Author: joeyh
Date: 2006-01-30 21:14:23 +0000 (Mon, 30 Jan 2006)
New Revision: 3391
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-01-30 15:24:59 UTC (rev 3390)
+++ data/CVE/list 2006-01-30 21:14:23 UTC (rev 3391)
@@ -1,3 +1,87 @@
+CVE-2006-0467
+ RESERVED
+CVE-2006-0466 (Cross-site scripting (XSS) vulnerability in search.asp in
Goldstag ...)
+ TODO: check
+CVE-2006-0465 (Cross-site scripting (XSS) vulnerability in
risultati_ricerca.php in ...)
+ TODO: check
+CVE-2006-0464 (Multiple SQL injection vulnerabilities in index.php in
IdeoContent ...)
+ TODO: check
+CVE-2006-0463 (Cross-site scripting (XSS) vulnerability in IdeoContent Manager
allows ...)
+ TODO: check
+CVE-2006-0462 (SQL injection vulnerability in comentarios.php in AndoNET Blog
...)
+ TODO: check
+CVE-2006-0461 (Cross-site scripting (XSS) vulnerability in core.input.php in
...)
+ TODO: check
+CVE-2006-0460
+ RESERVED
+CVE-2006-0459
+ RESERVED
+CVE-2006-0458
+ RESERVED
+CVE-2006-0457
+ RESERVED
+CVE-2006-0456
+ RESERVED
+CVE-2006-0455
+ RESERVED
+CVE-2006-0454
+ RESERVED
+CVE-2006-0453
+ RESERVED
+CVE-2006-0452
+ RESERVED
+CVE-2006-0451
+ RESERVED
+CVE-2006-0450 (phpBB 2.0.19 and earlier allows remote attackers to cause a
denial of ...)
+ TODO: check
+CVE-2006-0449 (Early termination vulnerability in the IMAP service in E-Post
Mail ...)
+ TODO: check
+CVE-2006-0448 (Multiple directory traversal vulnerabilities in (1)
EPSTIMAP4S.EXE and ...)
+ TODO: check
+CVE-2006-0447 (Multiple buffer overflows in E-Post Mail Server 4.10 and SPA-PRO
Mail ...)
+ TODO: check
+CVE-2006-0446 (Unspecified vulnerability in WeBWorK 2.1.3 and 2.2-pre1 allows
remote ...)
+ TODO: check
+CVE-2006-0445 (index.php in Phpclanwebsite 1.23.1 allows remote authenticated
users ...)
+ TODO: check
+CVE-2006-0444 (SQL injection vulnerability in index.php in Phpclanwebsite (aka
PCW) ...)
+ TODO: check
+CVE-2006-0443 (Cross-site scripting (XSS) vulnerability in archive.php in
CheesyBlog ...)
+ TODO: check
+CVE-2006-0442 (Multiple cross-site scripting (XSS) vulnerabilities in
usercp.php in ...)
+ TODO: check
+CVE-2006-0441 (Stack-based buffer overflow in Sami FTP Server 2.0.1 allows
remote ...)
+ TODO: check
+CVE-2006-0440 (Text Rider 2.4 allows attackers to bypass authentication and
upload ...)
+ TODO: check
+CVE-2006-0439 (Text Rider 2.4 stores sensitive data in the data directory under
the ...)
+ TODO: check
+CVE-2006-0438
+ RESERVED
+CVE-2006-0437
+ RESERVED
+CVE-2006-0436 (Unspecified vulnerability in HP HP-UX B.11.00, B.11.04, and
B.11.11 ...)
+ TODO: check
+CVE-2006-0435 (Unspecified vulnerability in Oracle PL/SQL (PLSQL) allows
attackers to ...)
+ TODO: check
+CVE-2006-0434 (Directory traversal vulnerability in action.php in phpXplorer
allows ...)
+ TODO: check
+CVE-2005-4675 (Cross-site scripting (XSS) vulnerability in list.php in Complete
PHP ...)
+ TODO: check
+CVE-2005-4674 (Multiple SQL injection vulnerabilities in list.php in Complete
PHP ...)
+ TODO: check
+CVE-2005-4673 (ioFTPD 0.5.84 u responds with different messages depending on
whether ...)
+ TODO: check
+CVE-2005-4672 (Cross-site scripting (XSS) vulnerability in
image-editor-52/index.php ...)
+ TODO: check
+CVE-2005-4671 (Cross-site scripting (XSS) vulnerability in simple-upload-53.php
in ...)
+ TODO: check
+CVE-2005-4670 (Cross-site scripting (XSS) vulnerability in message.php in
CityPost ...)
+ TODO: check
+CVE-2005-4669 (SQL injection vulnerability in RT Internet Solutions (RTIS)
WebAdmin ...)
+ TODO: check
+CVE-2005-4668 (The embedded HSQLDB in ParosProxy before 3.2.7, when running
with JDK ...)
+ TODO: check
CVE-2006-0433
RESERVED
CVE-2006-0432 (Unspecified vulnerability in BEA WebLogic Server and WebLogic
Express ...)
@@ -948,8 +1032,8 @@
RESERVED
CVE-2006-0058
RESERVED
-CVE-2006-0057
- RESERVED
+CVE-2006-0057 (Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote
attackers ...)
+ TODO: check
CVE-2006-0056
RESERVED
CVE-2006-0055 (The ispell_op function in ee on FreeBSD 4.10 to 6.0 uses
predictable ...)
@@ -2019,7 +2103,7 @@
NOT-FOR-US: DRZES HMS
CVE-2005-4135 (Direct static code injection vulnerability in
includes/newtopic.php in ...)
NOT-FOR-US: SimpleBBS
-CVE-2005-4134 (** DISPUTED ** ...)
+CVE-2005-4134 (Mozilla Firefox 1.5, Netscape 8.0.4 and 7.2, and K-Meleon before
...)
- mozilla-firefox <unfixed> (unimportant)
NOTE: Not exploitable beyond a sluggish browser startup, see
NOTE: http://www.mozilla.org/security/history-title.html
@@ -6839,7 +6923,7 @@
- phpbb2 2.0.6c (low)
CVE-2004-2357 (The embedded MySQL 4.0 server for Proofpoint Protection Server
does ...)
NOT-FOR-US: roofpoint Protection Server
-CVE-2004-2356 (Fizmez Web Server 1.0 allows remote attackers to cause a denial
of ...)
+CVE-2004-2356 (Early termination vulnerability in Fizmez Web Server 1.0 allows
remote ...)
NOT-FOR-US: Fizmez
CVE-2004-2355 (Cross-site scripting (XSS) vulnerability in Crafty Syntax Live
Help ...)
NOT-FOR-US: Crafty Syntax Live Help
@@ -22086,10 +22170,10 @@
CVE-2002-1575 (cgiemail allows remote attackers to use cgiemail as a spam proxy
via ...)
{DSA-437}
- cgiemail 1.6-20
-CVE-2002-1573
- RESERVED
-CVE-2002-1572
- RESERVED
+CVE-2002-1573 (Unspecified vulnerability in the pcilynx ieee1394 firewire
driver ...)
+ TODO: check
+CVE-2002-1572 (Signed integer overflow in the bttv_read function in the bttv
driver ...)
+ TODO: check
CVE-2002-1571 (The linux 2.4 kernel before 2.4.19 assumes that the fninit
instruction ...)
TODO: check
CVE-2002-1570 (Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and
...)