Azdgdating in sg

...) - NOTE: not-for-us (Land Down Under) NOT-FOR-US: Land Down Under CAN-2005-2673 (SQL injection vulnerability in in Wolt Lab Burning Board ...) - NOTE: not-for-us (Burning Board) NOT-FOR-US: Burning Board CAN-2005-2671 NOTE: rejected CAN-2005-2670 (Directory traversal vulnerability in HAURI Anti-Virus products ...) - NOTE: not-for-us (HAURI) NOT-FOR-US: HAURI CAN-2005-2669 (Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 ...) - NOTE: not-for-us (Computer Associates) NOT-FOR-US: Computer Associates CAN-2005-2668 (Multiple buffer overflows in Computer Associates (CA) Message Queuing ...) - NOTE: not-for-us (Computer Associates) NOT-FOR-US: Computer Associates CAN-2005-2667 (Unknown vulnerability in Computer Associates (CA) Message Queuing (CAM ...) - NOTE: not-for-us (Computer Associates) NOT-FOR-US: Computer Associates CAN-2005-2666 (SSH, as implemented in Open SSH before 4.0 and possibly other ...) - openssh 1:4.0p1-1 (low) CAN-2005-2665 (Stack-based buffer overflow in expires.c in Elm 2.5 PL5 through PL7, ...) - NOTE: not-for-us (elm-me is no longer in unstable or testing) NOT-FOR-US: elm-me is no longer in unstable or testing CAN-2005-2664 (Whisper 32 1.16, and possibly earlier versions, stores passwords in ...) - NOTE: not-for-us (Whisper) NOT-FOR-US: Whisper CAN-2005-2663 (masqmail before 0.2.18 allows local users to overwrite arbitrary files ...) - masqmail (low; bug #329307) CAN-2005-2662 (masqmail before 0.2.18 allows remote attackers to execute arbitrary ...) @@ -888,25 888,25 @@ - lm-sensors 1:2.9.1-6etch1 (bug #324193; medium) CAN-2005-2653 (Cross-site scripting (XSS) vulnerability in BBCaffe 2.0 allows remote ...) - NOTE: not-for-us (BBCaffe) NOT-FOR-US: BBCaffe CAN-2005-2652 (Zorum 3.5 allows remote attackers to obtain the full installation path ...) - NOTE: not-for-us (Zorum) NOT-FOR-US: Zorum CAN-2005-2651 (gorum/in Zorum 3.5 allows remote attackers to execute ...) - NOTE: not-for-us (Zorum) NOT-FOR-US: Zorum CAN-2005-2650 (Cross-site scripting (XSS) vulnerability in in Emefa ...) - NOTE: not-for-us (Emefa Guestbook) NOT-FOR-US: Emefa Guestbook CAN-2005-2649 (Cross-site scripting (XSS) vulnerability in ATutor 1.5.1 allows remote ...) - NOTE: not-for-us (ATutor) NOT-FOR-US: ATutor CAN-2005-2648 (Directory traversal vulnerability in in W-Agora 4.2.0 and ...) - NOTE: not-for-us (W-Agora) NOT-FOR-US: W-Agora CAN-2005-2647 (Cross-site scripting (XSS) vulnerability in Xerox Micro Server Web ...) - NOTE: not-for-us (Xerox Micro Server Web Server in Document Centre) NOT-FOR-US: Xerox Micro Server Web Server in Document Centre CAN-2005-2646 (Unknown vulnerability in Xerox Micro Server Web Server in Document ...) - NOTE: not-for-us (Xerox Micro Server Web Server in Document Centre) NOT-FOR-US: Xerox Micro Server Web Server in Document Centre CAN-2005-2645 (Unknown vulnerability in Xerox Micro Server Web Server in Document ...) - NOTE: not-for-us (Xerox Micro Server Web Server in Document Centre) NOT-FOR-US: Xerox Micro Server Web Server in Document Centre CAN-2005-2644 (Buffer overflow in Jaguar Edit in Isemarket Jaguar Control ...) - NOTE: not-for-us (Jaguar Control) NOT-FOR-US: Jaguar Control CAN-2005-2643 (Tor 0.1.0.13 and earlier, and experimental versions 0.1.1.4-alpha and ...) - tor 0.1.0.14-1 (medium) CAN-2005-2642 (Buffer overflow in the mutt_decode_xbit function in Handler.c for Mutt ...) @@ -916,11 916,11 @@ - libpam-ldap 178-1sarge1 (bug #324899; unknown) CAN-2004-2483 (Kerio Win Route Firewall before 6.0.9 uses information from PTR queries ...) - NOTE: not-for-us (Kerio Win Route Firewall) NOT-FOR-US: Kerio Win Route Firewall CAN-2004-2482 (Microsoft Outlook 20, when configured to use Microsoft Word ...) - NOTE: not-for-us (Outlook) NOT-FOR-US: Outlook CAN-2004-2481 (My Proxy 6.58 allows remote authenticated users in the Users Tab to ...) - NOTE: not-for-us (My Proxy) NOT-FOR-US: My Proxy CAN-2004-2480 (Squid Web Proxy Cache 2.3.

