thr3ads.net - Secure testing commits - [Secure-testing-commits] r14064

If this information is useful, please help other people find it:
Share via:
Joey Hess
2010-Feb-09 09:14 UTC
[Secure-testing-commits] r14064 - data/CVE

Author: joeyh
Date: 2010-02-09 09:14:38 +0000 (Tue, 09 Feb 2010)
New Revision: 14064

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-02-08 23:08:00 UTC (rev 14063)
+++ data/CVE/list	2010-02-09 09:14:38 UTC (rev 14064)
@@ -1,3 +1,33 @@
+CVE-2010-0559 (The default configuration of Oracle OpenSolaris snv_91 through
snv_131 ...)
+	TODO: check
+CVE-2010-0558 (The default configuration of Oracle OpenSolaris snv_77 through
snv_131 ...)
+	TODO: check
+CVE-2010-0557 (IBM Cognos Express 9.0 allows attackers to obtain unspecified
access ...)
+	TODO: check
+CVE-2010-0556
+	RESERVED
+CVE-2003-1587 (Cross-site scripting (XSS) vulnerability in LoganPro allows
remote ...)
+	TODO: check
+CVE-2003-1586 (Cross-site scripting (XSS) vulnerability in WebExpert allows
remote ...)
+	TODO: check
+CVE-2003-1585 (Cross-site scripting (XSS) vulnerability in WebLogExpert allows
remote ...)
+	TODO: check
+CVE-2003-1584 (Cross-site scripting (XSS) vulnerability in SurfStats allows
remote ...)
+	TODO: check
+CVE-2003-1583 (Cross-site scripting (XSS) vulnerability in WebTrends allows
remote ...)
+	TODO: check
+CVE-2003-1582 (Microsoft Internet Information Services (IIS) 6.0, when DNS
resolution ...)
+	TODO: check
+CVE-2003-1581 (The Apache HTTP Server 2.0.44, when DNS resolution is enabled
for ...)
+	TODO: check
+CVE-2003-1580 (The Apache HTTP Server 2.0.44, when DNS resolution is enabled
for ...)
+	TODO: check
+CVE-2003-1579 (Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS
resolution is ...)
+	TODO: check
+CVE-2003-1578 (Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0
through SP5, ...)
+	TODO: check
+CVE-2003-1577 (Sun ONE (aka iPlanet) Web Server 4.1 through SP12 and 6.0
through SP5, ...)
+	TODO: check
 CVE-2010-0555 (Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does
not ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2010-0554 (The HTTP Authentication implementation in Geo++ GNCASTER 1.4.0.7
and ...)
@@ -2427,8 +2457,8 @@
 	NOT-FOR-US: Sun Java System Portal Server
 CVE-2009-4186 (Stack consumption vulnerability in Apple Safari 4.0.3 on Windows
...)
 	NOT-FOR-US: Apple Safari
-CVE-2009-4185
-	RESERVED
+CVE-2009-4185 (Cross-site scripting (XSS) vulnerability in
proxy/smhui/getuiinfo in ...)
+	TODO: check
 CVE-2009-4184 (Unspecified vulnerability in HP Enterprise Cluster Master
Toolkit ...)
 	TODO: check
 CVE-2009-4183 (Unspecified vulnerability in HP OpenView Storage Data Protector
6.00 ...)
@@ -7019,10 +7049,10 @@
 	RESERVED
 CVE-2009-2753
 	RESERVED
-CVE-2009-2752
-	RESERVED
-CVE-2009-2751
-	RESERVED
+CVE-2009-2752 (IBM WebSphere Commerce 7.0 does not properly encrypt data in a
...)
+	TODO: check
+CVE-2009-2751 (IBM WebSphere Commerce 7.0 uses the same cryptographic key for
session ...)
+	TODO: check
 CVE-2009-2750 (IBM WebSphere Service Registry and Repository (WSRR) 6.3.0
before FP2 ...)
 	TODO: check
 CVE-2009-2749 (Feature Pack for Communications Enabled Applications (CEA)
before ...)
Secure testing commits - Feb 2010 - r14064 - data/CVE

[Secure-testing-commits] r14064 - data/CVE
