thr3ads.net - Secure testing commits - [Secure-testing-commits] r4943

If this information is useful, please help other people find it:
Share via:
Joey Hess
2006-Nov-09 09:14 UTC
[Secure-testing-commits] r4943 - data/CVE

Author: joeyh
Date: 2006-11-09 09:14:21 +0100 (Thu, 09 Nov 2006)
New Revision: 4943

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-11-08 21:37:18 UTC (rev 4942)
+++ data/CVE/list	2006-11-09 08:14:21 UTC (rev 4943)
@@ -1,3 +1,55 @@
+CVE-2006-5818 (Multiple buffer overflows in tunekrnl in IBM Lotus Domino 6.x
before ...)
+	TODO: check
+CVE-2006-5817 (prl_dhcpd in Parallels Desktop for Mac Build 1940 uses insecure
...)
+	TODO: check
+CVE-2006-5816 (Multiple PHP remote file inclusion vulnerabilities in Dmitry
Sheiko ...)
+	TODO: check
+CVE-2006-5815 (Unspecified vulnerability in ProFTPD allows remote attackers to
...)
+	TODO: check
+CVE-2006-5814 (Unspecified vulnerability in Novell eDirectory allows remote
attackers ...)
+	TODO: check
+CVE-2006-5813 (Unspecified vulnerability in Novell eDirectory 8.8 allows
attackers to ...)
+	TODO: check
+CVE-2006-5812 (Unspecified vulnerability in Kerio MailServer allows attackers
to ...)
+	TODO: check
+CVE-2006-5811 (PHP remote file inclusion vulnerability in
library/translation.inc.php ...)
+	TODO: check
+CVE-2006-5810 (Cross-site scripting (XSS) vulnerability in ...)
+	TODO: check
+CVE-2006-5809 (Multiple unspecified vulnerabilities in Jonathon J. Freeman OvBB
...)
+	TODO: check
+CVE-2006-5808 (The installation of Cisco Secure Desktop (CSD) before 3.1.1.45
uses ...)
+	TODO: check
+CVE-2006-5807 (Cisco Secure Desktop (CSD) before 3.1.1.45 allows local users to
...)
+	TODO: check
+CVE-2006-5806 (SSL VPN Client in Cisco Secure Desktop before 3.1.1.45, when
...)
+	TODO: check
+CVE-2006-5805 (Microsoft Internet Explorer 7 allows remote attackers to cause a
...)
+	TODO: check
+CVE-2006-5804 (PHP remote file inclusion vulnerability in admin.php in Advanced
...)
+	TODO: check
+CVE-2006-5803 (PHP remote file inclusion vulnerability in ...)
+	TODO: check
+CVE-2006-5802 (SQL injection vulnerability in message_details.php in The Web
Drivers ...)
+	TODO: check
+CVE-2006-5801 (The owserver module in owfs and owhttpd 2.5p5 and earlier does
not ...)
+	TODO: check
+CVE-2006-5800 (Cross-site scripting (XSS) vulnerability in default.asp in ...)
+	TODO: check
+CVE-2006-5799 (Multiple cross-site scripting (XSS) vulnerabilities in
default.asp in ...)
+	TODO: check
+CVE-2006-5798 (SQL injection vulnerability in default.asp in Xenis.creator CMS
allows ...)
+	TODO: check
+CVE-2006-5797 (Multiple SQL injection vulnerabilities in default.asp in
Xenis.creator ...)
+	TODO: check
+CVE-2006-5796 (Multiple PHP remote file inclusion vulnerabilities in Soholaunch
Pro ...)
+	TODO: check
+CVE-2006-5795 (Multiple PHP remote file inclusion vulnerabilities in OpenEMR
2.8.1 ...)
+	TODO: check
+CVE-2006-5794 (Unspecified vulnerability in the sshd Privilege Separation
Monitor in ...)
+	TODO: check
+CVE-2006-5793
+	RESERVED
 CVE-2006-XXXX [obexpushd arbitrary command execution]
 	- obexpushd 0.4+svn10-1 (bug #397297; medium)
 CVE-2006-XXXX [motion insecure tempfile creation]
@@ -89,10 +141,10 @@
 	RESERVED
 CVE-2006-5749
 	RESERVED
-CVE-2006-5748
-	RESERVED
-CVE-2006-5747
-	RESERVED
+CVE-2006-5748 (Multiple unspecified vulnerabilities in the JavaScript engine in
...)
+	TODO: check
+CVE-2006-5747 (Unspecified vulnerability in Mozilla Firefox before 1.5.0.8,
...)
+	TODO: check
 CVE-2006-5746 (The console in AirMagnet Enterprise does not properly validate
the ...)
 	NOT-FOR-US: AirMagnet
 CVE-2006-5745 (Unspecified vulnerability in the setRequestHeader method in the
...)
@@ -670,12 +722,12 @@
 	{DSA-1206-1}
 	- php4 4:4.4.4-4 (high; bug #396764)
 	- php5 5.1.6-6 (high; bug #396766)
-CVE-2006-5464
-	RESERVED
-CVE-2006-5463
-	RESERVED
-CVE-2006-5462
-	RESERVED
+CVE-2006-5464 (Multiple unspecified vulnerabilities in the layout engine in
Mozilla ...)
+	TODO: check
+CVE-2006-5463 (Unspecified vulnerability in Mozilla Firefox before 1.5.0.8,
...)
+	TODO: check
+CVE-2006-5462 (Mozilla Network Security Service (NSS) library before 3.11.3, as
used ...)
+	TODO: check
 CVE-2006-5461
 	RESERVED
 CVE-2006-XXXX [diffmon information leakage]
@@ -2061,8 +2113,8 @@
 	{DSA-1200-1}
 	- qt-x11-free 3:3.3.7-1 (bug #394192; bug #394313)
 	- qt4-x11 4.2.1-1 (bug #394192)
-CVE-2006-4810
-	RESERVED
+CVE-2006-4810 (Buffer overflow in the (1) texi2dvi and (2) texindex commands in
texinfo 4.8 ...)
+	TODO: check
 CVE-2006-4809 (Stack-based buffer overflow in loader_pnm.c in imlib2 before
1.2.1, ...)
 	- imlib2 1.3.0.0debian1-3 (medium; bug #397371)
 CVE-2006-4808 (Heap-based buffer overflow in loader_tga.c in imlib2 before
1.2.1, and ...)
@@ -4937,7 +4989,7 @@
 	NOT-FOR-US: Fujitsu ServerView
 CVE-2006-3577 (SQL injection vulnerability in index.php in LifeType 1.0.5
allows ...)
 	NOT-FOR-US: LifeType
-CVE-2006-3576 (SQL injection vulnerability in Search.PHP in SenseSites
CommonSense ...)
+CVE-2006-3576 (SQL injection vulnerability in search.php in SenseSites
CommonSense ...)
 	NOT-FOR-US: SenseSites CommonSense
 CVE-2006-3575 (Unknown vulnerability in the Buffer Overflow Protection in
McAfee ...)
 	NOT-FOR-US: McAfee VirusScan Enterprise
Secure testing commits - Nov 2006 - r4943 - data/CVE

[Secure-testing-commits] r4943 - data/CVE
