Author: fw Date: 2007-03-24 10:23:45 +0000 (Sat, 24 Mar 2007) New Revision: 5581 Modified: data/CVE/list Log: NFUs CVE-2007-1584: php5 CVE-2007-1583: php4, php5 Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-03-24 10:15:59 UTC (rev 5580) +++ data/CVE/list 2007-03-24 10:23:45 UTC (rev 5581) @@ -1,19 +1,20 @@ CVE-2007-1590 (The Grandstream BudgeTone 200 IP phone, with program 1.1.1.14 and ...) - TODO: check + NOT-FOR-US: Grandstream CVE-2007-1589 (TrueCrypt before 4.3, when set-euid mode is used on Linux, allows ...) - TODO: check + NOT-FOR-US: Truecrypt CVE-2007-1588 (server.cpp in MyServer 0.8.5 calls Process::setuid before calling ...) - TODO: check + NOT-FOR-US: MyServer CVE-2007-1587 (templates/config/mail.tpl in Tim Soderstrom StatsDawg 0.92 allows ...) - TODO: check + NOT-FOR-US: StatsDawg CVE-2007-1586 (ZynOS 3.40 allows remote attackers to cause a denial of service (link ...) - TODO: check + NOT-FOR-US: Zyxel CVE-2007-1585 (The Linksys WAG200G with firmware 1.01.01 allows remote attackers to ...) - TODO: check + NOT-FOR-US: Cisco CVE-2007-1584 (Buffer underflow in the header function in PHP 5.2.0 allows ...) - TODO: check + - php5 <unfixed> CVE-2007-1583 (The mb_parse_str function in PHP 4.0.0 through 4.4.6 and 5.0.0 through ...) - TODO: check + - php5 <unfixed> (medium) + - php4 <unfixed> (medium) CVE-2007-1582 (The resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 ...) TODO: check CVE-2007-1581 (The resource system in PHP 5.0.0 through 5.2.1 allows ...) @@ -45,7 +46,7 @@ CVE-2007-1568 (Stack-based buffer overflow in DaanSystems NewsReactor 20070220.21 ...) TODO: check CVE-2007-1567 (Stack-based buffer overflow in War FTP Daemon 1.65, and possibly ...) - TODO: check + NOT-FOR-US: WarFTPd CVE-2007-1566 (SQL injection vulnerability in News/page.asp in NetVIOS Portal allows ...) TODO: check CVE-2007-1565 (Konqueror 3.5.5 allows remote attackers to cause a denial of service ...)