thr3ads.net - Secure testing commits - [Secure-testing-commits] r4411

If this information is useful, please help other people find it:
Share via:
Joey Hess
2006-Jul-17 21:15 UTC
[Secure-testing-commits] r4411 - data/CVE

Author: joeyh
Date: 2006-07-17 21:14:35 +0000 (Mon, 17 Jul 2006)
New Revision: 4411

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-07-17 19:31:31 UTC (rev 4410)
+++ data/CVE/list	2006-07-17 21:14:35 UTC (rev 4411)
@@ -1,4 +1,142 @@
-CVE-2006-3626 [linux "nasty /proc vulnerability" (local root)]
+CVE-2006-3660 (Unspecified vulnerability in Microsoft PowerPoint 2003 has
unknown ...)
+	TODO: check
+CVE-2006-3659 (Microsoft Internet Explorer 6 allows remote attackers to cause a
...)
+	TODO: check
+CVE-2006-3658 (Microsoft Internet Explorer 6 allows remote attackers to cause a
...)
+	TODO: check
+CVE-2006-3657 (Microsoft Internet Explorer 6 allows remote attackers to cause a
...)
+	TODO: check
+CVE-2006-3656 (Unspecified vulnerability in Microsoft PowerPoint 2003 allows
...)
+	TODO: check
+CVE-2006-3655 (Unspecified vulnerability in mso.dll in Microsoft PowerPoint
2003 ...)
+	TODO: check
+CVE-2006-3654 (Buffer overflow in wksss.exe 8.4.702.0 in Microsoft Works
Spreadsheet ...)
+	TODO: check
+CVE-2006-3653 (wksss.exe 8.4.702.0 in Microsoft Works Spreadsheet 8.0 allows
remote ...)
+	TODO: check
+CVE-2006-3652 (Microsoft Internet Security and Acceleration (ISA) Server 2004
allows ...)
+	TODO: check
+CVE-2006-3651
+	RESERVED
+CVE-2006-3650
+	RESERVED
+CVE-2006-3649
+	RESERVED
+CVE-2006-3648
+	RESERVED
+CVE-2006-3647
+	RESERVED
+CVE-2006-3646
+	RESERVED
+CVE-2006-3645
+	RESERVED
+CVE-2006-3644
+	RESERVED
+CVE-2006-3643
+	RESERVED
+CVE-2006-3642
+	RESERVED
+CVE-2006-3641
+	RESERVED
+CVE-2006-3640
+	RESERVED
+CVE-2006-3639
+	RESERVED
+CVE-2006-3638
+	RESERVED
+CVE-2006-3637
+	RESERVED
+CVE-2006-3636
+	RESERVED
+CVE-2006-3635
+	RESERVED
+CVE-2006-3634
+	RESERVED
+CVE-2006-3633
+	RESERVED
+CVE-2006-3632
+	RESERVED
+CVE-2006-3631
+	RESERVED
+CVE-2006-3630
+	RESERVED
+CVE-2006-3629
+	RESERVED
+CVE-2006-3628
+	RESERVED
+CVE-2006-3627
+	RESERVED
+CVE-2006-3625 (FLV Players 8 allows remote attackers to obtain sensitive
information ...)
+	TODO: check
+CVE-2006-3624 (Multiple cross-site scripting (XSS) vulnerabilities in FLV
Players 8 ...)
+	TODO: check
+CVE-2006-3623 (Directory traversal vulnerability in Framework Service component
in ...)
+	TODO: check
+CVE-2006-3622 (The showtopic module in Koobi Pro CMS 5.6 allows remote
attackers to ...)
+	TODO: check
+CVE-2006-3621 (SQL injection vulnerability in the showtopic module in Koobi Pro
CMS ...)
+	TODO: check
+CVE-2006-3620 (Cross-site scripting (XSS) vulnerability in the showtopic module
in ...)
+	TODO: check
+CVE-2006-3619
+	RESERVED
+CVE-2006-3618 (SQL injection vulnerability in pblguestbook.php in Pixelated By
Lev ...)
+	TODO: check
+CVE-2006-3617 (Cross-site scripting (XSS) vulnerability in pblguestbook.php in
...)
+	TODO: check
+CVE-2006-3616 (Multiple cross-site scripting (XSS) vulnerabilities in Carbonize
...)
+	TODO: check
+CVE-2006-3615 (Multiple PHP remote file inclusion vulnerabilities in Phorum
5.1.14, ...)
+	TODO: check
+CVE-2006-3614 (index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers
to ...)
+	TODO: check
+CVE-2006-3613 (Multiple cross-site scripting (XSS) vulnerabilities in
Chamberland ...)
+	TODO: check
+CVE-2006-3612 (Cross-site scripting (XSS) vulnerability in Phorum 5.1.14 allows
...)
+	TODO: check
+CVE-2006-3611 (Directory traversal vulnerability in pm.php in Phorum 5 allows
remote ...)
+	TODO: check
+CVE-2006-3610 (index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers
to ...)
+	TODO: check
+CVE-2006-3609 (Cross-site scripting (XSS) vulnerability in index.php in
Orbitcoders ...)
+	TODO: check
+CVE-2006-3608 (The Gallery module in Simone Vellei Flatnuke 2.5.7 and earlier,
when ...)
+	TODO: check
+CVE-2006-3607 (Multiple cross-site scripting (XSS) vulnerabilities in Softbiz
