nion at alioth.debian.org
2009-Feb-10 09:29 UTC
[Secure-testing-commits] r11174 - data/CVE
Author: nion Date: 2009-02-10 09:29:16 +0000 (Tue, 10 Feb 2009) New Revision: 11174 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-02-10 09:14:15 UTC (rev 11173) +++ data/CVE/list 2009-02-10 09:29:16 UTC (rev 11174) @@ -1,79 +1,79 @@ CVE-2009-0479 (Multiple SQL injection vulnerabilities in admin/admin_login.php in ...) - TODO: check + NOT-FOR-US: Online Grades CVE-2009-0477 (Unspecified vulnerability in the process (aka proc) filesystem in Sun ...) - TODO: check + NOT-FOR-US: OpenSolaris CVE-2009-0476 (Stack-based buffer overflow in MultiMedia Soft AdjMmsEng.dll 7.11.1.0 ...) - TODO: check + NOT-FOR-US: MultiMedia Soft audio components CVE-2009-0475 RESERVED CVE-2009-0474 (The web interface in the Rockwell Automation ControlLogix 1756-ENBT/A ...) - TODO: check + NOT-FOR-US: Rockwell EtherNet/IP Bridge Module CVE-2009-0473 (Open redirect vulnerability in the web interface in the Rockwell ...) - TODO: check + NOT-FOR-US: Rockwell EtherNet/IP Bridge Module CVE-2009-0472 (Multiple cross-site scripting (XSS) vulnerabilities in the web ...) - TODO: check + NOT-FOR-US: Rockwell EtherNet/IP Bridge Module CVE-2009-0471 (Cross-site request forgery (CSRF) vulnerability in the HTTP server in ...) - TODO: check + NOT-FOR-US: Cisco IOS CVE-2009-0470 (Multiple cross-site scripting (XSS) vulnerabilities in the HTTP server ...) - TODO: check + NOT-FOR-US: Cisco IOS CVE-2009-0469 (Unspecified vulnerability in futomi''s CGI Cafe Fulltext search CGI ...) - TODO: check + NOT-FOR-US: futomi''s CGI Cafe CVE-2009-0468 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...) - TODO: check + NOT-FOR-US: Profense Web Application Firewall CVE-2009-0467 (Cross-site scripting (XSS) vulnerability in proxy.html in Profense Web ...) - TODO: check + NOT-FOR-US: Profense Web Application Firewall CVE-2009-0466 (Cross-site scripting (XSS) vulnerability in Vivvo CMS before 4.1.1 ...) - TODO: check + NOT-FOR-US: Vivvo CMS CVE-2009-0465 (The SaveDoc method in the All_In_The_Box.AllBox ActiveX control in ...) - TODO: check + NOT-FOR-US: Synactis ALL In-The-Box ActiveX 3 CVE-2009-0464 (PHP remote file inclusion vulnerability in includes/header.php in ...) - TODO: check + NOT-FOR-US: Groone GBook CVE-2009-0463 (PHP remote file inclusion vulnerability in includes/header.php in ...) - TODO: check + NOT-FOR-US: Groone GLinks CVE-2009-0462 (Multiple SQL injection vulnerabilities in customer_login_check.asp in ...) - TODO: check + NOT-FOR-US: ClickTech ClickCart CVE-2009-0461 (Whole Hog Password Protect: Enhanced 1.x allows remote attackers to ...) - TODO: check + NOT-FOR-US: Whole Hog Password Protect CVE-2009-0460 (Whole Hog Ware Support 1.x allows remote attackers to bypass ...) - TODO: check + NOT-FOR-US: Whole Hog Ware Support CVE-2009-0459 (Multiple SQL injection vulnerabilities in admin/login_submit.php in ...) - TODO: check + NOT-FOR-US: Whole Hog Password Protect CVE-2009-0458 (Multiple SQL injection vulnerabilities in admin/login_submit.php in ...) - TODO: check + NOT-FOR-US: Whole Hog Ware Support CVE-2009-0457 (Multiple directory traversal vulnerabilities in AJA Portal 1.2 allow ...) - TODO: check + NOT-FOR-US: AJA Portal CVE-2009-0456 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: patForms CVE-2009-0455 RESERVED CVE-2009-0454 (Multiple SQL injection vulnerabilities in DMXReady Online Notebook ...) - TODO: check + NOT-FOR-US: DMXReady Online Notebook Manager CVE-2009-0453 (Online Grades 3.2.4 allows remote attackers to obtain configuration ...) - TODO: check + NOT-FOR-US: Online Grades CVE-2009-0452 (Multiple SQL injection vulnerabilities in parents/login.php in Online ...) - TODO: check + NOT-FOR-US: Online Grades CVE-2009-0451 (SQL injection vulnerability in Skalfa SkaLinks 1.5 allows remote ...) - TODO: check + NOT-FOR-US: Skalfa SkaLinks CVE-2009-0450 (Stack-based buffer overflow in