Author: joeyh
Date: 2011-05-16 21:15:07 +0000 (Mon, 16 May 2011)
New Revision: 16674
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2011-05-16 19:46:45 UTC (rev 16673)
+++ data/CVE/list 2011-05-16 21:15:07 UTC (rev 16674)
@@ -1,3 +1,121 @@
+CVE-2011-2140
+ RESERVED
+CVE-2011-2139
+ RESERVED
+CVE-2011-2138
+ RESERVED
+CVE-2011-2137
+ RESERVED
+CVE-2011-2136
+ RESERVED
+CVE-2011-2135
+ RESERVED
+CVE-2011-2134
+ RESERVED
+CVE-2011-2133
+ RESERVED
+CVE-2011-2132
+ RESERVED
+CVE-2011-2131
+ RESERVED
+CVE-2011-2130
+ RESERVED
+CVE-2011-2129
+ RESERVED
+CVE-2011-2128
+ RESERVED
+CVE-2011-2127
+ RESERVED
+CVE-2011-2126
+ RESERVED
+CVE-2011-2125
+ RESERVED
+CVE-2011-2124
+ RESERVED
+CVE-2011-2123
+ RESERVED
+CVE-2011-2122
+ RESERVED
+CVE-2011-2121
+ RESERVED
+CVE-2011-2120
+ RESERVED
+CVE-2011-2119
+ RESERVED
+CVE-2011-2118
+ RESERVED
+CVE-2011-2117
+ RESERVED
+CVE-2011-2116
+ RESERVED
+CVE-2011-2115
+ RESERVED
+CVE-2011-2114
+ RESERVED
+CVE-2011-2113
+ RESERVED
+CVE-2011-2112
+ RESERVED
+CVE-2011-2111
+ RESERVED
+CVE-2011-2110
+ RESERVED
+CVE-2011-2109
+ RESERVED
+CVE-2011-2108
+ RESERVED
+CVE-2011-2107
+ RESERVED
+CVE-2011-2106
+ RESERVED
+CVE-2011-2105
+ RESERVED
+CVE-2011-2104
+ RESERVED
+CVE-2011-2103
+ RESERVED
+CVE-2011-2102
+ RESERVED
+CVE-2011-2101
+ RESERVED
+CVE-2011-2100
+ RESERVED
+CVE-2011-2099
+ RESERVED
+CVE-2011-2098
+ RESERVED
+CVE-2011-2097
+ RESERVED
+CVE-2011-2096
+ RESERVED
+CVE-2011-2095
+ RESERVED
+CVE-2011-2094
+ RESERVED
+CVE-2011-2093
+ RESERVED
+CVE-2011-2092
+ RESERVED
+CVE-2011-2091
+ RESERVED
+CVE-2011-2090
+ RESERVED
+CVE-2011-2089 (Stack-based buffer overflow in the SetActiveXGUID method in the
...)
+ TODO: check
+CVE-2011-2088 (XWork 2.2.1 in Apache Struts 2.2.1, and OpenSymphony XWork in
...)
+ TODO: check
+CVE-2011-2087 (Multiple cross-site scripting (XSS) vulnerabilities in component
...)
+ TODO: check
+CVE-2011-2086
+ RESERVED
+CVE-2011-2085
+ RESERVED
+CVE-2011-2084
+ RESERVED
+CVE-2011-2083
+ RESERVED
+CVE-2011-2082
+ RESERVED
CVE-2011-2081 (MediaCAST 8 and earlier does not properly handle requests for
...)
NOT-FOR-US: MediaCAST
CVE-2011-2080 (Multiple SQL injection vulnerabilities in MediaCAST 8 and
earlier ...)
@@ -474,22 +592,22 @@
RESERVED
CVE-2011-1856
RESERVED
-CVE-2011-1855
- RESERVED
-CVE-2011-1854
- RESERVED
-CVE-2011-1853
- RESERVED
-CVE-2011-1852
- RESERVED
-CVE-2011-1851
- RESERVED
-CVE-2011-1850
- RESERVED
-CVE-2011-1849
- RESERVED
-CVE-2011-1848
- RESERVED
+CVE-2011-1855 (Unspecified vulnerability in HP Network Node Manager i (NNMi)
9.0x ...)
+ TODO: check
+CVE-2011-1854 (Use-after-free vulnerability in HP Intelligent Management Center
(IMC) ...)
+ TODO: check
+CVE-2011-1853 (tftpserver.exe in HP Intelligent Management Center (IMC) 5.0
before ...)
+ TODO: check
+CVE-2011-1852 (Multiple stack-based buffer overflows in tftpserver.exe in HP
...)
+ TODO: check
+CVE-2011-1851 (Stack-based buffer overflow in tftpserver.exe in HP Intelligent
...)
+ TODO: check
+CVE-2011-1850 (Stack-based buffer overflow in the logging functionality in
dbman.exe ...)
