Author: djoume-guest Date: 2006-06-04 12:15:56 +0000 (Sun, 04 Jun 2006) New Revision: 4137 Modified: data/CVE/list Log: * NFUs * gforge issue already fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-06-04 09:56:14 UTC (rev 4136) +++ data/CVE/list 2006-06-04 12:15:56 UTC (rev 4137) @@ -353,11 +353,14 @@ CVE-2005-1755 (PHP remote code injection vulnerability in poll_vote.php in PHP Poll ...) NOT-FOR-US: PHP Poll Creator CVE-2005-1754 (JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, ...) - TODO: check + NOT-FOR-US: JavaMail API + NOTE: vulnerable file not in Debian CVE-2005-1753 (ReadMessage.jsp in JavaMail API 1.1.3 through 1.3, as used by Apache ...) - TODO: check + NOT-FOR-US: JavaMail API + NOTE: vulnerable file not in Debian CVE-2005-1752 (viewFile.php in the scm component of Gforge before 4.0 allows remote ...) - TODO: check + - gforge 3.1-30 + NOTE: viewFile.php disabled in 3.1-30 CVE-2006-2492 (Buffer overflow in Microsoft Word XP and Word 2003 allows ...) NOT-FOR-US: Microsoft CVE-2006-2491 (Cross-site scripting (XSS) vulnerability in (1) index.php and (2) ...)