Author: joeyh Date: 2006-01-26 09:14:23 +0000 (Thu, 26 Jan 2006) New Revision: 3371 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-01-26 08:06:00 UTC (rev 3370) +++ data/CVE/list 2006-01-26 09:14:23 UTC (rev 3371) @@ -1,3 +1,35 @@ +CVE-2006-0433 + RESERVED +CVE-2006-0432 (Unspecified vulnerability in BEA WebLogic Server and WebLogic Express ...) + TODO: check +CVE-2006-0431 (Unspecified vulnerability in BEA WebLogic Server and WebLogic Express ...) + TODO: check +CVE-2006-0430 (Certain configurations of BEA WebLogic Server and WebLogic Express ...) + TODO: check +CVE-2006-0429 (BEA WebLogic Server and WebLogic Express 9.0 causes new security ...) + TODO: check +CVE-2006-0428 (Unspecified vulnerability in BEA WebLogic Portal 8.1 SP3 through SP5, ...) + TODO: check +CVE-2006-0427 (Unspecified vulnerability in BEA WebLogic Server and WebLogic Express ...) + TODO: check +CVE-2006-0426 (BEA WebLogic Server and WebLogic Express 8.1 through SP4, when ...) + TODO: check +CVE-2006-0425 (BEA WebLogic Portal 8.1 through SP4 allows remote attackers to obtain ...) + TODO: check +CVE-2006-0424 (BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through ...) + TODO: check +CVE-2006-0423 (BEA WebLogic Portal 8.1 through SP3 stores the password for the RDBMS ...) + TODO: check +CVE-2006-0422 (Multiple unspecified vulnerabilities in BEA WebLogic Server and ...) + TODO: check +CVE-2006-0421 (By design, BEA WebLogic Server and WebLogic Express 7.0 and 6.1, when ...) + TODO: check +CVE-2006-0420 (BEA WebLogic Server and WebLogic Express 8.1 through SP4 and 7.0 ...) + TODO: check +CVE-2006-0419 (BEA WebLogic Server and WebLogic Express 9.0, 8.1 through SP5, and 7.0 ...) + TODO: check +CVE-2005-4667 (Buffer overflow in UnZip 5.50 and earlier allows local users to ...) + TODO: check CVE-2006-0418 (Eval injection vulnerability in 123 Flash Chat Server 5.0 and 5.1 ...) TODO: check CVE-2006-0417 (SQL injection vulnerability in login.php in miniBloggie 1.0 and ...) @@ -12,7 +44,7 @@ TODO: check CVE-2006-0412 (SQL injection vulnerability in CyberShop allows remote attackers to ...) TODO: check -CVE-2006-0411 (Claroline 1.7.2 uses guessable session cookies (md5 hash of connection ...) +CVE-2006-0411 (claro_init_local.inc.php in Claroline 1.7.2 uses guessable session ...) TODO: check CVE-2006-0410 (SQL injection vulnerability in ADOdb before 4.71, when using ...) TODO: check @@ -72,12 +104,12 @@ RESERVED CVE-2006-0382 RESERVED -CVE-2006-0381 - RESERVED -CVE-2006-0380 - RESERVED -CVE-2006-0379 - RESERVED +CVE-2006-0381 (A logic error in the IP fragment cache functionality in pf in FreeBSD ...) + TODO: check +CVE-2006-0380 (A logic error in FreeBSD kernel 5.4-STABLE and 6.0 causes the kernel ...) + TODO: check +CVE-2006-0379 (FreeBSD kernel 5.4-STABLE and 6.0 does not completely initialize a ...) + TODO: check CVE-2006-0378 (Cross-site scripting (XSS) vulnerability in Netrix X-Site Manager ...) TODO: check CVE-2006-0377 @@ -195,7 +227,7 @@ TODO: check CVE-2006-XXXX [mydns remote DoS] - mydns 1.1.0+pre-3 (medium) -CVE-2006-0353 (unix_random.c in lsh 2.0.1 leaks file descriptors related to the ...) +CVE-2006-0353 (unix_random.c in lshd for lsh 2.0.1 leaks file descriptors related to ...) - lsh-utils 2.0.1cdbs-4 (low; bug #349303) CVE-2006-0283 (Unspecified vulnerability in Oracle Database Server 10.1.0.4.2, ...) NOT-FOR-US: Oracle