Author: jmm-guest
Date: 2005-12-28 01:10:07 +0000 (Wed, 28 Dec 2005)
New Revision: 3172
Modified:
data/CVE/list
Log:
more syntax updates
Modified: data/CVE/list
==================================================================---
data/CVE/list 2005-12-28 00:47:15 UTC (rev 3171)
+++ data/CVE/list 2005-12-28 01:10:07 UTC (rev 3172)
@@ -21205,9 +21205,9 @@
CVE-2002-1167 (Cross-site scripting (XSS) vulnerability in IBM Web Traffic
Express ...)
NOT-FOR-US: IBM Websphere
CVE-2002-1166 (Buffer overflow in John Franks WN Server 1.18.2 through 2.0.0
allows ...)
- NOTE: wn not in Debian testing
+ - wn <removed>
CVE-2002-1165 (Sendmail Consortium''s Restricted Shell (SMRSH) in
Sendmail 8.12.6, ...)
- NOTE: Debian uses sendmail 8.13, not vulnerable.
+ - sendmail 8.12.3-5
CVE-2002-1161
REJECTED
CVE-2002-1155 (Buffer overflow in KON kon2 0.3.9b and earlier allows local
users to ...)
@@ -21247,8 +21247,7 @@
{DSA-166}
- purity 1-16
CVE-2002-1121 (SMTP content filter engines, including (1) GFI MailSecurity for
...)
- NOTE: Some SMTP mailscanners can be bypassed by fragmenting
- NOTE: messages.
+ NOTE: Some SMTP mailscanners can be bypassed by fragmenting messages.
TODO: check Debian mailscanners, if any.
CVE-2002-1120 (Buffer overflow in Savant Web Server 3.1 and earlier allows
remote ...)
NOT-FOR-US: Savant Web Server
@@ -21302,103 +21301,103 @@
CVE-2002-1070 (Cross-site scripting vulnerability in PHPWiki Postnuke wiki
module ...)
- phpwiki 1.3.4-1
CVE-2002-1069 (The remote administration capability for the D-Link DI-804
router 4.68 ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: D-Link hardware
CVE-2002-1068 (The web server for D-Link DP-300 print server allows remote
attackers ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: D-Link hardware
CVE-2002-1067 (Administrative web interface for IC9 Pocket Print Server
Firmware ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: IC9 Print Server
CVE-2002-1066 (Thomas Hauck Jana Server 1.4.6 and earlier allows remote
attackers to ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Jana Server
CVE-2002-1065 (Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and
earlier, ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Jana Server
CVE-2002-1064 (Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and
earlier, ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Jana Server
CVE-2002-1063 (Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and
earlier, ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Jana Server
CVE-2002-1062 (Signedness error in Thomas Hauck Jana Server 2.x through 2.2.1,
and ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Jana Server
CVE-2002-1061 (Multiple buffer overflows in Thomas Hauck Jana Server 2.x
through ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Jana Server
CVE-2002-1058 (Directory traversal vulnerability in splashAdmin.php for Cobalt
Qube ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Cobalt Qube
CVE-2002-1055 (Buffer overflow in administrative web server for Brother
NC-3100h ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Brother hardware
CVE-2002-1052 (Jigsaw 2.2.1 on Windows systems allows remote attackers to use
MS-DOS ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Jigsaw
CVE-2002-1048 (HP JetDirect printers allow remote attackers to obtain the ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: HP printers
CVE-2002-1047 (The FTP service in Watchguard Soho Firewall 5.0.35a allows
remote ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Soho Firewall
CVE-2002-1045 (Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial
of ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Ultrafunk Popcorn
CVE-2002-1044 (Buffer overflow in Ultrafunk Popcorn 1.20 allows remote
attackers to ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Ultrafunk Popcorn
CVE-2002-1043 (Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial
of ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Ultrafunk Popcorn
CVE-2002-1042 (Directory traversal vulnerability in search engine for iPlanet
web ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: iPlanet
CVE-2002-1041 (Unknown vulnerability in DCE (1) SMIT panels and (2)
configuration ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: SMIT
CVE-2002-1040 (Unknown vulnerability in the WebSecure (DFSWeb) configuration
...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: WebSecure
CVE-2002-1038 (Double Choco Latte (DCL) before 20020706 does not properly
verify if a ...)
