From 4e4b4c54a312aa84294def661eb598a733d1322a Mon Sep 17 00:00:00 2001 From: cvebot Date: Fri, 12 Nov 2010 23:15:26 +0000 Subject: MITRE sync svn path=/; revision=2202 --- data/CVE/list | 54 ++++++++++++++++++++++++++++++------------------------ 1 file changed, 30 insertions(+), 24 deletions(-) diff --git a/data/CVE/list b/data/CVE/list index f7507a9..c10e51d 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -85674,6 +85674,10 @@ CVE-2009-5014 (The default quickstart configuration of TurboGears2 (aka tg2) bef TODO: check CVE-2009-5015 (The URL dispatch mechanism in TurboGears2 (aka tg2) before 2.0.2 ...) TODO: check +CVE-2009-5016 (Integer overflow in the xml_utf8_decode function in ext/xml/xml.c in ...) + TODO: check +CVE-2009-5017 (Mozilla Firefox before 3.6 Beta 3 does not properly handle overlong ...) + TODO: check CVE-2010-0001 (Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 ...) BUG: 300943 CVE-2010-0002 (The /etc/profile.d/60alias.sh script in the Mandriva bash package for ...) @@ -90975,8 +90979,8 @@ CVE-2010-2635 (SQL injection vulnerability in IBM WebSphere Commerce 6.0 before TODO: check CVE-2010-2636 (Multiple cross-site scripting (XSS) vulnerabilities in sample store ...) TODO: check -CVE-2010-2637 - RESERVED +CVE-2010-2637 (IBM WebSphere MQ 6.0 before 6.0.2.9 and 7.0 before 7.0.1.1 does not ...) + TODO: check CVE-2010-2638 RESERVED CVE-2010-2639 @@ -93447,8 +93451,8 @@ CVE-2010-3868 RESERVED CVE-2010-3869 RESERVED -CVE-2010-3870 - RESERVED +CVE-2010-3870 (The utf8_decode function in PHP before 5.3.4 does not properly handle ...) + TODO: check CVE-2010-3871 (Cross-site scripting (XSS) vulnerability in ...) TODO: check CVE-2010-3872 @@ -93488,26 +93492,26 @@ CVE-2010-3888 (Unspecified vulnerability in Microsoft Windows on 32-bit platform TODO: check CVE-2010-3889 (Unspecified vulnerability in Microsoft Windows on 32-bit platforms ...) TODO: check -CVE-2010-3890 - RESERVED -CVE-2010-3891 - RESERVED -CVE-2010-3892 - RESERVED -CVE-2010-3893 - RESERVED -CVE-2010-3894 - RESERVED -CVE-2010-3895 - RESERVED -CVE-2010-3896 - RESERVED -CVE-2010-3897 - RESERVED -CVE-2010-3898 - RESERVED -CVE-2010-3899 - RESERVED +CVE-2010-3890 (Cross-site scripting (XSS) vulnerability in IBM OmniFind Enterprise ...) + TODO: check +CVE-2010-3891 (Cross-site request forgery (CSRF) vulnerability in ESAdmin/security.do ...) + TODO: check +CVE-2010-3892 (Session fixation vulnerability in the login form in the administrator ...) + TODO: check +CVE-2010-3893 (The administrator interface in IBM OmniFind Enterprise Edition 8.x and ...) + TODO: check +CVE-2010-3894 (Stack-based buffer overflow in the ...) + TODO: check +CVE-2010-3895 (esRunCommand in IBM OmniFind Enterprise Edition before 9.1 allows local ...) + TODO: check +CVE-2010-3896 (The ESSearchApplication directory tree in IBM OmniFind Enterprise ...) + TODO: check +CVE-2010-3897 (ESSearchApplication/palette.do in IBM OmniFind Enterprise Edition 8.x ...) + TODO: check +CVE-2010-3898 (IBM OmniFind Enterprise Edition 8.x and 9.x does not properly restrict ...) + TODO: check +CVE-2010-3899 (IBM OmniFind Enterprise Edition 8.x and 9.x performs web crawls with an ...) + TODO: check CVE-2010-3900 (Midori before 0.2.5, when WebKitGTK+ before 1.1.14 or LibSoup before ...) TODO: check CVE-2010-3901 (OpenConnect before 2.25 does not properly validate X.509 certificates, ...) @@ -94152,3 +94156,5 @@ CVE-2010-4220 (Cross-site scripting (XSS) vulnerability in the Integrated Soluti TODO: check CVE-2010-4221 (Multiple stack-based buffer overflows in the pr_netio_telnet_gets ...) TODO: check +CVE-2010-4236 (Untrusted search path vulnerability in estaskwrapper in IBM OmniFind ...) + TODO: check -- cgit v1.2.3-65-gdbad