STABLE5 allows remote attackers to bypass ...) TODO: check CAN-2004-2479 (Squid Web Proxy Cache 2.5 might allow remote attackers to obtain ...) @@ -928,27 928,27 @@ CAN-2004-2478 (Unspecified vulnerability in Jetty HTTP Server, which is included in ...) NOTE: "the original vendor report is too vague to know whether this issue is already identified by another CVE name." CAN-2004-2477 (Diamond CS Process Guard Free 2.000 allows local users to disable the ...) - NOTE: not-for-us (Diamond CS) NOT-FOR-US: Diamond CS CAN-2005-2640 (Behavioral discrepancy information leak in Juniper Netscreen VPN ...) - NOTE: not-for-us (Juniper) NOT-FOR-US: Juniper CAN-2005-2639 (Buffer overflow in Chris Moneymaker's World Poker Championship 1.0 ...) - NOTE: not-for-us (World Poker Championship) NOT-FOR-US: World Poker Championship CAN-2005-2638 (Multiple cross-site scripting (XSS) vulnerabilities in PHPFree News ...) - NOTE: not-for-us (PHPFree News not in Debian) NOT-FOR-US: PHPFree News CAN-2005-2637 (Multiple SQL injection vulnerabilities in PHPFree News 1.40 and earlier ...) - NOTE: not-for-us (PHPFree News not in Debian) NOT-FOR-US: PHPFree News CAN-2005-2636 (SQL injection vulnerability in php in php Ads New ...) - phpadsnew (bug #226636) CAN-2005-2634 (Buffer overflow in the Log-SCR function in the " Log to Screen" feature ...) - NOTE: not-for-us (Win FTP Server) NOT-FOR-US: Win FTP Server CAN-2005-2633 (Multiple PHP file inclusion vulnerabilities in (1) admin_o.php, (2) ...) - NOTE: not-for-us (PHPTB Topic Board not in Debian) NOT-FOR-US: PHPTB Topic Board CAN-2005-2632 (SQL injection vulnerability in login_admin_mediabox404in ...) - mediabox404 (bug #294397) CAN-2005-2631 (Cisco Clean Access (CCA) 3.3.0 to 3.3.9, 3.4.0 to 3.4.5, and 3.5.0 to ...) - NOTE: not-for-us (Cisco) NOT-FOR-US: Cisco CAN-2005-2630 NOTE: reserved CAN-2005-2629 @@ -962,34 962,34 @@ - kismet 2005.08.

