006-6682 (Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error message ...) - - chetcpasswd <unfixed> (medium) + - chetcpasswd <removed> (medium) CVE-2006-6681 (Pedro Lineu Orso chetcpasswd 2.3.3 does not have a rate limit for ...) - - chetcpasswd <unfixed> (medium) + - chetcpasswd <removed> (medium) CVE-2006-6680 (Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the need ...) - - chetcpasswd <unfixed> (low) + - chetcpasswd <removed> (low) CVE-2006-6679 (Pedro Lineu Orso chetcpasswd before 2.4 relies on the X-Forwarded-For ...) - - chetcpasswd <unfixed> (medium) + - chetcpasswd <removed> (medium) CVE-2006-6678 (The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier ...) - netrik <unfixed> (medium; bug #404233) CVE-2006-6677 (ESET NOD32 Antivirus before 1.1743 allows remote attackers to cause a ...) @@ -79,11 +79,11 @@ - kdelibs <not-affected> (at least it is fixed in 4:3.5.5a.dfsg.1-5) NOTE: is DoS only, anyway CVE-2002-2221 (Untrusted search path vulnerability in Pedro Lineu Orso chetcpasswd ...) - TODO: check + - chetcpasswd <removed> (medium) CVE-2002-2220 (Buffer overflow in Pedro Lineu Orso chetcpasswd before 1.12, when ...) - TODO: check + - chetcpasswd <removed> (medium) CVE-2002-2219 (chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows ...) - TODO: check + - chetcpasswd <removed> (low) CVE-2007-0010 RESERVED CVE-2007-0009 @@ -145,7 +145,7 @@ CVE-2006-6640 (Multiple cross-site scripting (XSS) vulnerabilities in Omniture ...) NOT-FOR-US: SiteCatalyst CVE-2006-6639 (Multiple unspecified vulnerabilities in chetcpasswd 2.4.1 allow local ...) - - chetcpasswd <unfixed> (medium) + - chetcpasswd <removed> (medium) CVE-2006-6638 (IBM DB2 8.1 before FixPak 14 allows remote attackers to cause a denial ...) NOT-FOR-US: IBM CVE-2006-6637 (The Servlet Engine and Web Container in IBM WebSphere Application ...)