joeyh at alioth.debian.org
2007-Sep-20 21:14 UTC
[Secure-testing-commits] r6656 - data/CVE
Author: joeyh Date: 2007-09-20 21:14:08 +0000 (Thu, 20 Sep 2007) New Revision: 6656 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-09-20 20:22:07 UTC (rev 6655) +++ data/CVE/list 2007-09-20 21:14:08 UTC (rev 6656) @@ -1,3 +1,39 @@ +CVE-2007-4990 + RESERVED +CVE-2007-4989 + RESERVED +CVE-2007-4988 + RESERVED +CVE-2007-4987 + RESERVED +CVE-2007-4986 + RESERVED +CVE-2007-4985 + RESERVED +CVE-2007-4984 (SQL injection vulnerability in index.php in the Ktauber.com StylesDemo ...) + TODO: check +CVE-2007-4983 (Directory traversal vulnerability in the JetAudio.Interface.1 ActiveX ...) + TODO: check +CVE-2007-4982 (Multiple absolute path traversal vulnerabilities in the ...) + TODO: check +CVE-2007-4981 (Cross-site scripting (XSS) vulnerability in the save function in ...) + TODO: check +CVE-2007-4980 (The readRequest method in org/gcaldaemon/core/http/HTTPListener.java ...) + TODO: check +CVE-2007-4979 (SQL injection vulnerability in index.php in the sondages module in ...) + TODO: check +CVE-2007-4978 (Multiple PHP remote file inclusion vulnerabilities in phpSyncML 0.1.2 ...) + TODO: check +CVE-2007-4977 (Cross-site scripting (XSS) vulnerability in mode.php in Coppermine ...) + TODO: check +CVE-2007-4976 (Directory traversal vulnerability in viewlog.php in Coppermine Photo ...) + TODO: check +CVE-2007-4975 (Cross-site scripting (XSS) vulnerability in hilfe.php in b1gMail 6.3.1 ...) + TODO: check +CVE-2007-4974 (Heap-based buffer overflow in libsndfile 1.0.17 and earlier might ...) + TODO: check +CVE-2007-4973 + RESERVED CVE-2007-4972 (RegMon 7.04 does not properly validate certain parameters to System ...) NOT-FOR-US: NtRegmon CVE-2007-4971 (ProSecurity 1.40 Beta 2 does not properly validate certain parameters ...) @@ -325,8 +361,8 @@ CVE-2007-4828 (Cross-site scripting (XSS) vulnerability in the API pretty-printing ...) - mediawiki 1.10.2-1 (low; bug #442255) [etch] - mediawiki <not-affected> (Does not include the vulnerable code) -CVE-2007-4827 - RESERVED +CVE-2007-4827 (Unspecified vulnerability in the Modbus/TCP Diagnostic function in ...) + TODO: check CVE-2007-4826 (bgpd in Quagga before 0.99.9, when debugging is enabled, allows remote ...) - quagga 0.99.9-1 (low; bug #442133) NOTE: Upstream says that this can only be exploited by configured peers. @@ -3868,8 +3904,8 @@ NOT-FOR-US: skeltoac stats plugin for WordPress CVE-2007-3287 RESERVED -CVE-2007-3286 - RESERVED +CVE-2007-3286 (Multiple buffer overflows in unspecified ActiveX controls in COM ...) + TODO: check CVE-2007-3285 (Mozilla Firefox before 2.0.0.5, when run on Windows, allows remote ...) - iceweasel <not-affected> (Affects only Firefox in Windows) CVE-2007-3284 (corefoundation.dll in Apple Safari 3.0.1 (552.12.2) for Windows allows ...)