Author: micah Date: 2005-09-23 0000 (Fri, ) New Revision: 2142 Modified: data/CAN/list Log: Changing NOTE: not-for-us (package_name) to NOT-FOR-US: package_name Modified: data/CAN/list =================================================================== --- data/CAN/list 2005-09-23 UTC (rev 2141) data/CAN/list 2005-09-23 UTC (rev 2142) @@ -3,110 3,110 @@ CAN-2005-XXXX [ITL injection in interchange] - interchange 5.2.1-1 (bug #329705; unknown) CAN-2005-3043 (SQL injection vulnerability in Add in Mall23 e Commerce allows ...) - NOTE: not-for-us (Mall23 e Commerce) NOT-FOR-US: Mall23 e Commerce CAN-2005-3042 (in Webmin before 1.230 and Usermin before 1.160, when ...) - webmin 1.220-1 (high; bug #329741) - usermin 1.150-1 (high; bug #329742) NOTE: SNS Advisory 83,

m=112733083203821 CAN-2005-3041 (Unspecified "drag-and-drop vulnerability" in Opera Web Browser before ...) - NOTE: not-for-us (Opera) NOT-FOR-US: Opera CAN-2005-3040 (Directory traversal vulnerability in the web interface (ISALogin.dll) ...) - NOTE: not-for-us (TAC Vista) NOT-FOR-US: TAC Vista CAN-2005-3039 (SQL injection vulnerability in in Mall23 e Commerce allows ...) - NOTE: not-for-us (Mall23 e Commerce) NOT-FOR-US: Mall23 e Commerce CAN-2005-3038 (Unspecified vulnerability in Hosting Controller 6.1 before Hotfix 2.4 ...) - NOTE: not-for-us (Hosting Controller) NOT-FOR-US: Hosting Controller CAN-2005-3037 (Cross-site scripting (XSS) vulnerability in Handy Address Book Server ...) - NOTE: not-for-us (Handy Address Book Server) NOT-FOR-US: Handy Address Book Server CAN-2005-3036 (File Transfer Anywhere 3.01 stores sensitive password information in ...) - NOTE: not-for-us (File Transfer Anywhere) NOT-FOR-US: File Transfer Anywhere CAN-2005-3035 (Compuware Driver Studio Remote Control service (DSRsvc.exe) 2.7 and 3.0 ...) - NOTE: not-for-us (Compuware Driver Studio) NOT-FOR-US: Compuware Driver Studio CAN-2005-3034 (Compuware Driver Studio Remote Control service (DSRsvc.exe) 2.7 and 3.0 ...) - NOTE: not-for-us (Compuware Driver Studio) NOT-FOR-US: Compuware Driver Studio CAN-2005-3033 (Stack-based buffer overflow in vx Web 1.1.4 allows remote attackers to ...) - NOTE: not-for-us (vx Web - Win CE software) NOT-FOR-US: vx Web - Win CE software CAN-2005-3032 (Buffer overflow in vx Tftp Srv 1.7.0 allows remote attackers to cause a ...) - NOTE: not-for-us (vx Tfp Srv - Win CE software) NOT-FOR-US: vx Tfp Srv - Win CE software CAN-2005-3031 (Buffer overflow in vx Ftp Srv 0.9.7 allows remote attackers to execute ...) - NOTE: not-for-us (vx Tfp Srv - Win CE software) NOT-FOR-US: vx Tfp Srv - Win CE software CAN-2005-3030 (Directory traversal vulnerability in the archive decompression library ...) - NOTE: not-for-us (Ahnlab Anti virus) NOT-FOR-US: Ahnlab Anti virus CAN-2005-3029 (Stack-based buffer overflow in Ahn Lab V3Pro 2004 build 6.0.0.383, V3 ...) - NOTE: not-for-us (Ahnlab Anti virus) NOT-FOR-US: Ahnlab Anti virus CAN-2005-3028 NOTE: rejected CAN-2005-3027 (Sybari Antigen 8.0 SR2 does not properly filter SMTP messages, which ...) - NOTE: not-for-us (Sybari Antigen anti spam solution) NOT-FOR-US: Sybari Antigen anti spam solution CAN-2005-3026 (Directory traversal vulnerability in in Alstrasoft Epay Pro ...) - NOTE: not-for-us (Epay Pro) NOT-FOR-US: Epay Pro CAN-2005-3025 (Multiple cross-site scripting (XSS) vulnerabilities in v Bulletin 3.0.7 ...) - NOTE: not-for-us (v Bulletin) NOT-FOR-US: