Author: alec-guest Date: 2006-05-20 22:40:18 +0000 (Sat, 20 May 2006) New Revision: 4015 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-05-20 22:23:56 UTC (rev 4014) +++ data/CVE/list 2006-05-20 22:40:18 UTC (rev 4015) @@ -256,15 +256,15 @@ CVE-2006-2364 (Cross-site scripting (XSS) vulnerability in the validation feature in ...) NOT-FOR-US: Macromedia CVE-2006-2363 (SQL injection vulnerability in the weblinks option (weblinks.html.php) ...) - TODO: check + NOT-FOR-US: Limbo CVE-2006-2362 (Buffer overflow in getsym in tekhex.c in libbfd in Free Software ...) - binutils <unfixed> (bug #368237) CVE-2006-2361 (PHP remote file inclusion vulnerability in pafiledb_constants.php in ...) - TODO: check + NOT-FOR-US: phpbb mod CVE-2006-2360 (SQL injection vulnerability in charts.php in the Chart mod for phpBB ...) - TODO: check + NOT-FOR-US: phpbb mod CVE-2006-2359 (Cross-site scripting (XSS) vulnerability in charts.php in the Chart ...) - TODO: check + NOT-FOR-US: phpbb mod CVE-2006-2192 RESERVED CVE-2005-4803 (graphviz before 2.2.1 allows local users to overwrite arbitrary files ...) @@ -374,7 +374,7 @@ CVE-2006-2313 RESERVED CVE-2006-2312 (Unspecified vulnerability in the URI handler in Skype 2.0.*.104 and ...) - TODO: check + NOT-FOR-US: Skype CVE-2006-2311 RESERVED CVE-2006-2310 @@ -750,9 +750,9 @@ CVE-2006-2136 (SQL injection vulnerability in news.php in AZNEWS allows remote ...) NOT-FOR-US: AZNEWS CVE-2006-2135 (SQL injection vulnerability in login.php in Ruperts News allows remote ...) - TODO: check + NOT-FOR-US: Ruperts News CVE-2006-2134 (PHP remote file inclusion vulnerability in /includes/kb_constants.php ...) - TODO: check + NOT-FOR-US: phpbb2 mod CVE-2005-4794 (Cisco IP Phones 7902/7905/7912, ATA 186/188, Unity Express, ACNS, and ...) NOT-FOR-US: Cisco CVE-2006-2148 (Multiple buffer overflows in client.c in CGI:IRC (CGIIRC) before 0.5.8 ...) @@ -760,7 +760,7 @@ - cgiirc <unfixed> (bug #365680; medium) [sarge] - cgiirc 0.5.4-6sarge1 (bug #365680; medium) CVE-2006-2133 (SQL injection vulnerability in index.php in BoonEx Barracuda 1.1 and ...) - TODO: check + NOT-FOR-US: BoonEx Barracuda CVE-2006-2132 (SQL injection vulnerability in detail.asp in DUclassified allows ...) NOT-FOR-US: DUclassified CVE-2006-2131 (include/class_poll.php in Advanced Poll 2.0.4 uses the ...) @@ -783,23 +783,23 @@ CVE-2006-2123 (Multiple SQL injection vulnerabilities in the report interface in ...) NOT-FOR-US: Network Administration Visualiazed CVE-2006-2122 (PHP remote file inclusion vulnerability in index.php in CoolMenus allows ...) - TODO: check + NOT-FOR-US: CoolMenus CVE-2006-2121 (PHP remote file include vulnerability in admin/config_settings.tpl.php ...) - TODO: check + NOT-FOR-US: I-RATER Platinum CVE-2006-2120 (The TIFFToRGB function in libtiff before 3.8.1 allows remote attackers ...) - tiff 3.8.1 (bug #366588; medium) CVE-2006-2119 (PHP remote file inclusion vulnerability in event/index.php in Artmedic ...) - TODO: check + NOT-FOR-US: Artmedic CVE-2006-2118 (JMK''s Picture Gallery allows remote attackers to bypass authentication ...) - TODO: check + NOT-FOR-US: JMK CVE-2006-2117 (Cross-site scripting (XSS) vulnerability in Thyme 1.3 allows remote ...) - TODO: check + NOT-FOR-US: Thyme CVE-2006-2116 (planetGallery allows remote attackers to gain administrator privileges ...) - TODO: check + NOT-FOR-US: planetGallery CVE-2006-2115 (Format string vulnerability in SWS web Server 0.1.7 allows remote ...) - TODO: check + NOT-FOR-US: SWS CVE-2006-2114 (Buffer overflow in SWS web Server 0.1.7 allows remote attackers to ...) - TODO: check + NOT-FOR-US: SWS CVE-2006-2113 RESERVED CVE-2006-2112