Author: jmm-guest Date: 2006-03-22 17:42:49 +0000 (Wed, 22 Mar 2006) New Revision: 3663 Modified: data/CVE/list Log: new gnome-screensaver issue new jabberd issue NFUs new block Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-03-22 17:36:27 UTC (rev 3662) +++ data/CVE/list 2006-03-22 17:42:49 UTC (rev 3663) @@ -1,47 +1,45 @@ CVE-2006-2043 [firebird2 remote DoS] - firebird2 1.5.3.4870-3 (bug #357580) -begin claimed by jmm CVE-2006-1341 (SQL injection vulnerability in events.php in Maian Events 1.0 allows ...) - TODO: check + NOT-FOR-US: Maian Events CVE-2006-1340 (CuteNews 1.4.1 and possibly other versions allows remote attackers to ...) - TODO: check + NOT-FOR-US: CuteNews CVE-2006-1339 (Directory traversal vulnerability in inc/functions.inc.php in CuteNews ...) - TODO: check + NOT-FOR-US: CuteNews CVE-2006-1338 (Webmail in MailEnable Professional Edition before 1.73 and Enterprise ...) - TODO: check + NOT-FOR-US: MailEnable CVE-2006-1337 (Unspecified vulnerability in the POP service in MailEnable Standard ...) - TODO: check + NOT-FOR-US: MailEnable CVE-2006-1336 (Cross-site scripting vulnerability in calendar.php in ExtCalendar 1.0 ...) - TODO: check + NOT-FOR-US: ExtCalendar CVE-2006-1335 (gnome screensaver before 2.14, when running on an X server with ...) - TODO: check + - gnome-screensaver <unfixed> (bug #357885) CVE-2006-1334 (Multiple SQL injection vulnerabilities in Maian Weblog 2.0 allow ...) - TODO: check + NOT-FOR-US: Maian Weblog CVE-2006-1333 (Multpile SQL injection vulnerabilities in BetaParticle Blog 6.0 and ...) - TODO: check + NOT-FOR-US: BetaParticle Blog CVE-2006-1332 (Noah''s Classifieds 1.3 and earlier allows remote attackers to obtain ...) - TODO: check + NOT-FOR-US: Noah''s Classifieds CVE-2006-1331 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...) - TODO: check + NOT-FOR-US: Noah''s Classifieds CVE-2006-1330 (Multiple SQL injection vulnerabilities in phpWebsite allow remote ...) - TODO: check + NOT-FOR-US: phpWebsite CVE-2006-1329 (The SASL negotiation in Jabber Studio jabberd before 2.0s11 allows ...) - TODO: check + - jabberd2 <unfixed> (bug #357874) CVE-2006-1328 (SQL injection vulnerability in count.php in Skull-Splitter PHP ...) - TODO: check + NOT-FOR-US: Skull-Splitter PHP CVE-2006-1327 (SQL injection vulnerability in reg.php in SoftBB 0.1 allows remote ...) - TODO: check + NOT-FOR-US: SoftBB CVE-2006-1326 (Multiple cross-site scripting (XSS) vulnerabilities in Invision Power ...) - TODO: check + NOT-FOR-US: Invision Power Board CVE-2006-1325 (Cross-site scripting (XSS) vulnerability in Streber 0.055 allows ...) - TODO: check + NOT-FOR-US: Streber CVE-2006-1324 (Cross-site scripting (XSS) vulnerability in acp/lib/class_db_mysql.php ...) - TODO: check + NOT-FOR-US: Woltlab Burning Board CVE-2006-1323 (Directory traversal vulnerability in WinHKI 1.6 and earlier allows ...) - TODO: check + NOT-FOR-US: WinHKI CVE-2006-1322 (Novell Netware NWFTPD 5.06.05 allows remote attackers to cause a ...) - TODO: check -end claimed by jmm + NOT-FOR-US: Netware CVE-2006-1318 RESERVED CVE-2006-1317 @@ -82,6 +80,7 @@ RESERVED CVE-2006-1299 RESERVED +begin claimed by jmm CVE-2006-1298 (Format string vulnerability in the Job Engine service (bengine.exe) in ...) TODO: check CVE-2006-1297 (Unspecified vulnerability in Veritas Backup Exec for Windows Server ...) @@ -112,6 +111,7 @@ TODO: check CVE-2006-1284 (The installation of SQLAnywhere in Symantec Ghost 8.0 and 8.2, as used ...) TODO: check +end claimed by jmm CVE-2006-1283 RESERVED CVE-2006-1282 (CRLF injection vulnerability in inc/function.php in MyBulletinBoard ...)