+ TODO: check
+CVE-2011-1849 (tftpserver.exe in HP Intelligent Management Center (IMC) 5.0
before ...)
+ TODO: check
+CVE-2011-1848 (Stack-based buffer overflow in img.exe in HP Intelligent
Management ...)
+ TODO: check
CVE-2011-1847 (IBM DB2 9.5 before FP7 and 9.7 before FP4 on Linux, UNIX, and
Windows ...)
NOT-FOR-US: IBM DB2 9.5
CVE-2011-1846 (IBM DB2 9.5 before FP7 and 9.7 before FP4 on Linux, UNIX, and
Windows ...)
@@ -504,8 +622,8 @@
NOT-FOR-US: Ubuntu-specific language-selector package
CVE-2011-1841 (Cross-site scripting (XSS) vulnerability in the link_to helper
in ...)
- libmojolicious-perl 1.12-1
-CVE-2011-1840
- RESERVED
+CVE-2011-1840 (The MartiniCreations PassmanLite Password Manager application
before ...)
+ TODO: check
CVE-2011-1839 (IBM Rational Build Forge 7.1.0 uses the HTTP GET method during
...)
NOT-FOR-US: IBM Rational Build Forge 7.1.0
CVE-2011-1838
@@ -715,8 +833,8 @@
CVE-2011-1773
RESERVED
NOT-FOR-US: virt-v2v
-CVE-2011-1772
- RESERVED
+CVE-2011-1772 (Multiple cross-site scripting (XSS) vulnerabilities in XWork in
Apache ...)
+ TODO: check
CVE-2011-1771
RESERVED
CVE-2011-1770
@@ -791,10 +909,10 @@
RESERVED
CVE-2011-1739 (The makemask function in mountd.c in mountd in FreeBSD 7.4
through 8.2 ...)
TODO: check
-CVE-2011-1738
- RESERVED
-CVE-2011-1737
- RESERVED
+CVE-2011-1738 (HP Palm webOS 1.4.5 and 1.4.5.1 does not properly restrict
Plug-in ...)
+ TODO: check
+CVE-2011-1737 (Multiple cross-site scripting (XSS) vulnerabilities in the Email
...)
+ TODO: check
CVE-2011-1736 (Directory traversal vulnerability in OmniInet.exe in the Backup
Client ...)
TODO: check
CVE-2011-1735 (Stack-based buffer overflow in OmniInet.exe in the Backup Client
...)
@@ -827,8 +945,7 @@
TODO: check
CVE-2011-1721 (Cross-site request forgery (CSRF) vulnerability in ...)
NOT-FOR-US: WebJaxe
-CVE-2011-1720
- RESERVED
+CVE-2011-1720 (The SMTP server in Postfix before 2.5.13, 2.6.x before 2.6.10,
2.7.x ...)
{DSA-2233-1}
- postfix 2.8.3-1
NOTE: http://www.postfix.org/CVE-2011-1720.html
@@ -1723,20 +1840,15 @@
{DSA-2236-1}
- exim4 4.76-1
[lenny] - exim4 <not-affected> (Vulnerable code not present)
-CVE-2011-1406
- RESERVED
+CVE-2011-1406 (Mahara before 1.3.6 does not properly handle an https URL in the
...)
- mahara 1.3.6-1
-CVE-2011-1405
- RESERVED
+CVE-2011-1405 (Cross-site scripting (XSS) vulnerability in Mahara before 1.3.6
allows ...)
- mahara 1.3.6-1
-CVE-2011-1404
- RESERVED
+CVE-2011-1404 (Mahara before 1.3.6 does not properly restrict the data in
responses ...)
- mahara 1.3.6-1
-CVE-2011-1403
- RESERVED
+CVE-2011-1403 (Cross-site request forgery (CSRF) vulnerability in the pieforms
...)
- mahara 1.3.6-1
-CVE-2011-1402
- RESERVED
+CVE-2011-1402 (Mahara before 1.3.6 allows remote authenticated users to bypass
...)
- mahara 1.3.6-1
CVE-2011-1401 (ikiwiki before 3.20110328 does not ascertain whether the
htmlscrubber ...)
{DSA-2214-1}
@@ -1891,10 +2003,10 @@
RESERVED
CVE-2011-1327
RESERVED
-CVE-2011-1326
- RESERVED
-CVE-2011-1325
- RESERVED
+CVE-2011-1326 (Unspecified vulnerability on the La Fonera+ router with firmware
...)
+ TODO: check
+CVE-2011-1325 (Cross-site request forgery (CSRF) vulnerability in EC-CUBE
before ...)
+ TODO: check
CVE-2011-1324 (Multiple cross-site request forgery (CSRF) vulnerabilities in
the ...)
TODO: check
CVE-2011-1323 (Yamaha RTX, RT, SRT, RTV, RTW, and RTA series routers with
firmware ...)
