Author: joeyh Date: 2010-05-14 21:14:21 +0000 (Fri, 14 May 2010) New Revision: 14694 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-05-14 13:11:05 UTC (rev 14693) +++ data/CVE/list 2010-05-14 21:14:21 UTC (rev 14694) @@ -1,3 +1,9 @@ +CVE-2010-1939 (Use-after-free vulnerability in Apple Safari 4.0.5 on Windows allows ...) + TODO: check +CVE-2010-1938 + RESERVED +CVE-2010-1937 + RESERVED CVE-2010-1936 (Directory traversal vulnerability in scr/soustab.php in openMairie ...) NOT-FOR-US: openMairie openComInterne CVE-2010-1935 (Directory traversal vulnerability in scr/soustab.php in openMairie ...) @@ -925,18 +931,18 @@ RESERVED CVE-2010-1556 RESERVED -CVE-2010-1555 - RESERVED -CVE-2010-1554 - RESERVED -CVE-2010-1553 - RESERVED -CVE-2010-1552 - RESERVED -CVE-2010-1551 - RESERVED -CVE-2010-1550 - RESERVED +CVE-2010-1555 (Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network ...) + TODO: check +CVE-2010-1554 (Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network ...) + TODO: check +CVE-2010-1553 (Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network ...) + TODO: check +CVE-2010-1552 (Stack-based buffer overflow in the doLoad function in snmpviewer.exe ...) + TODO: check +CVE-2010-1551 (Stack-based buffer overflow in the _OVParseLLA function in ov.dll in ...) + TODO: check +CVE-2010-1550 (Format string vulnerability in ovet_demandpoll.exe in HP OpenView ...) + TODO: check CVE-2010-1549 (Unspecified vulnerability in the Agent in HP LoadRunner before 9.50 ...) NOT-FOR-US: HP LoadRunner CVE-2010-1548 @@ -1617,38 +1623,37 @@ RESERVED CVE-2010-1295 RESERVED -CVE-2010-1294 - RESERVED -CVE-2010-1293 - RESERVED -CVE-2010-1292 - RESERVED -CVE-2010-1291 - RESERVED -CVE-2010-1290 - RESERVED -CVE-2010-1289 - RESERVED -CVE-2010-1288 - RESERVED -CVE-2010-1287 - RESERVED -CVE-2010-1286 - RESERVED +CVE-2010-1294 (Unspecified vulnerability in Adobe ColdFusion 8.0, 8.0.1, and 9.0 ...) + TODO: check +CVE-2010-1293 (Cross-site scripting (XSS) vulnerability in the Administrator page in ...) + TODO: check +CVE-2010-1292 (The implementation of pami RIFF chunk parsing in Adobe Shockwave ...) + TODO: check +CVE-2010-1291 (Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a ...) + TODO: check +CVE-2010-1290 (Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a ...) + TODO: check +CVE-2010-1289 (Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a ...) + TODO: check +CVE-2010-1288 (Buffer overflow in Adobe Shockwave Player before 11.5.7.609 might ...) + TODO: check +CVE-2010-1287 (Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a ...) + TODO: check +CVE-2010-1286 (Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a ...) + TODO: check CVE-2010-1285 RESERVED -CVE-2010-1284 [bibtex buffer overflow] - RESERVED +CVE-2010-1284 (Adobe Shockwave Player before 11.5.7.609 allows attackers to cause a ...) - texlive-bin 2009-1 (low; bug #520920) [lenny] - texlive-bin 2007.dfsg.2-4+lenny2 -CVE-2010-1283 - RESERVED -CVE-2010-1282 - RESERVED -CVE-2010-1281 - RESERVED -CVE-2010-1280 - RESERVED +CVE-2010-1283 (Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D ...) + TODO: check +CVE-2010-1282 (Adobe Shockwave Player before 11.5.7.609 allows remote attackers to ...) + TODO: check +CVE-2010-1281 (iml32.dll in Adobe Shockwave Player before 11.5.7.609 does not ...) + TODO: check +CVE-2010-1280 (Adobe Shockwave Player before 11.5.7.609 allows remote attackers to ...) + TODO: check CVE-2010-1279 (Multiple unspecified vulnerabilities in Adobe Photoshop CS4 11.x ...) NOT-FOR-US: Adobe Photoshop CVE-2010-1278 (Buffer overflow in the Atlcom.get_atlcom ActiveX control in gp.ocx in ...) @@ -2443,10 +2448,10 @@ NOT-FOR-US: Pulse CMS CVE-2010-0988 (Multiple unspecified vulnerabilities in Pulse CMS before 1.2.3 allow ...) NOT-FOR-US: Pulse CMS -CVE-2010-0987 - RESERVED -CVE-2010-0986 - RESERVED +CVE-2010-0987 (Heap-based buffer overflow in Adobe Shockwave Player before 11.5.7.609 ...) + TODO: check +CVE-2010-0986 (Adobe Shockwave Player before 11.5.7.609 does not properly process ...) + TODO: check CVE-2009-4735 (SQL injection vulnerability in login.php in Allomani Audio & Video ...) NOT-FOR-US: Allomani Audio & Video Library CVE-2009-4734 (SQL injection vulnerability in login.php in Allomani Movies Library ...) @@ -5117,14 +5122,14 @@ - viewvc <unfixed> (bug #576307) CVE-2010-0131 RESERVED -CVE-2010-0130 - RESERVED -CVE-2010-0129 - RESERVED -CVE-2010-0128 - RESERVED -CVE-2010-0127 - RESERVED +CVE-2010-0130 (Integer overflow in Adobe Shockwave Player before 11.5.7.609 might ...) + TODO: check +CVE-2010-0129 (Multiple integer overflows in Adobe Shockwave Player before 11.5.7.609 ...) + TODO: check +CVE-2010-0128 (Integer signedness error in dirapi.dll in Adobe Shockwave Player ...) + TODO: check +CVE-2010-0127 (Adobe Shockwave Player before 11.5.7.609 allows remote attackers to ...) + TODO: check CVE-2010-0126 RESERVED CVE-2010-0125 @@ -8585,8 +8590,8 @@ NOT-FOR-US: IBM Lotus Connections CVE-2009-3468 (Multiple unspecified vulnerabilities in Common Desktop Environment ...) NOT-FOR-US: Common Desktop Environment (CDE) in Sun Solaris -CVE-2009-3467 - RESERVED +CVE-2009-3467 (Cross-site scripting (XSS) vulnerability in an unspecified method in ...) + TODO: check CVE-2009-3466 (Adobe Shockwave Player before 11.5.2.602 allows remote attackers to ...) NOT-FOR-US: Adobe Shockwave Player CVE-2009-3465 (Adobe Shockwave Player before 11.5.2.602 allows remote attackers to ...)