v Bulletin CAN-2005-3024 (Multiple SQL injection vulnerabilities in v Bulletin 3.0.7 and earlier ...) - NOTE: not-for-us (v Bulletin) NOT-FOR-US: v Bulletin CAN-2005-3023 (Multiple cross-site scripting (XSS) vulnerabilities in v Bulletin 3.0.9 ...) - NOTE: not-for-us (v Bulletin) NOT-FOR-US: v Bulletin CAN-2005-3022 (Multiple SQL injection vulnerabilities in v Bulletin 3.0.9 and earlier ...) - NOTE: not-for-us (v Bulletin) NOT-FOR-US: v Bulletin CAN-2005-3021 (in v Bulletin 3.0.9 and earlier allows remote attackers with ...) - NOTE: not-for-us (v Bulletin) NOT-FOR-US: v Bulletin CAN-2005-3020 (Multiple cross-site scripting (XSS) vulnerabilities in v Bulletin ...) - NOTE: not-for-us (v Bulletin) NOT-FOR-US: v Bulletin CAN-2005-3019 (Multiple SQL injection vulnerabilities in v Bulletin before 3.0.9 allow ...) - NOTE: not-for-us (v Bulletin) NOT-FOR-US: v Bulletin CAN-2005-3018 (Apple Safari allows remote attackers to cause a denial of service ...) - NOTE: not-for-us (Safari) NOT-FOR-US: Safari CAN-2005-3017 (PHP file inclusion vulnerability in in Content2Web 1.0.1 ...) - NOTE: not-for-us (Content2Web) NOT-FOR-US: Content2Web CAN-2005-3016 (Multiple unspecified vulnerabilities in the WYSIWYG editor in PHP-Nuke ...) - NOTE: not-for-us (PHP-Nuke) NOT-FOR-US: PHP-Nuke CAN-2005-3015 (Cross-site scripting (XSS) vulnerability in IBM Lotus Domino 6.5.2 ...) - NOTE: not-for-us (Lotus Domino) NOT-FOR-US: Lotus Domino CAN-2005-3014 (Cross-site scripting (XSS) vulnerability in Ensim webplliance allows ...) - NOTE: not-for-us (Ensim webppliance) NOT-FOR-US: Ensim webppliance CAN-2005-3013 (Buffer overflow in Ya ST for Su SE Linux 9.3 allows local users to ...) - NOTE: not-for-us (Ya ST) NOT-FOR-US: Ya ST CAN-2005-3012 (The Master Data CD::create Image function in for ...) - NOTE: not-for-us (Simple CDR-X) NOT-FOR-US: Simple CDR-X CAN-2005-3011 (texindex in texinfo 4.7 and earlier allows local users to overwrite ...) - texinfo (bug #328265; low) CAN-2005-3010 (Direct static code injection vulnerability in the flood protection ...) - NOTE: not-for-us (Cute News) NOT-FOR-US: Cute News CAN-2005-3009 (Cross-site scripting (XSS) vulnerability in Cute News allows remote ...) - NOTE: not-for-us (Cute News) NOT-FOR-US: Cute News CAN-2005-3008 (Tofu 0.2 allows remote attackers to execute arbitrary Python code via ...) - NOTE: not-for-us (Tofu) NOT-FOR-US: Tofu TODO: Please double-check, there's a twisted, soya and other stuff, it's all a wild mix CAN-2005-3007 (Opera before 8.50 allows remote attackers to spoof the content type of ...) - NOTE: not-for-us (Opera) NOT-FOR-US: Opera CAN-2005-3006 (The mail client in Opera before 8.50 opens attached files from the ...) - NOTE: not-for-us (Opera) NOT-FOR-US: Opera CAN-2005-3005 (Helpdesk Software Hesk allows remote attackers to bypass ...) - NOTE: not-for-us (Helpdesk Software Hesk) NOT-FOR-US: Helpdesk Software Hesk CAN-2005-3004 (SQL injection vulnerability in Interakt MX Shop 3.2.0 allows remote ...) - NOTE: not-for-us (Interakt MX Shop) NOT-FOR-US: Interakt MX Shop CAN-2005-3003 (SQL injection vulnerability in in Noo Top List 1.0.0 release ...) - NOTE: not-for-us (Noo Top List) NOT-FOR-US: Noo Top List CAN-2005-3002 (Multi-Computer Control System (MCCS) 1.0 allows remote attackers to ...) - NOTE: not-for-us (Multi-Computer Control System) NOT-FOR-US: Multi-Computer Control System CAN-2005-3001 (Unspecified