thr3ads.net - Secure testing commits - [Secure-testing-commits] r5158

If this information is useful, please help other people find it:
Share via:
Joey Hess
2006-Dec-22 09:14 UTC
[Secure-testing-commits] r5158 - data/CVE

Author: joeyh
Date: 2006-12-22 09:14:17 +0100 (Fri, 22 Dec 2006)
New Revision: 5158

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-12-21 19:50:16 UTC (rev 5157)
+++ data/CVE/list	2006-12-22 08:14:17 UTC (rev 5158)
@@ -1,3 +1,85 @@
+CVE-2006-6697 (CRLF injection vulnerability in webapp/jsp/calendar.jsp in
Oracle ...)
+	TODO: check
+CVE-2006-6696 (Double-free vulnerability in Microsoft Windows 2000, XP, 2003,
and ...)
+	TODO: check
+CVE-2006-6695 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
in ...)
+	TODO: check
+CVE-2006-6694 (Directory traversal vulnerability in include/config.php in
E-Uploader ...)
+	TODO: check
+CVE-2006-6693 (Multiple buffer overflows in zabbix before 20061006 allow
attackers to ...)
+	TODO: check
+CVE-2006-6692 (Multiple format string vulnerabilities in zabbix before 20061006
allow ...)
+	TODO: check
+CVE-2006-6691 (Multiple PHP remote file inclusion vulnerabilities in Valdersoft
...)
+	TODO: check
+CVE-2006-6690 (rtehtmlarea/pi1/class.tx_rtehtmlarea_pi1.php in Typo3 4.0.0
through ...)
+	TODO: check
+CVE-2006-6689 (Multiple PHP remote file inclusion vulnerabilities in Paristemi
0.8.3 ...)
+	TODO: check
+CVE-2006-6688 (Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4
Network ...)
+	TODO: check
+CVE-2006-6687 (Cross-site scripting (XSS) vulnerability in Web Automated Perl
Portal ...)
+	TODO: check
+CVE-2006-6686 (PHP remote file inclusion vulnerability in sender.php in Carsen
Klock ...)
+	TODO: check
+CVE-2006-6685 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd 2.3.3
...)
+	TODO: check
+CVE-2006-6684 (Heap-based buffer overflow in Pedro Lineu Orso chetcpasswd
before 2.4 ...)
+	TODO: check
+CVE-2006-6683 (Pedro Lineu Orso chetcpasswd 2.4.1 and earlier verifies and
updates ...)
+	TODO: check
+CVE-2006-6682 (Pedro Lineu Orso chetcpasswd 2.3.3 provides a different error
message ...)
+	TODO: check
+CVE-2006-6681 (Pedro Lineu Orso chetcpasswd 2.3.3 does not have a rate limit
for ...)
+	TODO: check
+CVE-2006-6680 (Pedro Lineu Orso chetcpasswd before 2.3.1 does not document the
need ...)
+	TODO: check
+CVE-2006-6679 (Pedro Lineu Orso chetcpasswd before 2.4 relies on the
X-Forwarded-For ...)
+	TODO: check
+CVE-2006-6678 (The edit_textarea function in form-file.c in Netrik 1.15.4 and
earlier ...)
+	TODO: check
+CVE-2006-6677 (ESET NOD32 Antivirus before 1.1743 allows remote attackers to
cause a ...)
+	TODO: check
+CVE-2006-6676 (Integer overflow in ESET NOD32 Antivirus before 1.1743 allows
remote ...)
+	TODO: check
+CVE-2006-6675 (Cross-site scripting (XSS) vulnerability in Novell NetWare 6.5
Support ...)
+	TODO: check
+CVE-2006-6674 (Ozeki HTTP-SMS Gateway 1.0, and possibly earlier, stores
usernames and ...)
+	TODO: check
+CVE-2006-6673 (WinFtp Server 2.0.2 allows remote attackers to cause a denial of
...)
+	TODO: check
+CVE-2006-6672 (Multiple SQL injection vulnerabilities in Burak Yylmaz Download
Portal ...)
+	TODO: check
+CVE-2006-6671 (SQL injection vulnerability in down.asp in Burak Yylmaz Download
...)
+	TODO: check
+CVE-2006-6670 (Unspecified vulnerability in Nortel CallPilot 4.x Server has
unknown ...)
+	TODO: check
+CVE-2006-6669 (Cross-site scripting (XSS) vulnerability in export_handler.php
in ...)
+	TODO: check
+CVE-2006-6668 (Cross-site scripting (XSS) vulnerability in VerliAdmin 0.3 and
earlier ...)
+	TODO: check
+CVE-2006-6667 (Multiple SQL injection vulnerabilities in VerliAdmin 0.3 and
earlier ...)
+	TODO: check
+CVE-2006-6666 (PHP remote file inclusion vulnerability in index.php in
VerliAdmin 0.3 ...)
+	TODO: check
+CVE-2006-6665 (Buffer overflow in Astonsoft DeepBurner Pro and Free 1.8.0 and
earlier ...)
+	TODO: check
+CVE-2006-6664 (Format string vulnerability in Marathon Aleph One before 0.17.1
and ...)
+	TODO: check
+CVE-2006-6663 (The server component in Marathon Aleph One before 0.17.1 and
...)
+	TODO: check
+CVE-2006-6662 (Unspecified vulnerability in Linux User Management (novell-lum)
on ...)
+	TODO: check
+CVE-2006-6661 (Variable overwrite vulnerability in blog.php in PHP-Update 2.7
and ...)
+	TODO: check
+CVE-2006-6660 (The nodeType function in KDE libkhtml 4.2.0 and earlier, as used
by ...)
+	TODO: check
+CVE-2002-2221 (Untrusted search path vulnerability in Pedro Lineu Orso
chetcpasswd ...)
+	TODO: check
+CVE-2002-2220 (Buffer overflow in Pedro Lineu Orso chetcpasswd before 1.12,
when ...)
+	TODO: check
+CVE-2002-2219 (chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1
allows ...)
+	TODO: check
 CVE-2007-0010
 	RESERVED
 CVE-2007-0009
@@ -1276,8 +1358,8 @@
 CVE-2006-6105 (Format string vulnerability in the host chooser window
(gdmchooser) in ...)
 	- gdm 2.16.4-1 (medium; bug #403219)
 	[sarge] - gdm <not-affected> (Vulnerable code not present)
-CVE-2006-6104
-	RESERVED
+CVE-2006-6104 (The System.Web class in the XSP for ASP.NET server 1.1 through
2.0 in ...)
+	TODO: check
 CVE-2006-6103
 	RESERVED
 CVE-2006-6102
Secure testing commits - Dec 2006 - r5158 - data/CVE

[Secure-testing-commits] r5158 - data/CVE
