Author: stef-guest Date: 2006-07-20 19:28:43 +0000 (Thu, 20 Jul 2006) New Revision: 4428 Modified: data/CVE/list Log: a firefox maybe issue and some NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-07-20 18:45:54 UTC (rev 4427) +++ data/CVE/list 2006-07-20 19:28:43 UTC (rev 4428) @@ -1,29 +1,31 @@ CVE-2006-3737 (Cross-site scripting (XSS) vulnerability in ...) - TODO: check + NOT-FOR-US: Plesk CVE-2006-3736 (PHP remote file inclusion vulnerability in core/videodb.class.xml.php ...) - TODO: check + NOT-FOR-US: VideoDB for Mambo CVE-2006-3735 (Multiple PHP remote file inclusion vulnerabilities in Mail2Forum ...) - TODO: check + NOT-FOR-US: Mail2Forum CVE-2006-3734 (Multiple unspecified vulnerabilities in the Command Line Interface ...) - TODO: check + NOT-FOR-US: CS-MARS CVE-2006-3733 (Unspecified vulnerability in a component of the JBoss web application ...) TODO: check CVE-2006-3732 (Cisco Security Monitoring, Analysis and Response System (CS-MARS) ...) - TODO: check + NOT-FOR-US: CS-MARS CVE-2006-3731 (Mozilla Firefox 1.5.0.4 and earlier allows remote user-assisted ...) - TODO: check + NOTE: might be limited to LiveHTTPHeaders extension + - firefox <unfixed> + - mozilla-firefox <unfixed> CVE-2006-3730 (Microsoft Internet Explorer 6 on Windows XP SP2 allows remote ...) - TODO: check + NOT-FOR-US: MSIE CVE-2006-3729 (DataSourceControl in Internet Explorer 6 on Windows XP SP2 with Office ...) - TODO: check + NOT-FOR-US: MSIE CVE-2006-3728 (Unspecified vulnerability in the kernel in Solaris 10 with patch ...) - TODO: check + NOT-FOR-US: Solaris CVE-2006-3727 (Multiple SQL injection vulnerabilities in Eskolar CMS 0.9.0.0 allow ...) - TODO: check + NOT-FOR-US: Eskolar CMS CVE-2006-3726 (Buffer overflow in FileCOPA FTP Server before 1.01 released on 18th ...) - TODO: check + NOT-FOR-US: FileCOPA FTP Server CVE-2006-3725 (Norton Personal Firewall 2006 9.1.0.33 allows local users to cause a ...) - TODO: check + NOT-FOR-US: Norton Personal Firewall CVE-2006-3724 (Unspecified vulnerability in JD Edwards HTML Server for Oracle ...) NOT-FOR-US: Oracle CVE-2006-3723 (Unspecified vulnerability in PeopleSoft Enterprise Portal for Oracle ...)