BlazeVideo HDTV Player 3.5 and earlier ...) - TODO: check + NOT-FOR-US: BlazeVideo CVE-2009-0449 (Buffer overflow in klim5.sys in Kaspersky Anti-Virus for Workstations ...) - TODO: check + NOT-FOR-US: Kaspersky Anti-Virus CVE-2009-0448 (Directory traversal vulnerability in admin/modules/aa/preview.php in ...) - TODO: check + NOT-FOR-US: Syntax Desktop CVE-2009-0447 (Multiple SQL injection vulnerabilities in default.asp in MyDesign ...) - TODO: check + NOT-FOR-US: MyDesign Sayac CVE-2009-0446 (SQL injection vulnerability in photo.php in WEBalbum 2.4b allows ...) - TODO: check + NOT-FOR-US: WEBalbum CVE-2009-0445 (SQL injection vulnerability in index.php in Dreampics Gallery Builder ...) - TODO: check + NOT-FOR-US: Dreampics Gallery Builder CVE-2009-0444 (Multiple PHP remote file inclusion vulnerabilities in GRBoard 1.8, ...) - TODO: check + NOT-FOR-US: GRBoard CVE-2009-0443 (Stack-based buffer overflow in Elecard AVC HD PLAYER 5.5.90116 allows ...) - TODO: check + NOT-FOR-US: Elecard AVC HD PLAYER CVE-2009-0442 (Directory traversal vulnerability in bbcode.php in PHPbbBook 1.3 and ...) - TODO: check + NOT-FOR-US: PHPbbBook CVE-2009-0441 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: Technote CVE-2009-0440 RESERVED CVE-2009-0439 @@ -228,7 +228,7 @@ CVE-2008-6046 (SQL injection vulnerability in ADbNewsSender before 1.5.2 allows ...) NOT-FOR-US: ADbNewsSender CVE-2009-0417 (Cross-site scripting (XSS) vulnerability in the ...) - TODO: check + NOT-FOR-US: Agavi CVE-2009-0416 (The SSL certificate setup program (genSslCert.sh) in Standards Based ...) NOT-FOR-US: sblim-sfcb CVE-2009-0415 (Untrusted search path vulnerability in trickle 1.07 allows local users ...) @@ -320,9 +320,9 @@ CVE-2009-0377 (SQL injection vulnerability in the beamospetition (com_beamospetition) ...) NOT-FOR-US: Joomla CVE-2009-0376 (A DLL file in RealNetworks RealPlayer 11 allows remote attackers to ...) - TODO: check + NOT-FOR-US: RealPlayer CVE-2009-0375 (A DLL file in RealNetworks RealPlayer 11 allows remote attackers to ...) - TODO: check + NOT-FOR-US: RealPlayer CVE-2009-0374 (** DISPUTED ** ...) NOT-FOR-US: Google Chrome CVE-2009-0373 (SQL injection vulnerability in the ElearningForce Flash Magazine ...) @@ -993,15 +993,15 @@ CVE-2009-0215 RESERVED CVE-2009-0214 (Unspecified vulnerability in the WebFGServer application in AREVA ...) - TODO: check + NOT-FOR-US: WebFGServer CVE-2009-0213 (Unspecified vulnerability in the NETIO application in AREVA ...) - TODO: check + NOT-FOR-US: AREVA e-terrahabitat CVE-2009-0212 (Unspecified vulnerability in the WebFGServer application in AREVA ...) - TODO: check + NOT-FOR-US: AREVA e-terrahabitat CVE-2009-0211 (Unspecified vulnerability in the WebFGServer application in AREVA ...) - TODO: check + NOT-FOR-US: AREVA e-terrahabitat CVE-2009-0210 (Buffer overflow in the MLF application in AREVA e-terrahabitat 5.7 and ...) - TODO: check + NOT-FOR-US: AREVA e-terrahabitat CVE-2009-0209 RESERVED CVE-2009-0208 @@ -1009,7 +1009,7 @@ CVE-2009-0207 RESERVED CVE-2009-0206 (Unspecified vulnerability in NFS in HP ONCplus B.11.31.05 and earlier ...) - TODO: check + NOT-FOR-US: HP ONCplus CVE-2009-0205 RESERVED CVE-2009-0204 (Cross-site scripting (XSS) vulnerability in HP Select Access 6.1 and ...) @@ -1101,9 +1101,9 @@ CVE-2009-0171 (The Sun SPARC Enterprise M4000 and M5000 Server, within a certain ...) NOT-FOR-US: Sun SPARC Enterprise M4000 and M5000 Server CVE-2009-0170 (Sun Java System Access Manager 6.3 2005Q1, 7 2005Q4, and 7.1 allows ...) - TODO: check + NOT-FOR-US: Sun Java System Access Manager CVE-2009-0169 (Sun Java System Access Manager 7.1 allows remote authenticated ...) - TODO: check + NOT-FOR-US: Sun Java System Access Manager CVE-2009-0168 (Unspecified vulnerability in ppdmgr in Sun Solaris 10 and OpenSolaris ...) NOT-FOR-US: ppdmgr in Sun Solaris 10 and OpenSolaris CVE-2009-0167 (Unspecified vulnerability in lpadmin in Sun Solaris 10 and OpenSolaris ...)