white at alioth.debian.org
2008-Aug-07 07:24 UTC
[Secure-testing-commits] r9524 - data/CVE
Author: white Date: 2008-08-07 07:24:54 +0000 (Thu, 07 Aug 2008) New Revision: 9524 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-08-06 21:14:17 UTC (rev 9523) +++ data/CVE/list 2008-08-07 07:24:54 UTC (rev 9524) @@ -1,11 +1,11 @@ CVE-2008-3484 (SQL injection vulnerability in eStoreAff 0.1 allows remote attackers ...) - TODO: check + NOT-FOR-US: eStoreAff CVE-2008-3483 (Cross-site scripting (XSS) vulnerability in ScrewTurn Wiki 2.0.29 and ...) - TODO: check + NOT-FOR-US: ScrewTurn Wiki CVE-2008-3482 (Cross-site scripting (XSS) vulnerability in the error page feature in ...) - TODO: check + NOT-FOR-US: Panasonic Network Camera CVE-2008-3481 (themes/sample/theme.php in Coppermine Photo Gallery (CPG) 1.4.18 and ...) - TODO: check + NOT-FOR-US: Coppermine Photo Gallery CVE-2008-3480 RESERVED CVE-2008-3479 @@ -51,31 +51,31 @@ CVE-2008-3459 (Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when ...) TODO: check CVE-2008-3458 (Vtiger CRM before 5.0.4 stores sensitive information under the web ...) - TODO: check + NOT-FOR-US: Vtiger CRM CVE-2008-3457 (Cross-site scripting (XSS) vulnerability in setup.php in phpMyAdmin ...) TODO: check CVE-2008-3455 (PHP remote file inclusion vulnerability in include/admin.php in ...) - TODO: check + NOT-FOR-US: JnSHosts PHP Hosting Directory CVE-2008-3454 (JnSHosts PHP Hosting Directory 2.0 allows remote attackers to bypass ...) - TODO: check + NOT-FOR-US: JnSHosts PHP Hosting Directory CVE-2008-3453 (Multiple unspecified vulnerabilities in ImpressCMS 1.0 have unknown ...) - TODO: check + NOT-FOR-US: ImpressCMS CVE-2008-3452 (SQL injection vulnerability in the Calendar module in eNdonesia 8.4 ...) - TODO: check + NOT-FOR-US: eNdonesia CVE-2008-3451 (PhpWebGallery 1.7.0 and 1.7.1 allows remote authenticated users with ...) - TODO: check + NOT-FOR-US: PhpWebGallery CVE-2008-3450 (Unspecified vulnerability in the namefs kernel module in Sun Solaris 8 ...) TODO: check CVE-2008-3449 (MailEnable Professional 3.5.2 and Enterprise 3.52 allow remote ...) - TODO: check + NOT-FOR-US: MailEnable CVE-2008-3448 (Cross-site scripting (XSS) vulnerability in index.php in common ...) - TODO: check + NOT-FOR-US: csphonebook CVE-2008-3447 (The scanning engine in F-Prot Antivirus 6.2.1 4252 allows remote ...) - TODO: check + NOT-FOR-US: F-Prot Antivirus CVE-2008-3446 (Directory traversal vulnerability in inc/wysiwyg.php in LetterIt 2 ...) - TODO: check + NOT-FOR-US: LetterIt CVE-2008-3445 (SQL injection vulnerability in index.php in phpMyRealty (PMR) 2.0.0 ...) - TODO: check + NOT-FOR-US: phpMyRealty CVE-2008-3444 (The content layout component in Mozilla Firefox 3.0 and 3.0.1 allows ...) TODO: check CVE-2008-3443 @@ -83,39 +83,39 @@ CVE-2008-3442 (WinZip before 11.0 does not properly verify the authenticity of ...) TODO: check CVE-2008-3441 (Nullsoft Winamp before 5.24 does not properly verify the authenticity ...) - TODO: check + NOT-FOR-US: Nullsoft Winamp CVE-2008-3440 (Sun Java before 1.6.0_03 does not properly verify the authenticity of ...) TODO: check CVE-2008-3439 (SpeedBit Video Acceleration before 2.2.1.8 does not properly verify ...) - TODO: check + NOT-FOR-US: SpeedBit Video Acceleration CVE-2008-3438 (Apple Mac OS X does not properly verify the authenticity of updates, ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2008-3437 (OpenOffice.org (OOo) before 2.1.0 does not properly verify the ...) TODO: check CVE-2008-3436 (The GUP generic update process in Notepad++ before 4.8.1 does not ...) - TODO: check + NOT-FOR-US: Notepad++ CVE-2008-3435 (LinkedIn Browser Toolbar 3.0.3.1100 and earlier does not properly ...) - TODO: check + NOT-FOR-US: LinkedIn CVE-2008-3434 (Apple iTunes before 6.0.5.20 does not properly verify the authenticity ...) - TODO: check + NOT-FOR-US: Apple iTunes CVE-2008-3433 (SpeedBit Download Accelerator Plus (DAP) before 8.6.3.9 does not ...) - TODO: check + NOT-FOR-US: SpeedBit Download Accelerator Plus CVE-2008-3432 RESERVED CVE-2008-3430 (Buffer overflow in the CoVideoWindow.ocx ActiveX control 5.0.907.1 in ...) - TODO: check + NOT-FOR-US: Eyeball MessengerSDK CVE-2008-3428 (Session fixation vulnerability in phpFreeChat 1.1 allows remote ...) - TODO: check + NOT-FOR-US: phpFreeChat CVE-2008-3427 (Multiple SQL injection vulnerabilities in Möbius for Mimsy XG 1.4.4.1 ...) - TODO: check + NOT-FOR-US: Moebius for Mimsy XG CVE-2008-3426 (Unspecified vulnerability in the Solaris Platform Information and ...) - TODO: check + NOT-FOR-US: Solaris CVE-2008-3425 (Unspecified vulnerability in the Sun Java System Web Server 7.0 plugin ...) TODO: check CVE-2008-3424 (Condor before 7.0.4 does not properly handle wildcards in the ...) - TODO: check + NOT-FOR-US: Condor CVE-2008-3423 (IBM WebSphere Portal 5.1 through 6.1.0.0 allows remote attackers to ...) - TODO: check + NOT-FOR-US: IBM WebSphere Portal CVE-2008-3422 (Multiple cross-site scripting (XSS) vulnerabilities in the ASP.net ...) TODO: check CVE-2004-2760 (sshd in OpenSSH 3.5p1, when PermitRootLogin is disabled, immediately ...)