joeyh at alioth.debian.org
2008-Nov-20 21:14 UTC
[Secure-testing-commits] r10440 - data/CVE
Author: joeyh
Date: 2008-11-20 21:14:15 +0000 (Thu, 20 Nov 2008)
New Revision: 10440
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-11-20 18:58:18 UTC (rev 10439)
+++ data/CVE/list 2008-11-20 21:14:15 UTC (rev 10440)
@@ -1,3 +1,33 @@
+CVE-2008-5175 (Directory traversal vulnerability in the FTP client in AceFTP
Freeware ...)
+ TODO: check
+CVE-2008-5174 (SQL injection vulnerability in joke.php in Jokes Complete
Website ...)
+ TODO: check
+CVE-2008-5173 (Unspecified vulnerability in testMaker before 3.0p16 allows
remote ...)
+ TODO: check
+CVE-2008-5172 (Multiple cross-site scripting (XSS) vulnerabilities in Yazd
Forum ...)
+ TODO: check
+CVE-2008-5171 (Multiple directory traversal vulnerabilities in
admin/minibb/index.php ...)
+ TODO: check
+CVE-2008-5170 (SQL injection vulnerability in item.php in Cheats Complete
Website ...)
+ TODO: check
+CVE-2008-5169 (SQL injection vulnerability in drinks/drink.php in Drinks
Complete ...)
+ TODO: check
+CVE-2008-5168 (SQL injection vulnerability in tip.php in Tips Complete Website
1.2.0 ...)
+ TODO: check
+CVE-2008-5167 (PHP remote file inclusion vulnerability in
layout/default/params.php ...)
+ TODO: check
+CVE-2008-5166 (SQL injection vulnerability in riddle.php in Riddles Website
1.2.1 ...)
+ TODO: check
+CVE-2008-5165 (Multiple SQL injection vulnerabilities in eTicket 1.5.7 allow
remote ...)
+ TODO: check
+CVE-2008-5164 (Multiple cross-site scripting (XSS) vulnerabilities in The Rat
CMS ...)
+ TODO: check
+CVE-2008-5163 (Multiple SQL injection vulnerabilities in The Rat CMS Pre-Alpha
2 ...)
+ TODO: check
+CVE-2008-5162
+ RESERVED
+CVE-2008-5161 (Error handling in the SSH protocol in (1) SSH Tectia Client and
Server ...)
+ TODO: check
CVE-2008-XXXX [geshi infinite loop]
- php-geshi <unfixed> (medium)
NOTE: CVE id requested
@@ -1770,7 +1800,7 @@
CVE-2008-4367
RESERVED
CVE-2008-4965 (liguidsoap.py in liguidsoap 0.3.8.1+2 allows local users to
overwrite ...)
- {DTSA-177-1}
+ {DTSA-177-1 DTSA-178-1}
- liquidsoap 0.3.8.1+2-2 (low; bug #496360)
CVE-2008-4966 (linux-patch-openswan 2.4.12 allows local users to overwrite
arbitrary ...)
- openswan <unfixed> (unimportant; bug #496376)
@@ -16339,7 +16369,7 @@
REJECTED
CVE-2007-5323 (The RepliStor Server Service in EMC Replistor 6.1.3 allows
remote ...)
NOT-FOR-US: RepliStor Server Service
-CVE-2007-5322 (The FPOLE.OCX 6.0.8450.0 ActiveX control in Microsoft Visual
FoxPro ...)
+CVE-2007-5322 (Insecure method vulnerability in the FPOLE.OCX 6.0.8450.0
ActiveX ...)
NOT-FOR-US: Microsoft Visual FoxPro
CVE-2007-5321 (Directory traversal vulnerability in index.php in Verlihub
Control ...)
NOT-FOR-US: Verlihub Control Panel