white at alioth.debian.org
2008-May-02 11:04 UTC
[Secure-testing-commits] r8670 - data/CVE
Author: white Date: 2008-05-02 11:04:54 +0000 (Fri, 02 May 2008) New Revision: 8670 Modified: data/CVE/list Log: More NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-05-02 10:58:12 UTC (rev 8669) +++ data/CVE/list 2008-05-02 11:04:54 UTC (rev 8670) @@ -27,44 +27,44 @@ CVE-2008-2027 (Open redirect vulnerability in WebID/IISWebAgentIF.dll in RSA ...) NOT-FOR-US: RSA Authentication Agent CVE-2008-2026 (Cross-site scripting (XSS) vulnerability in WebID/IISWebAgentIF.dll in ...) - TODO: check + NOT-FOR-US: RSA Authentication Agent CVE-2008-2025 RESERVED CVE-2008-2024 (Cross-site scripting (XSS) vulnerability in index.php in miniBB 2.2, ...) NOT-FOR-US: miniBB CVE-2008-2023 (Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2.2 ...) - TODO: check + NOT-FOR-US: MegaBBS CVE-2008-2022 (Mulatiple cross-site scripting (XSS) vulnerabilities in PD9 Software ...) - TODO: check + NOT-FOR-US: MegaBBS CVE-2008-2021 (Heap-based buffer overflow in Lhaplus before 1.57 allows remote ...) - TODO: check + NOT-FOR-US: Lhaplus CVE-2008-2020 (The CAPTCHA implementation as used in (1) Francisco Burzi PHP-Nuke 7.0 ...) - TODO: check + NOT-FOR-US: PHP-Nuke CVE-2008-2019 (Simple Machines Forum (SMF), probably 1.1.4, relies on "randomly ...) - TODO: check + NOT-FOR-US: Simple Machines Forum CVE-2008-2018 (The AssignUser function in template.class.php in PHPizabi 0.848b C1 ...) - TODO: check + NOT-FOR-US: PHPizabi CVE-2008-2017 (Directory traversal vulnerability in Chilek Content Management System ...) - TODO: check + NOT-FOR-US: Chilek Content Management System CVE-2008-2016 (PHP remote file inclusion vulnerability in Chilek Content Management ...) - TODO: check + NOT-FOR-US: Chilek Content Management System CVE-2008-2015 (Multiple absolute path traversal vulnerabilities in certain ActiveX ...) TODO: check CVE-2008-2014 (Mozilla Firefox 3.0 beta 5 allows remote attackers to cause a denial ...) - iceweasel <unfixed> (unimportant) NOTE: Browser crashes / hangs not treated as security issues CVE-2008-2013 (SQL injection vulnerability in index.php in the pnFlashGames 1.5 ...) - TODO: check + NOT-FOR-US: pnFlashGames CVE-2008-2012 (SQL injection vulnerability in index.php in the PostSchedule 1.0 ...) - TODO: check + NOT-FOR-US: PostSchedule CVE-2008-2011 (Cross-site scripting (XSS) vulnerability in the National Rail ...) - TODO: check + NOT-FOR-US: National Rail Enquiries Live Departure Boards gadget CVE-2008-2010 (Unspecified vulnerability in Apple QuickTime Player on Windows XP SP2 ...) - TODO: check + NOT-FOR-US: Windows CVE-2008-2009 RESERVED CVE-2008-2008 (Buffer overflow in the Display Names message feature in Cerulean ...) - TODO: check + NOT-FOR-US: Cerulean Studios Trillian Basic CVE-2008-2007 RESERVED CVE-2008-2006