Author: geissert Date: 2010-01-05 01:17:29 +0000 (Tue, 05 Jan 2010) New Revision: 13716 Modified: data/CVE/list Log: NFUs, rfp, and mysql-server and freeradius issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-01-05 01:10:55 UTC (rev 13715) +++ data/CVE/list 2010-01-05 01:17:29 UTC (rev 13716) @@ -91,7 +91,7 @@ CVE-2009-4513 (Multiple cross-site scripting (XSS) vulnerabilities in the Workflow ...) TODO: check CVE-2009-4512 (Directory traversal vulnerability in index.php in Oscailt 3.3, when ...) - TODO: check + NOT-FOR-US: Oscailt CVE-2009-4511 RESERVED CVE-2009-4510 @@ -147,56 +147,59 @@ CVE-2009-4485 RESERVED CVE-2009-4484 (Buffer overflow in the server in MySQL 5.0.51a on Linux allows remote ...) + - mysql-dfsg-5.0 <removed> TODO: check CVE-2009-4483 (Unspecified vulnerability in LDAP3A.exe in MailSite 8.0.4 allows ...) - TODO: check + NOT-FOR-US: MailSite CVE-2009-4482 (Buffer overflow in MediaServer.exe in TVersity 1.6 allows remote ...) - TODO: check + NOT-FOR-US: TVersity CVE-2009-4481 (Unspecified vulnerability in radiusd in FreeRADIUS 1.1.7 allows remote ...) + - freeradius <unfixed> TODO: check CVE-2009-4480 (Buffer overflow in the web service in AzeoTech DAQFactory 5.77 might ...) - TODO: check + NOT-FOR-US: AzeoTech DAQFactory CVE-2009-4479 (LDAP3A.exe in MailSite 8.0.4 allows remote attackers to cause a denial ...) - TODO: check + NOT-FOR-US: MailSite CVE-2009-4478 (Multiple cross-site scripting (XSS) vulnerabilities in Xstate Real ...) - TODO: check + NOT-FOR-US: Xstate Real Estate CVE-2009-4477 (SQL injection vulnerability in page.html in Xstate Real Estate 1.0 ...) - TODO: check + NOT-FOR-US: Xstate Real Estate CVE-2009-4476 (Stack-based buffer overflow in HAURI ViRobot Desktop 5.5 before ...) - TODO: check + NOT-FOR-US: HAURI ViRobot Desktop CVE-2009-4475 (SQL injection vulnerability in the Joomlub (com_joomlub) component for ...) - TODO: check + NOT-FOR-US: Joomla! component CVE-2009-4474 (SQL injection vulnerability in the Mike de Boer zoom (com_zoom) ...) - TODO: check + NOT-FOR-US: Mambo component CVE-2009-4473 (Multiple cross-site scripting (XSS) vulnerabilities in ...) - TODO: check + NOT-FOR-US: Ektron CMS400.NET CVE-2009-4472 (Multiple PHP remote file inclusion vulnerabilities in PHPope 1.0.0 and ...) - TODO: check + NOT-FOR-US: PHPope CVE-2009-4471 (Multiple PHP remote file inclusion vulnerabilities in FreeSchool 1.1.0 ...) - TODO: check + NOT-FOR-US: FreeSchool CVE-2009-4470 (SQL injection vulnerability in boardrule.php in DVBBS 2.0 allows ...) - TODO: check + NOT-FOR-US: DVBBS CVE-2009-4469 (Multiple cross-site scripting (XSS) vulnerabilities in ...) - TODO: check + NOT-FOR-US: phpPowerCards CVE-2009-4468 (Cross-site scripting (XSS) vulnerability in misc.php in DeluxeBB 1.3 ...) - TODO: check + NOT-FOR-US: DeluxeBB CVE-2009-4467 (misc.php in DeluxeBB 1.3 allows remote attackers to register accounts ...) - TODO: check + NOT-FOR-US: DeluxeBB CVE-2009-4466 (DeluxeBB 1.3 allows remote attackers to obtain sensitive information ...) - TODO: check + NOT-FOR-US: DeluxeBB CVE-2009-4465 (DeluxeBB 1.3 stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: DeluxeBB CVE-2009-4464 (Cross-site scripting (XSS) vulnerability in searchadvance.asp in ...) - TODO: check + NOT-FOR-US: Active Business Directory CVE-2009-4463 (The firmware for Intellicom NetBiter WebSCADA uses hard-coded ...) - TODO: check + NOT-FOR-US: Intellicom NetBiter WebSCADA CVE-2009-4462 (Stack-based buffer overflow in NetBiterConfig.exe 1.3.0 in Intellicom ...) - TODO: check + NOT-FOR-US: Intellicom NetBiter WebSCADA CVE-2009-4461 (Multiple cross-site scripting (XSS) vulnerabilities in FlatPress 0.909 ...) - TODO: check + - flatpress <itp> (bug #466297) CVE-2009-4460 (Multiple cross-site scripting (XSS) vulnerabilities in Auto-Surf ...) - TODO: check + NOT-FOR-US: Auto-Surf Traffic Exchange Script CVE-2009-4459 (Redmine 0.8.7 and earlier uses the title tag before defining the ...) + - redmine <unfixed> TODO: check CVE-2008-7250 (Cross-site scripting (XSS) vulnerability in Squid Analysis Report ...) TODO: check