Banner ...)
+	TODO: check
+CVE-2006-3606 (Unspecified vulnerability in Sun Solaris X Inter Client Exchange
...)
+	TODO: check
+CVE-2006-3605 (Microsoft Internet Explorer 6 allows remote attackers to cause a
...)
+	TODO: check
+CVE-2006-3604 (Directory traversal vulnerability in FlexWATCH Network Camera
3.0 and ...)
+	TODO: check
+CVE-2006-3603 (Cross-site scripting (XSS) vulnerability in index.php in
FlexWATCH ...)
+	TODO: check
+CVE-2006-3602 (Directory traversal vulnerability in ...)
+	TODO: check
+CVE-2006-3601 (** UNVERIFIABLE ** ...)
+	TODO: check
+CVE-2006-3600 (Multiple stack-based buffer overflows in the LookupTRM::lookup
...)
+	TODO: check
+CVE-2006-3599 (SQL injection vulnerability in the Nuke Advanced Classifieds
module ...)
+	TODO: check
+CVE-2006-3598 (SQL injection vulnerability in the Sections module for PHP-Nuke
allows ...)
+	TODO: check
+CVE-2006-3597 (passwd before 1:4.0.13 on Ubuntu 6.06 LTS leaves the root
password ...)
+	TODO: check
+CVE-2006-3596 (The device driver for Intel-based gigabit network adapters in
Cisco ...)
+	TODO: check
+CVE-2006-3595 (The default configuration of IOS HTTP server in Cisco Router Web
Setup ...)
+	TODO: check
+CVE-2006-3594 (Buffer overflow in Cisco Unified CallManager (CUCM) 5.0(1)
through ...)
+	TODO: check
+CVE-2006-3593 (The command line interface (CLI) in Cisco Unified CallManager
(CUCM) ...)
+	TODO: check
+CVE-2006-3592 (Unspecified vulnerability in the command line interface (CLI) in
Cisco ...)
+	TODO: check
+CVE-2006-3591 (Microsoft Internet Explorer 6 allows remote attackers to cause a
...)
+	TODO: check
+CVE-2006-3626 (Race condition in Linux kernel 2.6.17.4 and earlier allows local
users ...)
 	{DSA-1111}
 	- linux-2.6.16 2.6.16-17 (high)
 	- linux-2.6 2.6.17-4 (high)
@@ -96,9 +234,9 @@
 	NOT-FOR-US: Patrice Freydiere ImgSvr
 CVE-2006-3545 (** DISPUTED ** Microsoft Internet Explorer 7.0 Beta allows
remote ...)
 	NOT-FOR-US: Microsoft Internet Explorer
-CVE-2006-3544 (Multiple SQL injection vulnerabilities in Invision Power Board
(IPB) ...)
+CVE-2006-3544 (** DISPUTED ** ...)
 	NOT-FOR-US: Invision Power Board
-CVE-2006-3543 (Multiple SQL injection vulnerabilities in Invision Power Board
(IPB) ...)
+CVE-2006-3543 (** DISPUTED ** ...)
 	NOT-FOR-US: Invision Power Board
 CVE-2006-3542 (Multiple cross-site scripting (XSS) vulnerabilities in Garry
Glendown ...)
 	NOT-FOR-US: Garry Glendown Shopping Cart
@@ -198,7 +336,7 @@
 	RESERVED
 CVE-2006-3495
 	RESERVED
-CVE-2006-3494 (Multiple SQL injection vulnerabilities in Buddy Zone 1.0.1 allow
...)
+CVE-2006-3494 (Multiple cross-site scripting (XSS) vulnerabilities in Buddy
Zone ...)
 	NOT-FOR-US: Buddy Zone
 CVE-2006-3493 (Buffer overflow in LsCreateLine function (mso_203) in mso.dll
and ...)
 	NOT-FOR-US: Microsoft Office
@@ -2500,8 +2638,8 @@
 CVE-2006-2451 (The suid_dumpable support in Linux kernel 2.6.13 up to versions
before ...)
 	- linux-2.6 2.6.17-3 (high)
 	- linux-2.6.16 2.6.16-17 (high)
-CVE-2006-2450
-	RESERVED
+CVE-2006-2450 (auth.c in LibVNCServer 0.7.1 allows remote attackers to bypass
...)
+	TODO: check
 CVE-2006-2449 (KDE Display Manager (KDM) in KDE 3.2.0 up to 3.5.3 allows local
users ...)
 	- kdebase 4:3.5.2-2 (bug #374002; medium)
 CVE-2006-2448 (Linux kernel before 2.6.16.21 and 2.6.17, when running on
PowerPC, ...)
@@ -3063,7 +3201,7 @@
 	NOT-FOR-US: Invision Gallery
 CVE-2006-2201 (Unspecified vulnerability in CA Resource Initialization Manager
...)
 	NOT-FOR-US: CA Resource Initialization Manager
-CVE-2006-2200 (Stack-based buffer overflow in MiMMS 0.0.9 allows remote
attackers to ...)
+CVE-2006-2200 (Stack-based buffer overflow in libmms, as used by (a) MiMMS
0.0.9 and ...)
 	- libmms 0.2-7 (bug #374577; medium)
 	- mimms 2.0.0-1 (bug #374577; medium)
 CVE-2006-2199 (Unspecified vulnerability in Java Applets in OpenOffice.org
1.1.x (aka ...)
Secure testing commits - Jul 2006 - r4411 - data/CVE

[Secure-testing-commits] r4411 - data/CVE
