Author: alec-guest Date: 2006-05-22 17:12:23 +0000 (Mon, 22 May 2006) New Revision: 4045 Modified: data/CVE/list Log: NOT-FOR-US Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-05-22 16:01:28 UTC (rev 4044) +++ data/CVE/list 2006-05-22 17:12:23 UTC (rev 4045) @@ -34616,21 +34616,21 @@ CVE-2002-0654 (Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote ...) - apache2 2.0.40 CVE-2002-0652 (xfsmd for IRIX 6.5 through 6.5.16 allows remote attackers to execute ...) - TODO: check + NOT-FOR-US: IRIX CVE-2002-0649 (Multiple buffer overflows in SQL Server 2000 Resolution Service allow ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2002-0646 REJECTED CVE-2002-0645 (SQL injection vulnerability in stored procedures for Microsoft SQL ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2002-0644 (Buffer overflow in several Database Consistency Checkers (DBCCs) for ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2002-0643 (The installation of Microsoft Data Engine 1.0 (MSDE 1.0), and ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2002-0641 (Buffer overflow in bulk insert procedure of Microsoft SQL Server 2000, ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2002-0637 (InterScan VirusWall 3.52 build 1462 allows remote attackers to bypass ...) - TODO: check + NOT-FOR-US: InterScan CVE-2002-0636 RESERVED CVE-2002-0635 @@ -34640,183 +34640,183 @@ CVE-2002-0633 RESERVED CVE-2002-0632 (Vulnerability in SGI BDS (Bulk Data Service) BDSPro 2.4 and earlier ...) - TODO: check + NOT-FOR-US: SGI CVE-2002-0629 (The Telnet service for Polycom ViewStation before 7.2.4 allows remote ...) - TODO: check + NOT-FOR-US: Polycom CVE-2002-0628 (The Telnet service for Polycom ViewStation before 7.2.4 does not ...) - TODO: check + NOT-FOR-US: Polycom CVE-2002-0626 (Polycom ViewStation before 7.2.4 has a default null password for the ...) - TODO: check + NOT-FOR-US: Polycom CVE-2002-0624 (Buffer overflow in the password encryption function of Microsoft SQL ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2002-0620 (Buffer overflow in the Profile Service of Microsoft Commerce Server ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2002-0614 (PHP-Survey 20000615 and earlier stores the global.inc file under the ...) - TODO: check + NOT-FOR-US: PHP-Survey CVE-2002-0612 (FileSeek.cgi allows remote attackers to execute arbitrary commands via ...) - TODO: check + NOT-FOR-US: FileSeek CVE-2002-0611 (Directory traversal vulnerability in FileSeek.cgi allows remote ...) - TODO: check + NOT-FOR-US: FileSeek CVE-2002-0610 (Vulnerability in FTPSRVR in HP MPE/iX 6.0 through 7.0 does not ...) - TODO: check + NOT-FOR-US: HP CVE-2002-0609 (Vulnerability in HP MPE/iX 6.0 through 7.0 allows attackers to cause a ...) - TODO: check + NOT-FOR-US: HP CVE-2002-0608 (Buffer overflow in Matu FTP client 1.74 allows remote FTP servers to ...) - TODO: check + NOT-FOR-US: Matu CVE-2002-0607 (members.asp in Snitz Forums 2000 version 3.3.03 and earlier allows ...) - TODO: check + NOT-FOR-US: Snitz CVE-2002-0606 (Buffer overflow in 3Cdaemon 2.0 FTP server allows remote attackers to ...) - TODO: check + NOT-FOR-US: 3Cdaemon CVE-2002-0604 (Snapgear Lite+ firewall 1.5.3 and 1.5.4 allows remote attackers to ...) - TODO: check + NOT-FOR-US: Snapgear CVE-2002-0603 (Snapgear Lite+ firewall 1.5.3 allows remote attackers to cause a ...) - TODO: check + NOT-FOR-US: Snapgear CVE-2002-0602 (Snapgear Lite+ firewall 1.5.4 and 1.5.3 allows remote attackers to ...) - TODO: check + NOT-FOR-US: Snapgear CVE-2002-0600 (Heap overflow in the KTH Kerberos 4 FTP client 4-1.1.1 allows remote ...) TODO: check CVE-2002-0596 (WebTrends Reporting Center 4.0d allows remote attackers to determine ...) - TODO: check + NOT-FOR-US: WebTrends CVE-2002-0595 (Buffer overflow in WTRS_UI.EXE (WTX_REMOTE.DLL) for WebTrends ...) - TODO: check + NOT-FOR-US: WebTrends CVE-2002-0593 (Buffer overflow in Netscape 6 and Mozilla 1.0 RC1 and earlier allows ...) TODO: check CVE-2002-0592 (AOL Instant Messenger (AIM) allows remote attackers to steal files ...) - TODO: check + NOT-FOR-US: AOL CVE-2002-0591 (Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 ...) - TODO: check + NOT-FOR-US: AOL CVE-2002-0590 (Cross-site scripting (CSS) vulnerability in IcrediBB 1.1 Beta allows ...) - TODO: check + NOT-FOR-US: IncrediBB CVE-2002-0589 (PVote before 1.9 allows remote attackers to change the administrative ...) - TODO: check + NOT-FOR-US: PVote CVE-2002-0588 (PVote before 1.9 does not authenticate users for restricted ...) - TODO: check + NOT-FOR-US: PVote CVE-2002-0587 (Buffer overflow in Ns_PdLog function for the external database driver ...) TODO: check CVE-2002-0586 (Format string vulnerability in Ns_PdLog function for the external ...) TODO: check CVE-2002-0585 (Unknown vulnerability in ndd for HP-UX 11.11 with certain TRANSPORT patches ...) - TODO: check + NOT-FOR-US: HP-UX CVE-2002-0584 (WorkforceROI Xpede 4.1 allows remote attackers to read user timesheets ...) - TODO: check + NOT-FOR-US: WorkforceROI CVE-2002-0583 (WorkforceROI Xpede 4.1 uses a small random namespace (5 alphanumeric ...) - TODO: check + NOT-FOR-US: WorkforceROI CVE-2002-0582 (WorkforceROI Xpede 4.1 stores temporary expense claim reports in a ...) - TODO: check + NOT-FOR-US: WorkforceROI CVE-2002-0581 (WorkforceROI Xpede 4.1 allows remote attackers to execute arbitrary ...) - TODO: check + NOT-FOR-US: WorkforceROI CVE-2002-0580 (WorkforceROI Xpede 4.1 allows remote attackers to obtain the database ...) - TODO: check + NOT-FOR-US: WorkforceROI CVE-2002-0579 (WorkforceROI Xpede 4.1 allows remote attackers to gain privileges as ...) - TODO: check + NOT-FOR-US: WorkforceROI CVE-2002-0578 (Buffer overflow in 4D WebServer 6.7.3 allows remote attackers to cause ...) - TODO: check + NOT-FOR-US: 4D WebServer CVE-2002-0577 (Vulnerability in passwd for HP-UX 11.00 and 11.11 allows local users ...) - TODO: check + NOT-FOR-US: HP-UX CVE-2002-0572 (FreeBSD 4.5 and earlier, and possibly other BSD-based operating ...) - TODO: check + NOT-FOR-US: FreeBSD CVE-2002-0570 (The encrypted loop device in Linux kernel 2.4.10 and earlier does not ...) TODO: check CVE-2002-0568 (Oracle 9i Application Server stores XSQL and SOAP configuration files ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0566 (PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0565 (Oracle 9iAS 1.0.2.x compiles JSP files in the _pages directory with ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0564 (PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0563 (The default configuration of Oracle 9i Application Server 1.0.2.x ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0562 (The default configuration of Oracle 9i Application Server 1.0.2.x ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0561 (The default configuration of the PL/SQL Gateway web administration ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0560 (PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0559 (Buffer overflows in PL/SQL module 3.0.9.8.2 in Oracle 9i Application ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0558 (Directory traversal vulnerability in TYPSoft FTP server 0.97.1 and ...) - TODO: check + NOT-FOR-US: TYPSoft CVE-2002-0557 (Vulnerability in OpenBSD 3.0, when using YP with netgroups in the ...) - TODO: check + NOT-FOR-US: OpenBSD CVE-2002-0556 (Directory traversal vulnerability in Quik-Serv HTTP server 1.1B allows ...) - TODO: check + NOT-FOR-US: Quik-Serv CVE-2002-0555 (IBM Informix Web DataBlade 4.12 unescapes user input even if an ...) - TODO: check + NOT-FOR-US: IBM CVE-2002-0554 (webdriver in IBM Informix Web DataBlade 4.12 allows remote attackers ...) - TODO: check + NOT-FOR-US: IBM CVE-2002-0552 (Multiple buffer overflows in Melange Chat server 2.02 allow remote or ...) - TODO: check + NOT-FOR-US: Melange CVE-2002-0551 (Cross-site scripting vulnerability in Dynamic Guestbook 3.0 allows ...) - TODO: check + NOT-FOR-US: Dynamic Guestbook CVE-2002-0550 (Dynamic Guestbook 3.0 allows remote attackers to execute arbitrary ...) - TODO: check + NOT-FOR-US: Dynamic Guestbook CVE-2002-0549 (Cross-site scripting vulnerabilities in Anthill