Author: stef-guest Date: 2006-11-07 21:31:31 +0100 (Tue, 07 Nov 2006) New Revision: 4931 Modified: data/CVE/list Log: a few ITPs Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-11-07 20:14:37 UTC (rev 4930) +++ data/CVE/list 2006-11-07 20:31:31 UTC (rev 4931) @@ -773,7 +773,7 @@ CVE-2006-5403 (Stack-based buffer overflow in an ActiveX control used in Symantec ...) NOT-FOR-US: Symantec CVE-2006-5402 (Multiple PHP remote file inclusion vulnerabilities in PHPmybibli 3.0.1 ...) - NOT-FOR-US: PHPmybibli + - phpmybibli <itp> (bug #369328) CVE-2006-5401 (PHP remote file inclusion vulnerability in ...) NOT-FOR-US: AROUNDMe CVE-2006-5400 (PHP remote file inclusion vulnerability in forum/track.php in ...) @@ -1164,7 +1164,7 @@ CVE-2006-5217 (SQL injection vulnerability in giris_yap.asp in Emek Portal 2.1 allows ...) NOT-FOR-US: Emek Portal CVE-2006-5216 (Stack-based buffer overflow in Sergey Lyubka Simple HTTPD (shttpd) ...) - NOT-FOR-US: Simple HTTPD (shttpd) + - shttpd <itp> (bug #341284) CVE-2006-5215 (The Xsession script, as used by X Display Manager (xdm) in NetBSD ...) - xdm 1:1.0.5-1 (low) [sarge] - xfree86 <unfixed> (low) @@ -4987,11 +4987,11 @@ CVE-2006-3534 (Directory traversal vulnerability in Nullsoft SHOUTcast DSP before ...) NOT-FOR-US: Nullsoft SHOUTcast DSP CVE-2006-3533 (Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.30 RC2 ...) - NOT-FOR-US: Pivot + - pivot <itp> (bug #305786) CVE-2006-3532 (PHP file inclusion vulnerability in includes/edit_new.php in Pivot ...) - NOT-FOR-US: Pivot + - pivot <itp> (bug #305786) CVE-2006-3531 (includes/editor/insert_image.php in Pivot 1.30 RC2 and earlier creates ...) - NOT-FOR-US: Pivot + - pivot <itp> (bug #305786) CVE-2006-3530 (PHP remote file inclusion vulnerability in ...) NOT-FOR-US: PccookBook Component for Mambo and Joomla CVE-2003-1304 (EarlyImpact ProductCart 1.0 through 2.0 stores database/EIPC.mdb under ...) @@ -7195,8 +7195,7 @@ CVE-2006-2558 (Cross-site scripting (XSS) vulnerability in IpLogger 1.7 and earlier ...) NOT-FOR-US: IpLogger CVE-2006-2557 (PHP remote file inclusion vulnerability in extras/poll/poll.php in ...) - NOT-FOR-US: newsportal - NOTE: RFP #149069 closed after no activity since too long time + - newsportal <itp> (bug #149069) CVE-2006-2556 (Cross-site scripting (XSS) vulnerability in Florian Amrhein NewsPortal ...) NOT-FOR-US: newsportal NOTE: RFP #149069 closed after no activity since too long time @@ -8190,7 +8189,7 @@ CVE-2006-2118 (JMK''s Picture Gallery allows remote attackers to bypass authentication ...) NOT-FOR-US: JMK CVE-2006-2117 (Cross-site scripting (XSS) vulnerability in Thyme 1.3 allows remote ...) - NOT-FOR-US: Thyme + - thyme <itp> (bug #361599) CVE-2006-2116 (planetGallery allows remote attackers to gain administrator privileges ...) NOT-FOR-US: planetGallery CVE-2006-2115 (Format string vulnerability in SWS web Server 0.1.7 allows remote ...) @@ -29876,7 +29875,7 @@ CVE-2004-1114 (Buffer overflow in the handling of command line arguments in Skype ...) NOT-FOR-US: Skype CVE-2004-1113 (SQL injection vulnerability in SQLgrey Postfix greylisting service ...) - NOT-FOR-US: SQLgrey Postfix greylisting serivce + - sqlgrey <itp> (bug #389472) CVE-2004-1112 (The buffer overflow trigger in Cisco Security Agent (CSA) before 4.0.3 ...) NOT-FOR-US: Cisco CVE-2004-1111 (Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, ...)