Author: jmm-guest Date: 2006-05-19 05:40:27 +0000 (Fri, 19 May 2006) New Revision: 3973 Modified: data/CVE/list Log: two no-dsa for moodle older oftpd issue was already fixed in a previous DSA, duplicated temp entry Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-05-18 23:33:25 UTC (rev 3972) +++ data/CVE/list 2006-05-19 05:40:27 UTC (rev 3973) @@ -8075,9 +8075,11 @@ CVE-2005-3650 (The CodeSupport.ocx ActiveX control, as used by Sony to uninstall the ...) NOT-FOR-US: Sony Root Kit Uninstaller CVE-2005-3649 (jumpto.php in Moodle 1.5.2 allows remote attackers to redirect users ...) - - moodle <unfixed> (bug #338592; medium) + - moodle <unfixed> (bug #338592; low) + [sarge] - moodle <no-dsa> (Only exploitable in strange PHP setups) CVE-2005-3648 (Multiple SQL injection vulnerabilities in the get_record function in ...) - - moodle <unfixed> (bug #338592; medium) + - moodle <unfixed> (bug #338592; low) + [sarge] - moodle <no-dsa> (Only exploitable in strange PHP setups) CVE-2005-3647 (Folder Guard allows local users to bypass protections by running from ...) NOT-FOR-US: Folder Guard CVE-2005-3646 (Multiple SQL injection vulnerabilities in lib-sessions.inc.php in ...) @@ -13142,9 +13144,6 @@ - xpvm 1.2.5-8 (bug #318285; medium) CVE-2005-2239 (oftpd 0.3.7 allows remote attackers to cause a denial of service via a ...) - oftpd <removed> (bug #318286; medium) -CVE-2005-XXXX [oftpd port DOS] - - oftpd <removed> (bug #307957; low) - NOTE: CVE id requested from mitre CVE-2005-2238 (ftpd in IBM AIX 5.1, 5.2 and 5.3 allows remote authenticated users to ...) NOT-FOR-US: AIX CVE-2005-2237 (Format string vulnerability in the swcons command in IBM AIX 5.3, and ...)