- NOT-FOR-US: no_package
+ - dcl 1:0.9.2-1
CVE-2002-1037 (Cross-site scripting vulnerability in Double Choco Latte (DCL)
before ...)
- NOT-FOR-US: no_package
+ - dcl 1:0.9.2-1
CVE-2002-1036 (Cross-site scripting vulnerability in search.pl for Fluid
Dynamics ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Fluid Dynamics
CVE-2002-1034 (none.php for SunPS iRunbook 2.5.2 allows remote attackers to
read ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: iRunBook
CVE-2002-1033 (Directory traversal vulnerability in none.php for SunPS iRunbook
2.5.2 ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: iRunBook
CVE-2002-1032 (Buffer overflow in KeyFocus (KF) web server 1.0.5 and earlier
allows ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: KeyFocus Web Server
CVE-2002-1029 (Res Manager in Worldspan for Windows Gateway 4.1 allows remote
...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Worldspam for Windows
CVE-2002-1028 (Multiple buffer overflows in the CGI programs for Oddsock Song
...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Oddsock Winamp plugin
CVE-2002-1027 (Cross-site scripting vulnerability in the default HTTP 500 error
...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Macromedia Sitespring
CVE-2002-1026 (Macromedia Sitespring 1.2.0 (277.1) using Sybase runtime engine
...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Macromedia Sitespring
CVE-2002-1023 (BadBlue server allows remote attackers to cause a denial of
service ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: BadBlue
CVE-2002-1022 (BadBlue server stores passwords in plaintext in the ext.ini
file, ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: BadBlue
CVE-2002-1021 (BadBlue server allows remote attackers to read restricted files,
such ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: BadBlue
CVE-2002-1020 (The library feature for Adobe Content Server 3.0 allows a remote
...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Adobe
CVE-2002-1019 (The library feature for Adobe Content Server 3.0 allows a remote
...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Adobe
CVE-2002-1018 (The library feature for Adobe Content Server 3.0 does not verify
if a ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Adobe
CVE-2002-1017 (Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to
other ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Adobe
CVE-2002-1016 (Adobe eBook Reader allows a user to bypass restrictions for
copy, ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Adobe
CVE-2002-1012 (Buffer overflow in web server for Tivoli Management Framework
(TMF) ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Tivoli
CVE-2002-1011 (Buffer overflow in web server for Tivoli Management Framework
(TMF) ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Tivoli
CVE-2002-1010 (Lotus Domino R4 allows remote attackers to bypass access
restrictions ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Domino
CVE-2002-1009 (Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as
...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: PowerBASIC
CVE-2002-1008 (Cross-site scripting vulnerability in PowerBASIC urlcount.cgi,
as ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: PowerBASIC
CVE-2002-1007 (Cross-site scripting vulnerabilities in Blackboard 5 allow
remote ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: Blackboard
CVE-2002-1005 (ArGoSoft Mail Server 1.8.1.7 and earlier allows a webmail user
to ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: ArGoSoft
CVE-2002-1003 (Buffer overflow in MyWebServer 1.02 and earlier allows remote
...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: MyWebServer
CVE-2002-1001 (Buffer overflows in AnalogX Proxy before 4.12 allows remote
attackers ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: AnalogX Proxy
CVE-2002-0999 (Multiple SQL injection vulnerabilities in CARE 2002 before beta
1.0.02 ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: CARE
CVE-2002-0998 (Directory traversal vulnerability in cafenews.php for CARE 2002
before ...)
- NOT-FOR-US: no_package
+ NOT-FOR-US: CARE
CVE-2002-0997 (Buffer overflows in IMAP Agent (imapd) for Novell NetMail (NIMS)
3.0.3 ...)
NOT-FOR-US: Novell
CVE-2002-0996 (Multiple buffer overflows in Novell NetMail (NIMS) 3.0.3 before
3.0.3C ...)