Secure testing commits - Dec 2006 - r5110 - data/CVE

Author: joeyh
Date: 2006-12-12 09:14:17 +0100 (Tue, 12 Dec 2006)
New Revision: 5110

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-12-12 00:51:30 UTC (rev 5109)
+++ data/CVE/list	2006-12-12 08:14:17 UTC (rev 5110)
@@ -1,3 +1,53 @@
+CVE-2006-6480 (admin/admin_membre/fiche_membre.php in AnnonceScriptHP 2.0
allows ...)
+	TODO: check
+CVE-2006-6479 (Multiple cross-site scripting (XSS) vulnerabilities in
AnnonceScriptHP ...)
+	TODO: check
+CVE-2006-6478 (Multiple SQL injection vulnerabilities in AnnonceScriptHP 2.0
allow ...)
+	TODO: check
+CVE-2006-6477
+	RESERVED
+CVE-2006-6476
+	RESERVED
+CVE-2006-6475
+	RESERVED
+CVE-2006-6474
+	RESERVED
+CVE-2006-6473 (Multiple unspecified vulnerabilities in Xerox WorkCentre and
...)
+	TODO: check
+CVE-2006-6472 (The httpd.conf file in Xerox WorkCentre and WorkCentre Pro
before ...)
+	TODO: check
+CVE-2006-6471 (Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x
before ...)
+	TODO: check
+CVE-2006-6470 (The SNMP Agent in Xerox WorkCentre and WorkCentre Pro before
...)
+	TODO: check
+CVE-2006-6469 (Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x
before ...)
+	TODO: check
+CVE-2006-6468 (Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x
before ...)
+	TODO: check
+CVE-2006-6467 (Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x
before ...)
+	TODO: check
+CVE-2006-6466 (Multiple cross-site scripting (XSS) vulnerabilities in WBmap.php
in ...)
+	TODO: check
+CVE-2006-6465 (** DISPUTED ** ...)
+	TODO: check
+CVE-2006-6464 (viewcart in Midicart accepts negative numbers in the Qty
(quantity) ...)
+	TODO: check
+CVE-2006-6463 (Unrestricted file upload vulnerability in admin/add.php in
Midicart ...)
+	TODO: check
+CVE-2006-6462 (PHP remote file inclusion vulnerability in
engine/oldnews.inc.php in ...)
+	TODO: check
+CVE-2006-6461 (tr1.php in Yourfreeworld Stylish Text Ads Script allows remote
...)
+	TODO: check
+CVE-2006-6460 (Yourfreeworld.com Short Url & Url Tracker Script allows
remote ...)
+	TODO: check
+CVE-2006-6459 (Cross-site scripting (XSS) vulnerability in toplist.php in PhpBB
...)
+	TODO: check
+CVE-2006-6458 (The Trend Micro scan engine before 8.320 for Windows and before
8.150 ...)
+	TODO: check
+CVE-2006-6457 (tiki-wiki_rss.php in Tikiwiki 1.9.5, 1.9.2, and possibly other
...)
+	TODO: check
+CVE-2006-6456 (Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003
and ...)
+	TODO: check
 CVE-2006-6455 (Multiple SQL injection vulnerabilities in admin/default.asp in
DUware ...)
 	TODO: check
 CVE-2006-6454 (execInBackground.php in J-OWAMP Web Interface 2.1b and earlier
allows ...)
@@ -186,7 +236,8 @@
 	TODO: check
 CVE-2006-6363 (Cross-site scripting (XSS) vulnerability in admin.pl in
BlueSocket ...)
 	TODO: check
-CVE-2006-6362 (Buffer overflow in the cluster_process_heartbeat function in
cluster.c ...)
+CVE-2006-6362
+	REJECTED
 	TODO: check
 CVE-2006-6361 (Heap-based buffer overflow in the
uploadprogress_php_rfc1867_file ...)
 	TODO: check
@@ -1233,15 +1284,14 @@
 CVE-2006-5874 (Clam AntiVirus (ClamAV) 0.88 and earlier allows remote attackers
to ...)
 	{DSA-1232-1}
 	- clamav 0.86-1
-CVE-2006-5873 [l2tpns Heartbeat Packets Buffer Overflow Vulnerability]
-	RESERVED
+CVE-2006-5873 (Buffer overflow in the cluster_process_heartbeat function in
cluster.c ...)
 	{DSA-1230-1}
 	- l2tpns 2.1.21-1 (medium; bug #401742)
 	NOTE: http://secunia.com/advisories/23230/
 CVE-2006-5872
 	RESERVED
-CVE-2006-5871
-	RESERVED
+CVE-2006-5871 (smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before
...)
+	TODO: check
 CVE-2006-5870
 	RESERVED
 CVE-2006-5869 (pstotext before 1.9 allows user-assisted attackers to execute
...)