vulnerability in the "tl" driver in Solaris 10 allows ...) - NOTE: not-for-us (Solaris) NOT-FOR-US: Solaris CAN-2005-3000 (Multiple cross-site scripting (XSS) vulnerabilities in viewers/...) - NOTE: not-for-us (PHP Advanced Transfer Manager) NOT-FOR-US: PHP Advanced Transfer Manager CAN-2005-2999 (PHP Advanced Transfer Manager 1.30 allows remote attackers to obtain ...) - NOTE: not-for-us (PHP Advanced Transfer Manager) NOT-FOR-US: PHP Advanced Transfer Manager CAN-2005-2998 (PHP Advanced Transfer Manager 1.30 has a default password for the ...) - NOTE: not-for-us (PHP Advanced Transfer Manager) NOT-FOR-US: PHP Advanced Transfer Manager CAN-2005-2997 (Multiple directory traversal vulnerabilities in PHP Advanced Transfer ...) - NOTE: not-for-us (PHP Advanced Transfer Manager) NOT-FOR-US: PHP Advanced Transfer Manager CAN-2005-2996 (Multiple heap-based and stack-based buffer overflows in certain DCOM ...) - NOTE: not-for-us (VERITAS storage solutions) NOT-FOR-US: VERITAS storage solutions CAN-2005-2995 (bacula 1.36.3 and earlier allows local users to modify or read ...) - bacula (bug #329271; low) CAN-2005-2994 (Unspecified vulnerability in the web client for IBM Rational ...) - NOTE: not-for-us (IBM Rational Clear Quest) NOT-FOR-US: IBM Rational Clear Quest CAN-2005-2993 (Unspecified vulnerability in the FTP Daemon (ftpd) for HP Tru64 UNIX ...) - NOTE: not-for-us (HP Tru64) NOT-FOR-US: HP Tru64 CAN-2005-2991 (ncompress 4.2.4 and earlier allows local users to overwrite arbitrary ...) - ncompress (bug #329052; unimportant) CAN-2005-2992 [Another arc tempfile issue] @@ -119,29 119,29 @@ CAN-2005-XXXX [freeradius buffer overflows and SQL injection] - freeradius 1.0.5-1 (medium) CAN-2005-2990 (Auth in Line Contol Java Client (jlc) before 0.8.1 stores ...) - NOTE: not-for-us (Line Control Java Client) NOT-FOR-US: Line Control Java Client CAN-2005-2989 (Multiple SQL injection vulnerabilities in Deluxe BB 1.0 and 1.0.5 allow ...) - NOTE: not-for-us (Deluxe BB) NOT-FOR-US: Deluxe BB CAN-2005-2988 (HP Laser Jet 2430, and possibly other printers that use Jetdirect ...) - NOTE: not-for-us (HP printers) NOT-FOR-US: HP printers CAN-2005-2987 (SQL injection vulnerability in in Digital Scribe 1.4 allows ...) - NOTE: not-for-us (Digital Scribe) NOT-FOR-US: Digital Scribe CAN-2005-2986 (The v3flt2driver in Ahn Lab V3Pro 2004 Build 6.0.0.383, V3 ...) - NOTE: not-for-us (Ahn Lab antivirus and related products) NOT-FOR-US: Ahn Lab antivirus and related products CAN-2005-2985 (SQL injection vulnerability in search_in AEwebworks ...) - NOTE: not-for-us (ae Dating script) NOT-FOR-US: ae Dating script CAN-2005-2984 (Avocent CCM console server running firmware 2.1 CCM4850 allows remote ...) - NOTE: not-for-us (Avocent hardware issue) NOT-FOR-US: Avocent hardware issue CAN-2005-2983 (SQL injection vulnerability in Oracle Reports that use Lexical ...) - NOTE: not-for-us (Oracle) NOT-FOR-US: Oracle CAN-2005-2982 (Cross-site scripting (XSS) vulnerability in Compaq HTTPServer 2.1 ...) - NOTE: not-for-us (Compaq HTTPServer) NOT-FOR-US: Compaq HTTPServer CAN-2005-2981 (Cross-site scripting (XSS) vulnerability in Orion 1.3.8 and 1.4.5 ...) - NOTE: not-for-us (Orion) NOT-FOR-US: Orion CAN-2005-2980 (Cross-site scripting (XSS) vulnerability in in ...) - NOTE: not-for-us (phpoutsourcing Noah's classifieds) NOT-FOR-US: phpoutsourcing Noah's classifieds CAN-2005-2979 (SQL injection