Author: joeyh
Date: 2010-03-19 21:14:22 +0000 (Fri, 19 Mar 2010)
New Revision: 14300
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-03-18 21:14:27 UTC (rev 14299)
+++ data/CVE/list 2010-03-19 21:14:22 UTC (rev 14300)
@@ -1,3 +1,73 @@
+CVE-2010-1003
+ RESERVED
+CVE-2010-1002
+ RESERVED
+CVE-2010-1001
+ RESERVED
+CVE-2010-1000
+ RESERVED
+CVE-2010-0999
+ RESERVED
+CVE-2010-0998
+ RESERVED
+CVE-2010-0997
+ RESERVED
+CVE-2010-0996
+ RESERVED
+CVE-2010-0995
+ RESERVED
+CVE-2010-0994
+ RESERVED
+CVE-2010-0993
+ RESERVED
+CVE-2010-0992
+ RESERVED
+CVE-2010-0991
+ RESERVED
+CVE-2010-0990
+ RESERVED
+CVE-2010-0989
+ RESERVED
+CVE-2010-0988
+ RESERVED
+CVE-2010-0987
+ RESERVED
+CVE-2010-0986
+ RESERVED
+CVE-2009-4735 (SQL injection vulnerability in login.php in Allomani Audio
& Video ...)
+ TODO: check
+CVE-2009-4734 (SQL injection vulnerability in login.php in Allomani Movies
Library ...)
+ TODO: check
+CVE-2009-4733 (SQL injection vulnerability in checkuser.php in SimpleLoginSys
0.5, ...)
+ TODO: check
+CVE-2009-4732 (SQL injection vulnerability in tt/index.php in TT Web Site
Manager ...)
+ TODO: check
+CVE-2009-4731 (SQL injection vulnerability in photos.php in Model Agency
Manager PRO ...)
+ TODO: check
+CVE-2009-4730 (SQL injection vulnerability in report.php in x10 Adult Media
Script ...)
+ TODO: check
+CVE-2009-4729 (Multiple cross-site scripting (XSS) vulnerabilities in x10 Adult
Media ...)
+ TODO: check
+CVE-2009-4728 (SQL injection vulnerability in the administrative interface in
...)
+ TODO: check
+CVE-2009-4727 (SQL injection vulnerability in x/login in JungleScripts Ajax
Short Url ...)
+ TODO: check
+CVE-2009-4726 (Directory traversal vulnerability in download.php in Quickdev 4
PHP ...)
+ TODO: check
+CVE-2009-4725 (Directory traversal vulnerability in
modules/aljazeera/admin/setup.php ...)
+ TODO: check
+CVE-2009-4724 (SQL injection vulnerability in shop.htm in
PaymentProcessorScript.net ...)
+ TODO: check
+CVE-2009-4723 (Directory traversal vulnerability in confirm.php in Netpet CMS
1.9 ...)
+ TODO: check
+CVE-2009-4722 (SQL injection vulnerability in the CheckLogin function in ...)
+ TODO: check
+CVE-2009-4721 (Multiple SQL injection vulnerabilities in Admin/index.asp in
...)
+ TODO: check
+CVE-2009-4720 (SQL injection vulnerability in cgi-bin/gnudip.cgi in GnuDIP
2.1.1 ...)
+ TODO: check
+CVE-2009-4719 (SQL injection vulnerability in index.php in Discloser 0.0.4 rc2
allows ...)
+ TODO: check
CVE-2010-XXXX [dojo can be used as a redirector]
- dojo <unfixed> (low)
TODO: check
@@ -726,7 +796,7 @@
CVE-2010-0736
RESERVED
CVE-2010-0735
- RESERVED
+ REJECTED
CVE-2010-0734 [curl issue]
RESERVED
- curl <undetermined>
@@ -1598,8 +1668,7 @@
CVE-2010-0422 (gnome-screensaver 2.28.x before 2.28.3 does not properly
synchronize ...)
- gnome-screensaver 2.28.3-1
[lenny] - gnome-screensaver <not-affected> (Vulnerable code not present)
-CVE-2010-0421 [pango ft issue]
- RESERVED
+CVE-2010-0421 (Array index error in the hb_ot_layout_build_glyph_classes
function in ...)
- pango1.0 <unfixed> (bug #574021)
CVE-2010-0420 (libpurple in Finch in Pidgin before 2.6.6, when an XMPP
multi-user ...)
- pidgin 2.6.6-1 (low)
@@ -2639,8 +2708,8 @@
NOT-FOR-US: Symantec AntiVirus
CVE-2010-0105
RESERVED
-CVE-2010-0104
- RESERVED
+CVE-2010-0104 (Unspecified vulnerability in the Broadcom Integrated NIC
Management ...)
+ TODO: check
CVE-2010-0103 (UsbCharger.dll in the Energizer DUO USB battery charger software
...)
NOT-FOR-US: Energizer DUO USB Battery Charger Software
CVE-2010-0102
@@ -2834,7 +2903,7 @@
NOT-FOR-US: DeluxeBB
CVE-2009-4464 (Cross-site scripting (XSS) vulnerability in searchadvance.asp in
...)
NOT-FOR-US: Active Business Directory
-CVE-2009-4463 (The firmware for Intellicom NetBiter WebSCADA uses hard-coded
...)
+CVE-2009-4463 (** DISPUTED ** ...)
NOT-FOR-US: Intellicom NetBiter WebSCADA
CVE-2009-4462 (Stack-based buffer overflow in NetBiterConfig.exe 1.3.0 in
Intellicom ...)
NOT-FOR-US: Intellicom NetBiter WebSCADA
@@ -12790,8 +12859,7 @@
NOT-FOR-US: CMScout
CVE-2008-6724 (Cross-site scripting (XSS) vulnerability in index.pl in Perl
Nopaste ...)
NOT-FOR-US: Perl Nopaste
-CVE-2009-1299 [pulseaudio insecure temporary file creation]
- RESERVED
+CVE-2009-1299 (The pa_make_secure_dir function in core-util.c in PulseAudio
0.9.10 ...)
{DSA-2017-1}
- pulseaudio <unfixed> (bug #573615)
CVE-2009-1298 (The ip_frag_reasm function in net/ipv4/ip_fragment.c in the
Linux ...)