Author: joeyh Date: 2011-02-28 21:15:06 +0000 (Mon, 28 Feb 2011) New Revision: 16265 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-02-28 19:54:46 UTC (rev 16264) +++ data/CVE/list 2011-02-28 21:15:06 UTC (rev 16265) @@ -1,3 +1,11 @@ +CVE-2011-1103 (The WebReporting module in F-Secure Policy Manager 7.x, 8.00 before ...) + TODO: check +CVE-2011-1102 (Cross-site scripting (XSS) vulnerability in the WebReporting module in ...) + TODO: check +CVE-2011-1101 (Multiple unspecified vulnerabilities in a third-party component of the ...) + TODO: check +CVE-2011-1100 (Multiple SQL injection vulnerabilities in admin/index.php in Pixelpost ...) + TODO: check CVE-2010-XXXX [eglibc: memory corruption] - glibc <removed> - eglibc 2.11.2-12 (bug #615120) @@ -150,8 +158,8 @@ NOT-FOR-US: Lotus Sametime CVE-2011-1037 RESERVED -CVE-2011-1036 - RESERVED +CVE-2011-1036 (The XML Security Database Parser class in the XMLSecDB ActiveX control ...) + TODO: check CVE-2011-1035 (The password reset in PivotX before 2.2.4 allows remote attackers to ...) NOT-FOR-US: PivotX CVE-2010-4744 (Multiple unspecified vulnerabilities in abcm2ps before 5.9.13 have ...) @@ -225,8 +233,7 @@ CVE-2011-1019 RESERVED - linux-2.6 <unfixed> -CVE-2011-1018 [improper sanitization of special characters in log file] - RESERVED +CVE-2011-1018 (logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute ...) - logwatch <unfixed> TODO: check CVE-2011-1017 @@ -499,8 +506,8 @@ RESERVED CVE-2011-0927 RESERVED -CVE-2011-0926 - RESERVED +CVE-2011-0926 (A certain ActiveX control in CSDWebInstaller.ocx in Cisco Secure ...) + TODO: check CVE-2011-0925 RESERVED CVE-2011-0924 (The client in HP Data Protector does not verify the contents of files ...) @@ -1023,11 +1030,9 @@ TODO: check CVE-2011-0719 RESERVED -CVE-2011-0718 - RESERVED +CVE-2011-0718 (Red Hat Network (RHN) Satellite Server 5.4 does not use a time delay ...) NOT-FOR-US: Red Hat Network Satellite/Spacewalk -CVE-2011-0717 - RESERVED +CVE-2011-0717 (Session fixation vulnerability in Red Hat Network (RHN) Satellite ...) NOT-FOR-US: Red Hat Network Satellite/Spacewalk CVE-2011-0716 RESERVED @@ -1061,7 +1066,7 @@ NOTE: patch http://mail.python.org/pipermail/mailman-developers/attachments/20110218/15500b22/attachment.txt NOTE: present in 2.1.14 and earlier NOTE: http://mail.python.org/pipermail/mailman-developers/2011-February/021317.html -CVE-2011-0706 (The "JNLPClassLoader" class in IcedTea-Web before 1.0.1, as used in ...) +CVE-2011-0706 (The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in ...) TODO: check CVE-2011-0705 [path traversal in SimpleHTTPServer] RESERVED @@ -1994,8 +1999,8 @@ RESERVED CVE-2011-0333 RESERVED -CVE-2011-0332 - RESERVED +CVE-2011-0332 (Integer overflow in Foxit Reader before 4.3.1.0218 and Foxit Phantom ...) + TODO: check CVE-2011-0331 RESERVED CVE-2011-0330 (The Dell DellSystemLite.Scanner ActiveX control in DellSystemLite.ocx ...) @@ -3013,8 +3018,8 @@ NOT-FOR-US: Microsoft Windows CVE-2011-0038 (Untrusted search path vulnerability in Microsoft Internet Explorer 8 ...) NOT-FOR-US: Microsoft Internet Explorer -CVE-2011-0037 - RESERVED +CVE-2011-0037 (Microsoft Malware Protection Engine before 1.1.6603.0, as used in ...) + TODO: check CVE-2011-0036 (Microsoft Internet Explorer 6, 7, and 8 does not properly handle ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2011-0035 (Microsoft Internet Explorer 6, 7, and 8 does not properly handle ...) @@ -4005,8 +4010,8 @@ RESERVED CVE-2010-4228 RESERVED -CVE-2010-4227 - RESERVED +CVE-2010-4227 (The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before ...) + TODO: check CVE-2010-4226 RESERVED CVE-2010-4225 (Unspecified vulnerability in the mod_mono module for XSP in Mono 2.8.x ...)