Author: joeyh Date: 2006-03-20 09:14:23 +0000 (Mon, 20 Mar 2006) New Revision: 3645 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-03-20 05:15:40 UTC (rev 3644) +++ data/CVE/list 2006-03-20 09:14:23 UTC (rev 3645) @@ -1,3 +1,139 @@ +CVE-2006-1298 (Format string vulnerability in the Job Engine service (bengine.exe) in ...) + TODO: check +CVE-2006-1297 (Unspecified vulnerability in Veritas Backup Exec for Windows Server ...) + TODO: check +CVE-2006-1296 (Untrusted search path vulnerability in Beagle 0.2.2.1 might allow ...) + TODO: check +CVE-2006-1295 (Cross-site scripting (XSS) vulnerability in recherche.php3 in SPIP ...) + TODO: check +CVE-2006-1294 (PHP remote file include vulnerability in PageController.php in ...) + TODO: check +CVE-2006-1293 (Cross-site scripting (XSS) vulnerability in index.php in Contrexx CMS ...) + TODO: check +CVE-2006-1292 (Directory traversal vulnerability in Jim Hu and Chad Little PHP ...) + TODO: check +CVE-2006-1291 (publish.ical.php in Jim Hu and Chad Little PHP iCalendar 2.21 and ...) + TODO: check +CVE-2006-1290 (Multiple cross-site scripting (XSS) vulnerabilities in Milkeyway ...) + TODO: check +CVE-2006-1289 (Multiple SQL injection vulnerabilities in Milkeyway Captive Portal 0.1 ...) + TODO: check +CVE-2006-1288 (Multiple SQL injection vulnerabilities in Invision Power Board (IPB) ...) + TODO: check +CVE-2006-1287 (Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) ...) + TODO: check +CVE-2006-1286 (Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for ...) + TODO: check +CVE-2006-1285 (SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost ...) + TODO: check +CVE-2006-1284 (The installation of SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used ...) + TODO: check +CVE-2006-1283 + RESERVED +CVE-2006-1282 (CRLF injection vulnerability in inc/function.php in MyBulletinBoard ...) + TODO: check +CVE-2006-1281 (Cross-site scripting (XSS) in member.php in MyBulletinBoard (MyBB) ...) + TODO: check +CVE-2006-1280 (CGI::Session 4.03-1 does not set proper permissions on temporary files ...) + TODO: check +CVE-2006-1279 (CGI::Session 4.03-1 allows local users to overwrite arbitrary files ...) + TODO: check +CVE-2006-1278 (SQL injection vulnerability in @1 File Store 2006.03.07 allows remote ...) + TODO: check +CVE-2006-1277 (Cross-site scripting (XSS) vulnerability in signup.php in @1 File ...) + TODO: check +CVE-2006-1276 (admin.php in Himpfen Consulting Company PHP SimpleNEWS 1.0.0 allows ...) + TODO: check +CVE-2006-1275 (GGZ Gaming Zone 0.0.12 allows remote attackers to cause a denial of ...) + TODO: check +CVE-2006-1274 (Classic Planer in AntiVir PersonalEdition Classic 7 does not drop ...) + TODO: check +CVE-2006-1273 (Mozilla Firefox 1.0.7 and 1.5.0.1 allows remote attackers to cause a ...) + TODO: check +CVE-2006-1272 (Multiple cross-site scripting (XSS) vulnerabilities in member.php in ...) + TODO: check +CVE-2006-1271 (SQL injection vulnerability in index.php in OxyNews allows remote ...) + TODO: check +CVE-2006-1270 (Multiple cross-site scripting (XSS) vulnerabilities in zones.php in ...) + TODO: check +CVE-2006-1269 (Buffer overflow in the parse function in parse.c in zoo 2.10 might ...) + TODO: check +CVE-2006-1268 (The Internet Key Exchange implementation in Funkwerk X2300 7.2.1 ...) + TODO: check +CVE-2006-1267 (Invision Power Board 2.1.4 allows remote attackers to hijack sessions ...) + TODO: check +CVE-2006-1266 (Cross-site scripting (XSS) vulnerability in Service_Requests.asp in ...) + TODO: check +CVE-2006-1265 (SQL injection vulnerability in discussion.class.php in xhawk.net ...) + TODO: check +CVE-2006-1264 (Cross-site scripting (XSS) vulnerability in xhawk.net discussion 2.0 ...) + TODO: check +CVE-2006-1263 (Multiple cross-site scripting (XSS) vulnerabilities in WordPress ...) + TODO: check +CVE-2006-1262 (Multiple SQL injection vulnerabilities in ASPPortal 3.00 have unknown ...) + TODO: check +CVE-2006-1261 (Multiple cross-site scripting (XSS) vulnerabilities in ASPPortal 3.00 ...) + TODO: check +CVE-2006-1260 (Horde Application Framework 3.0.9 allows remote attackers to read ...) + TODO: check +CVE-2006-1259 (Multiple SQL injection vulnerabilities in Maian Support 1.0 allow ...) + TODO: check +CVE-2006-1258 (Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.1 allows ...) + TODO: check +CVE-2006-1257 (The sample files in the authfiles directory in Microsoft Commerce ...) + TODO: check +CVE-2006-1256 (Cross-site scripting (XSS) vulnerability in guestbook.php in Soren ...) + TODO: check +CVE-2006-1255 (Stack-based buffer overflow in the IMAP service in Mercur Messaging ...) + TODO: check +CVE-2006-1254 (Unspecified vulnerability in BorderWare MXtreme 5.0 and 6.0 allows ...) + TODO: check +CVE-2006-1253 (Unspecified vulnerability in glFTPd before 2.01 RC5 allows remote ...) + TODO: check +CVE-2006-1252 (Eval injection vulnerability in cal.php in Light Weight Calendar (LWC) ...) + TODO: check +CVE-2006-1251 (greylistclean.cron in sa-exim 4.2 allows remote attackers to delete ...) + TODO: check +CVE-2006-1250 (Unspecified vulnerability in the Webmail module in Winmail before 4.3 ...) + TODO: check +CVE-2006-1249 (** UNVERIFIABLE, PRERELEASE ** ...) + TODO: check +CVE-2006-1248 (Unspecified vulnerability in usermod in HP-UX B.11.00, B.11.11, and ...) + TODO: check +CVE-2006-1247 + RESERVED +CVE-2006-1246 (Unspecified vulnerability in BOS.RTE.LVM in IBM AIX 5.3 has unknown ...) + TODO: check +CVE-2006-1245 (Buffer overflow in mshtml.dll in Microsoft Internet Explorer ...) + TODO: check +CVE-2005-4743 (Multiple SQL injection vulnerabilities in index.php in NeLogic Nephp ...) + TODO: check +CVE-2005-4742 (Unspecified vulnerability in Echelog 0.6.2 allows attackers to ...) + TODO: check +CVE-2005-4741 (NetBSD 1.6, NetBSD 2.0 through 2.1, and NetBSD-current before 20051031 ...) + TODO: check +CVE-2005-4740 (IBM DB2 Universal Database (UDB) 810 before version 8 FixPak 10 allows ...) + TODO: check +CVE-2005-4739 (IBM DB2 Universal Database (UDB) 820 before version 8 FixPak 10 ...) + TODO: check +CVE-2005-4738 (IBM DB2 Universal Database (UDB) 810 before ESE AIX 5765F4100 does not ...) + TODO: check +CVE-2005-4737 (IBM DB2 Universal Database (UDB) 820 before ESE AIX 5765F4100 allows ...) + TODO: check +CVE-2005-4736 (IBM DB2 Universal Database (UDB) 820 before 8.2 FP10 allows remote ...) + TODO: check +CVE-2005-4735 (IBM DB2 Universal Database (UDB) 810 before 8.1 FP10 allows remote ...) + TODO: check +CVE-2005-4734 (Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication ...) + TODO: check +CVE-2005-4733 (NetBSD 2.0 before 20050316 and NetBSD-current before 20050112 allow ...) + TODO: check +CVE-2005-4732 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...) + TODO: check +CVE-2003-1297 (Easy File Sharing (EFS) Web Server 1.2 stores the (1) option.ini (aka ...) + TODO: check +CVE-2003-1296 (Easy File Sharing (EFS) Web Server 1.2 allows remote authenticated ...) + TODO: check CVE-2005-XXXX [xsupplicant information leak] - xsupplicant 1.0.1-5 (bug #317703; low) CVE-2006-XXXX [Multiple issues in libcgi-session-perl] @@ -1979,7 +2115,7 @@ TODO: check CVE-2006-0397 (Unspecified vulnerability in Safari, LaunchServices, and/or CoreTypes ...) TODO: check -CVE-2006-0396 (Buffer overflow in Mail in Apple Mac OS X 10.4 up to 10.4.5 and ...) +CVE-2006-0396 (Buffer overflow in Mail in Apple Mac OS X 10.4 up to 10.4.5, when ...) TODO: check CVE-2006-0395 RESERVED