@@ -2030,10 +2142,10 @@
RESERVED
CVE-2011-1271 (The JIT compiler in Microsoft .NET Framework before 4 beta 2,
when ...)
TODO: check
-CVE-2011-1270
- RESERVED
-CVE-2011-1269
- RESERVED
+CVE-2011-1270 (Buffer overflow in Microsoft PowerPoint 2002 SP3 and 2003 SP3
allows ...)
+ TODO: check
+CVE-2011-1269 (Microsoft PowerPoint 2002 SP3, 2003 SP3, and 2007 SP2; Office
2004 and ...)
+ TODO: check
CVE-2011-1268
RESERVED
CVE-2011-1267
@@ -2074,8 +2186,8 @@
RESERVED
CVE-2011-1249
RESERVED
-CVE-2011-1248
- RESERVED
+CVE-2011-1248 (WINS in Microsoft Windows Server 2003 SP2 and Server 2008 Gold,
SP2, ...)
+ TODO: check
CVE-2011-1247
RESERVED
CVE-2011-1246
@@ -2951,8 +3063,8 @@
NOTE: inrodroduced in 4.2.0 and fixed in 4.2.1
CVE-2011-0996 (dhcpcd before 5.2.12 allows remote attackers to execute
arbitrary ...)
TODO: check
-CVE-2011-0995
- RESERVED
+CVE-2011-0995 (The sqlite3-ruby gem in the rubygem-sqlite3 package before
1.2.4-0.5.1 ...)
+ TODO: check
CVE-2011-0994 (Stack-based buffer overflow in NFRAgent.exe in Novell File
Reporter ...)
NOT-FOR-US: Novell File Reporter
CVE-2011-0993
@@ -3560,8 +3672,8 @@
RESERVED
CVE-2011-0762 (The vsf_filename_passes_filter function in ls.c in vsftpd before
2.3.3 ...)
TODO: check
-CVE-2011-0761
- RESERVED
+CVE-2011-0761 (Perl 5.10.x allows context-dependent attackers to cause a denial
of ...)
+ TODO: check
CVE-2011-0760 (Multiple cross-site request forgery (CSRF) vulnerabilities in
the ...)
NOT-FOR-US: WP Related Posts plugin for WordPress
CVE-2011-0759 (Multiple cross-site request forgery (CSRF) vulnerabilities in
the ...)
@@ -3976,8 +4088,8 @@
- maradns 1.4.03-1.1 (bug #610834)
CVE-2011-0634
REJECTED
-CVE-2011-0633
- RESERVED
+CVE-2011-0633 (The Net::HTTPS module in libwww-perl (LWP) before 6.00, as used
in ...)
+ TODO: check
CVE-2011-0632
RESERVED
CVE-2011-0631
@@ -3988,26 +4100,26 @@
RESERVED
CVE-2011-0628
RESERVED
-CVE-2011-0627
- RESERVED
-CVE-2011-0626
- RESERVED
-CVE-2011-0625
- RESERVED
-CVE-2011-0624
- RESERVED
-CVE-2011-0623
- RESERVED
-CVE-2011-0622
- RESERVED
-CVE-2011-0621
- RESERVED
-CVE-2011-0620
- RESERVED
-CVE-2011-0619
- RESERVED
-CVE-2011-0618
- RESERVED
+CVE-2011-0627 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
+CVE-2011-0626 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
+CVE-2011-0625 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
+CVE-2011-0624 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
+CVE-2011-0623 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
+CVE-2011-0622 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
+CVE-2011-0621 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
+CVE-2011-0620 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
+CVE-2011-0619 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
+CVE-2011-0618 (Integer overflow in Adobe Flash Player before 10.3.181.14 on
Windows, ...)
+ TODO: check
CVE-2011-0617
RESERVED
CVE-2011-0616
@@ -4084,8 +4196,8 @@
NOT-FOR-US: Adobe ColdFusion
CVE-2011-0580 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
NOT-FOR-US: Adobe ColdFusion
-CVE-2011-0579
- RESERVED
+CVE-2011-0579 (Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X,
Linux, and ...)
+ TODO: check
CVE-2011-0578 (Adobe Flash Player before 10.2.152.26 allows attackers to
execute ...)
NOT-FOR-US: Adobe Flash Player
CVE-2011-0577 (Unspecified vulnerability in Adobe Flash Player before
10.2.152.26 ...)
@@ -4707,8 +4819,8 @@
NOT-FOR-US: Unified Maintenance Tool
CVE-2011-0342
RESERVED
-CVE-2011-0341
- RESERVED
+CVE-2011-0341 (Stack-based buffer overflow in the pdfmoz_onmouse function in
...)
+ TODO: check
CVE-2011-0340 (Multiple buffer overflows in the ISSymbol ActiveX control in
...)
TODO: check
CVE-2011-0339