allow remote attackers ...) - TODO: check + NOT-FOR-US: Anthill CVE-2002-0548 (Anthill allows remote attackers to bypass authentication and file bug ...) - TODO: check + NOT-FOR-US: Anthill CVE-2002-0547 (Buffer overflow in the mini-browser for Winamp 2.79 and earlier allows ...) - TODO: check + NOT-FOR-US: Winamp CVE-2002-0544 (Aprelium Abyss Web Server (abyssws) before 1.0.3 stores the ...) - TODO: check + NOT-FOR-US: Aprelium CVE-2002-0541 (Buffer overflow in Tivoli Storage Manager TSM (1) Server or Storage ...) - TODO: check + NOT-FOR-US: Tivoli CVE-2002-0540 (Nortel CVX 1800 is installed with a default "public" community string, ...) - TODO: check + NOT-FOR-US: Nortel CVE-2002-0537 (The admin.html file in StepWeb Search Engine (SWS) 2.5 stores ...) - TODO: check + NOT-FOR-US: SWS CVE-2002-0535 (Cross-site scripting vulnerabilities in PostBoard 2.0.1 and earlier ...) - TODO: check + NOT-FOR-US: PostBoard CVE-2002-0534 (PostBoard 2.0.1 and earlier with BBcode allows remote attackers to ...) - TODO: check + NOT-FOR-US: PostBoard CVE-2002-0533 (phpBB 1.4.4 and earlier with BBcode allows remote attackers to cause a ...) TODO: check CVE-2002-0530 (Cross-site scripting vulnerability in Novell Web Search 2.0.1 allows ...) - TODO: check + NOT-FOR-US: Novell CVE-2002-0529 (HP Photosmart printer driver for Mac OS X installs the ...) - TODO: check + NOT-FOR-US: HP/Apple CVE-2002-0528 (Watchguard SOHO firewall 5.0.35 unpredictably disables certain IP ...) - TODO: check + NOT-FOR-US: Watchguard CVE-2002-0527 (Watchguard SOHO firewall before 5.0.35 allows remote attackers to ...) - TODO: check + NOT-FOR-US: Watchguard CVE-2002-0526 (Vulnerability in (1) inews or (2) rnews for INN 2.2.3 and earlier, ...) TODO: check CVE-2002-0525 (Format string vulnerabilities in (1) inews or (2) rnews for INN 2.2.3 ...) TODO: check CVE-2002-0524 (ASP-Nuke RC2 and earlier allows remote attackers to determine the ...) - TODO: check + NOT-FOR-US: ASP-Nuke CVE-2002-0523 (ASP-Nuke RC2 and earlier allows remote attackers to list all logged-in ...) - TODO: check + NOT-FOR-US: ASP-Nuke CVE-2002-0522 (ASP-Nuke RC2 and earlier allows remote attackers to bypass ...) - TODO: check + NOT-FOR-US: ASP-Nuke CVE-2002-0521 (Cross-site scripting vulnerabilities in ASP-Nuke RC2 and earlier allow ...) - TODO: check + NOT-FOR-US: ASP-Nuke CVE-2002-0520 (Cross-site scripting vulnerability in functions-inc.asp for ASP-Nuke ...) - TODO: check + NOT-FOR-US: ASP-Nuke CVE-2002-0518 (The SYN cache (syncache) and SYN cookie (syncookie) mechanism in ...) - TODO: check + NOT-FOR-US: FreeBSD CVE-2002-0517 (Buffer overflow in X11 library (libX11) on Caldera Open UNIX 8.0.0, ...) TODO: check CVE-2002-0515 (IPFilter 3.4.25 and earlier sets a different TTL when a port is being ...) TODO: check CVE-2002-0514 (PF in OpenBSD 3.0 with the return-rst rule sets the TTL to 128 in the ...) - TODO: check + NOT-FOR-US: OpenBSD CVE-2002-0510 (The UDP implementation in Linux 2.4.x kernels keeps the IP ...) TODO: check CVE-2002-0509 (Transparent Network Substrate (TNS) Listener in Oracle 9i 9.0.1.1 ...) - TODO: check + NOT-FOR-US: Oracle CVE-2002-0508 (wwwisis 3.45 and earlier allows remote attackers to execute arbitrary ...) - TODO: check + NOT-FOR-US: wwwisis CVE-2002-0507 (An interaction between Microsoft Outlook Web Access (OWA) with RSA ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2002-0504 (Cross-site scripting vulnerability in Citrix NFuse 1.6 and earlier ...) - TODO: check + NOT-FOR-US: Citrix CVE-2002-0503 (Directory traversal vulnerability in boilerplate.asp for Citrix NFuse ...) - TODO: check + NOT-FOR-US: Citrix CVE-2002-0502 (Citrix NFuse 1.6 may allow remote attackers to list applications ...) - TODO: check + NOT-FOR-US: Citrix CVE-2002-0500 (Internet Explorer 5.0 through 6.0 allows remote attackers to determine ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2002-0499 (The d_path function in Linux kernel 2.2.20 and earlier, and 2.4.18 and ...) TODO: check CVE-2002-0498 (Etnus TotalView 5.0.0-4 installs certain files with UID 5039 and GID ...)