Author: alec-guest Date: 2006-05-23 11:39:15 +0000 (Tue, 23 May 2006) New Revision: 4059 Modified: data/CVE/list Log: * two related php4 and php5 vulnerabilities (low) Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-05-23 11:00:03 UTC (rev 4058) +++ data/CVE/list 2006-05-23 11:39:15 UTC (rev 4059) @@ -3517,9 +3517,11 @@ CVE-2006-1016 (Buffer overflow in the IsComponentInstalled method in Internet ...) NOT-FOR-US: Windows CVE-2006-1015 (Argument injection vulnerability in certain PHP 3.x, 4.x, and 5.x ...) - TODO: check + - php5 <unfixed> (bug filed; low) + - php4 <unfixed> (bug filed; low) CVE-2006-1014 (Argument injection vulnerability in certain PHP 4.x and 5.x ...) - TODO: check + - php5 <unfixed> (bug filed; low) + - php4 <unfixed> (bug filed; low) CVE-2006-1013 (PHP remote file include vulnerability in index.php in SMartBlog (aka ...) NOT-FOR-US: SMartBlog CVE-2006-1012 (SQL injection vulnerability in WordPress 1.5.2, and possibly other ...)