Author: jmm-guest Date: 2005-12-24 14:43:37 +0000 (Sat, 24 Dec 2005) New Revision: 3153 Modified: data/CVE/list Log: lots of NFUs claim more Modified: data/CVE/list ==================================================================--- data/CVE/list 2005-12-24 13:42:30 UTC (rev 3152) +++ data/CVE/list 2005-12-24 14:43:37 UTC (rev 3153) @@ -123,54 +123,54 @@ NOT-FOR-US: LogicBill begin claimed by jmm CVE-2005-4429 (SQL injection vulnerability in CS-Cart 1.3.0 allows remote attackers ...) - TODO: check + NOT-FOR-US: CS-Cart CVE-2005-4428 (Cross-site scripting (XSS) vulnerability in index.php in Cerberus ...) - TODO: check + NOT-FOR-US: Cerberus Helpdesk CVE-2005-4427 (Multiple SQL injection vulnerabilities in Cerberus Helpdesk allow ...) - TODO: check + NOT-FOR-US: Cerberus Helpdesk CVE-2005-4426 (Interpretation conflict in YaBB before 2.1 allows remote authenticated ...) - TODO: check + NOT-FOR-US: YaBB CVE-2005-4425 (Unspecified vulnerability in Kerio WinRoute Firewall before 6.1.3 ...) - TODO: check + NOT-FOR-US: Kerio Firewall CVE-2005-4424 (Directory traversal vulnerability in PHPKIT 1.6.1 R2 and earlier might ...) - TODO: check + NOT-FOR-US: PHPKIT CVE-2005-4423 (Unrestricted file upload vulnerability in PHPFM before 0.2.3 allows ...) - TODO: check + NOT-FOR-US: PHPFM CVE-2005-4422 (Unrestricted file upload vulnerability in toendaCMS before 0.6.2 ...) - TODO: check + NOT-FOR-US: toendaCMS CVE-2005-4421 (Dev-Editor 3.0 allows remote attackers to access any directory outside ...) - TODO: check + NOT-FOR-US: Dev-Editor CVE-2005-4420 (Cross-site scripting (XSS) vulnerability in Honeycomb Archive ...) - TODO: check + NOT-FOR-US: Honeycomb Archive Enterprise CVE-2005-4419 (Multiple SQL injection vulnerabilities in CategoryResults.cfm in ...) - TODO: check + NOT-FOR-US: Honeycomb Archive Enterprise CVE-2005-4417 (The default configuration of Widcomm Bluetooth for Windows (BTW) ...) - TODO: check + NOT-FOR-US: Widcomm Bluetooth for Windows CVE-2005-4416 (SQL injection vulnerability in index.php in TML CMS 0.5 allows remote ...) - TODO: check + NOT-FOR-US: TML CMS CVE-2005-4415 (Cross-site scripting (XSS) vulnerability in index.php in TML CMS 0.5 ...) - TODO: check + NOT-FOR-US: TML CMS CVE-2005-4414 (Unspecified vulnerability in Teamwork 3 before alpha 1.7 has unknown ...) - TODO: check + NOT-FOR-US: Teamwork 3 CVE-2005-4413 (Multiple cross-site scripting (XSS) vulnerabilities in sample scripts ...) - TODO: check + NOT-FOR-US: Websphere CVE-2005-4412 (Citrix Program Neighborhood client before 9.150 caches the user ...) - TODO: check + NOT-FOR-US: Citrix CVE-2005-4411 (Buffer overflow in Mercury Mail Transport System 4.01b allows remote ...) - TODO: check + NOT-FOR-US: Mercury Mail Transport System CVE-2005-4410 (Cross-site scripting (XSS) vulnerability in NQcontent 3 allows remote ...) - TODO: check + NOT-FOR-US: NQcontent CVE-2005-4409 (Cross-site scripting (XSS) vulnerability in MMBase 1.7.4 and earlier ...) - TODO: check + NOT-FOR-US: MMBase CVE-2005-4408 (Multiple SQL injection vulnerabilities in Miraserver 1.0 RC4 and ...) - TODO: check + NOT-FOR-US: Miraserver CVE-2005-4407 (Cross-site scripting (XSS) vulnerability in index.cfm in Mercury CMS ...) - TODO: check + NOT-FOR-US: Mercury CMS CVE-2005-4406 (SQL injection vulnerability in index.cfm in Mercury CMS 4.0 and ...) - TODO: check + NOT-FOR-US: Mercury CMS CVE-2005-4405 (redqueen.cgi in Red Queen 1.02 and earlier allows remote attackers to ...) - TODO: check -end claimed by jmm + NOT-FOR-US: Red Queen +begin claimed by jmm CVE-2005-4404 (SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x ...) TODO: check CVE-2005-4403 (SQL injection vulnerability in index.php in Marwel 2.7 and earlier ...) @@ -285,6 +285,7 @@ TODO: check CVE-2002-2208 (Extended Interior Gateway Routing Protocol (EIGRP), as implemented in ...) TODO: check +end claimed by jmm CVE-2005-4348 (fetchmail before 6.3.1 and before 6.2.5.5, when configured for ...) - fetchmail <unfixed> (bug #343836; low) CVE-2005-4418 [Default policy in util-vserver prior to 0.30.208 trusted unknown capabilities]