vulnerability in in phpoutsourcing Noah's ...) - NOTE: not-for-us (phpoutsourcing Noah's classifieds) NOT-FOR-US: phpoutsourcing Noah's classifieds CAN-2005-2978 NOTE: reserved CAN-2005-2977 @@ -187,33 187,33 @@ CAN-2005-2958 NOTE: reserved CAN-2005-2957 (Stack-based buffer overflow in AVIRA Desktop for Windows 1. ...) - NOTE: not-for-us (AVIRA Desktop) NOT-FOR-US: AVIRA Desktop CAN-2005-2956 (ATutor 1.5.1, and possibly earlier versions, stores sensitive data ...) - NOTE: not-for-us (ATutor) NOT-FOR-US: ATutor CAN-2005-2955 (php in ATutor 1.5.1, and possibly earlier versions, uses an ...) - NOTE: not-for-us (ATutor) NOT-FOR-US: ATutor CAN-2005-2954 (SQL injection vulnerability in password_in ATutor before ...) - NOTE: not-for-us (ATutor) NOT-FOR-US: ATutor CAN-2005-2953 (Cross-site scripting (XSS) vulnerability in in MIVA ...) - NOTE: not-for-us (MIVA Merchant) NOT-FOR-US: MIVA Merchant CAN-2005-2952 (Directory traversal vulnerability in in Subscribe Me Pro ...) - NOTE: not-for-us (Subscribe Me Pro) NOT-FOR-US: Subscribe Me Pro CAN-2005-2951 (Directory traversal vulnerability in php in ...) - NOTE: not-for-us (Az DGDating lite) NOT-FOR-US: Az DGDating lite CAN-2005-2950 (Cross-site scripting (XSS) vulnerability in Sawmill 7.0.0 through ...) - NOTE: not-for-us (Sawmill) NOT-FOR-US: Sawmill CAN-2005-2949 (pam_per_user before 0.4 does not verify if the user name changes ...) TODO: check CAN-2005-2948 (Kill Process 2.20 and earlier allows local users to bypass kill list ...) - NOTE: not-for-us (Kill Process) NOT-FOR-US: Kill Process CAN-2005-2947 (Buffer overflow in Kill Process 2.20 and earlier allows user-complicit ...) - NOTE: not-for-us (Kill Process) NOT-FOR-US: Kill Process CAN-2005-2946 (The default configuration on Open SSL before 0.9.8 uses MD5 for ...) - openssl (bug #314465; unimportant) NOTE: MD5 is still good enough for most applications, second preimage attacks NOTE: haven't been presented yet CAN-2005-2944 (The perform_file_save function in GNOME Workstation Command Center ...) - NOTE: not-for-us (GNOME Workstation Command Center) NOT-FOR-US: GNOME Workstation Command Center CAN-2005-2943 NOTE: reserved CAN-2005-2942 @@ -231,7 231,7 @@ CAN-2005-2936 NOTE: reserved CAN-2005-2935 (Anti Spyware in Microsoft Anti Spyware does not quote the C ...) - NOTE: not-for-us (Microsoft Anti Spyware) NOT-FOR-US: Microsoft Anti Spyware CAN-2005-2934 NOTE: reserved CAN-2005-2933 @@ -261,15 261,15 @@ CAN-2005-2921 NOTE: reserved CAN-2005-2916 (Linksys WRT54G 3.01.03, 3.03.6, 4.00.7, and possibly other versions ...) - NOTE: not-for-us (Linksys routers) NOT-FOR-US: Linksys routers CAN-2005-2915 (in Linksys WRT54G router 3.01.03, 3.03.6, non-default ...) - NOTE: not-for-us (Linksys routers) NOT-FOR-US: Linksys routers CAN-2005-2914 (in Linksys WRT54G router 3.01.03, 3.03.6, non-default ...) - NOTE: not-for-us (Linksys routers) NOT-FOR-US: Linksys routers CAN-2005-2913 NOTE: rejected CAN-2005-2912 (Linksys WRT54G router allows remote attackers to cause a denial of ...) - NOTE: not-for-us (Linksys routers) NOT-FOR-US: Linksys routers CAN-2005-2911 NOTE: reserved CAN-2005-2910 @@ -285,57 285,57 @@ CAN-2005-2905 NOTE: reserved CAN-2005-2904 (Zebedee 2.4.1, when "allowed redirection port" is not set, allows ...) - NOTE: not-for-us (Zebedee) NOT-FOR-US: Zebedee CAN-2005-2903 (Heap-based buffer overflow in NOD32 2.5 with nod32.002 1.033 build ...) - NOTE: not-for-us (NOD32 Anti virus) NOT-FOR-US: NOD32 Anti virus CAN-2005-2902 (SQL injection vulnerability in class-1 Forum Software 0.24.4 allows ...) - NOTE: not-for-us (class-1 Forum) NOT-FOR-US: class-1 Forum CAN-2005-2901 (Multiple Cross-site scripting (XSS) vulnerabilities in Cj Web2Mail 3.0 ...) - NOTE: not-for-us (Cj Web2Mail) NOT-FOR-US: Cj Web2Mail CAN-2005-2900 (Cross-site scripting (XSS) vulnerability in in Cj Link Out 1.0 ...) - NOTE: not-for-us (Cj Link Out) NOT-FOR-US: Cj Link Out CAN-2005-2899 (Multiple cross-site scripting (XSS) vulnerabilities in in ...) - NOTE: not-for-us (Cj Tag Board) NOT-FOR-US: Cj Tag Board CAN-2005-2898 (** DISPUTED ** ...) - NOTE: not-for-us (Filezilla) NOT-FOR-US: Filezilla CAN-2005-2897 (WEB//NEWS 1.4 allows remote attackers to obtain sensitive information ...) - NOTE: not-for-us (WEB//NEWS) NOT-FOR-US: WEB//NEWS CAN-2005-2896 (SQL injection vulnerability in WEB//NEWS 1.4 allows remote attackers ...) - NOTE: not-for-us (WEB//NEWS) NOT-FOR-US: WEB//NEWS CAN-2005-2895 (in PBLang 4.65, and possibly earlier versions, allows ...) - NOTE: not-for-us (PBLang) NOT-FOR-US: PBLang CAN-2005-2894 (Cross-site scripting (XSS) vulnerability in the user registration in ...) - NOTE: not-for-us (PBLang) NOT-FOR-US: PBLang CAN-2005-2893 (Direct static code injection vulnerability in in PBLang ...) - NOTE: not-for-us (PBLang) NOT-FOR-US: PBLang CAN-2005-2892 (Directory traversal vulnerability in in PBLang 4.65, and ...) - NOTE: not-for-us (PBLang) NOT-FOR-US: PBLang CAN-2005-2891 (Web Archive 5.5.0.76 installed before September 6th, 2005 is ...) - NOTE: not-for-us (Web Archive X) NOT-FOR-US: Web Archive X CAN-2005-2890 (Secure OL VE2 1.05.1008 does not properly restrict public access to ...) - NOTE: not-for-us (Secure OL) NOT-FOR-US: Secure OL CAN-2005-2889 (Check Point NGX R60 does not properly verify packets against the ...) - NOTE: not-for-us (Check Point) NOT-FOR-US: Check Point CAN-2005-2888 (Multiple SQL injection vulnerabilities in My Bulletin Board (My BB) ...) - NOTE: not-for-us (My BB) NOT-FOR-US: My BB CAN-2005-2887 (MAXdev MD-Pro 1.0.73, and possibly earlier versions, allows remote ...) - NOTE: not-for-us (MAXDev MD-Pro) NOT-FOR-US: MAXDev MD-Pro CAN-2005-2886 (Multiple cross-site scripting (XSS) vulnerabilities in MAXdev MD-Pro ...) - NOTE: not-for-us (MAXDev MD-Pro) NOT-FOR-US: MAXDev MD-Pro CAN-2005-2885 (The Downloads page in MAXdev MD-Pro 1.0.73, and possibly earlier ...) - NOTE: not-for-us (MAXDev MD-Pro) NOT-FOR-US: MAXDev MD-Pro CAN-2005-2884 (Cross-site scripting (XSS) vulnerability in in Land Down ...) - NOTE: not-for-us (Land Down Under) NOT-FOR-US: Land Down Under CAN-2005-2883 (Cross-site scripting (XSS) vulnerability in Unclassified News Board ...) - NOTE: not-for-us (Unclassified News Board) NOT-FOR-US: Unclassified News Board CAN-2005-2882 (Multiple cross-site scripting (XSS) vulnerabilities in ...) - NOTE: not-for-us (php Community Calendar) NOT-FOR-US: php Community Calendar CAN-2005-2881 (php Community Calendar 4.0.3 allows remote attackers to bypass ...) - NOTE: not-for-us (php Community Calendar) NOT-FOR-US: php Community Calendar CAN-2005-2880 (Multiple SQL injection vulnerabilities in php Community Calendar 4.0.3, ...) - NOTE: not-for-us (php Community Calendar) NOT-FOR-US: php Community Calendar CAN-2005-2879 (Advansysperu Software USB Lock Auto-Protect (AP) 1.5 uses a weak ...) - NOTE: not-for-us (Advansysperu Software USB Lock Auto-Protect) NOT-FOR-US: Advansysperu Software USB Lock Auto-Protect CAN-2005-2945 (arc 5.21j and earlier create temporary files with world-readable ...) - arc 5.21m-1 (bug #329053; low) CAN-2005-2917 [Do S vulnerability in squid's NMTL auth code] @@ -389,75 389,75 @@ CAN-2005-2878 (Format string vulnerability in search.c in the imap4d server in GNU ...) - mailutils 1:0.6.90-3 (bug #327424; high) CAN-2005-2870 (Unknown vulnerability in the net-svc script on Solaris 10 allows ...) - NOTE: not-for-us (Solaris) NOT-FOR-US: Solaris CAN-2005-2869 (Multiple cross-site scripting (XSS) vulnerabilities in php My Admin ...) - phpmyadmin 4:2.6.4-pl1-1 (bug #327345; bug #328501; medium) CAN-2005-2868 (Zip Torrent 1.3.7.3 stores sensitive information in plaintext in the ...) - NOTE: not-for-us (Zip Torrent) NOT-FOR-US: Zip Torrent CAN-2005-2867 (SQL injection vulnerability in Blue Whale CRM allows remote attackers to ...) - NOTE: not-for-us (Blue Whale CRM) NOT-FOR-US: Blue Whale CRM CAN-2005-2866 (Mercora IMRadio 4.0.0.0 stores usernames and passwords in plaintext in ...) - NOTE: not-for-us (Mercora IMRadio) NOT-FOR-US: Mercora IMRadio CAN-2005-2865 (Multiple PHP remote file inclusion vulnerabilities in a Member Pro ...) - NOTE: not-for-us (a Member Pro) NOT-FOR-US: a Member Pro CAN-2005-2864 (URBAN 1.5.3_1 allows local users to overwrite arbitrary files via a ...) - NOTE: not-for-us (URBAN) NOT-FOR-US: URBAN CAN-2005-2863 (Cross-site scripting (XSS) vulnerability in in ...) - NOTE: not-for-us (Open Webmail) NOT-FOR-US: Open Webmail CAN-2005-2862 (ADSL Road Runner modem in the Annex A family has a service running on ...) - NOTE: not-for-us (ADSL hardware) NOT-FOR-US: ADSL hardware CAN-2005-2861 (Cross-site scripting (XSS) vulnerability in N-Stealth Commercial ...) - NOTE: not-for-us (N-Stealth) NOT-FOR-US: N-Stealth CAN-2005-2860 (Cross-site scripting (XSS) vulnerability in Nikto 1.35 and earlier ...) - nikto (bug #327339; medium) CAN-2005-2859 (Savant Web Server stores user credentials in plaintext in the ...) - NOTE: not-for-us (Savant Web Server) NOT-FOR-US: Savant Web Server CAN-2005-2858 (The Fetch.

NLM in Novell Netware 6.5 SP2 and SP3, ...) - NOTE: not-for-us (Novell Netware) NOT-FOR-US: Novell Netware CAN-2005-2851 (smb4k 0.4 and other versions before 0.6.3 allows local users to read ...) - smb4k 0.6.3-1 (medium) CAN-2005-2850 (Slim FTPd 3.17 allows remote attackers to cause a denial of service ...) - NOTE: not-for-us (Slim FTPD) NOT-FOR-US: Slim FTPD CAN-2005-2849 (Argument injection vulnerability in Barracuda Spam Firewall running ...) - NOTE: not-for-us (Barracuda antispam solution) NOT-FOR-US: Barracuda antispam solution CAN-2005-2848 (Directory traversal vulnerability in in Barracuda Spam Firewall ...) - NOTE: not-for-us (Barracuda antispam solution) NOT-FOR-US: Barracuda antispam solution CAN-2005-2847 (in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 ...) - NOTE: not-for-us (Barracuda antispam solution) NOT-FOR-US: Barracuda antispam solution CAN-2005-2846 (PHP remote file inclusion vulnerability in in CMS Made Simple ...) - NOTE: not-for-us (CMS Made Simple) NOT-FOR-US: CMS Made Simple CAN-2005-2845 (Ariba Spend Management System sends the username and password to the ...) - NOTE: not-for-us (Ariba Spend Management System) NOT-FOR-US: Ariba Spend Management System CAN-2005-2844 (Buffer overflow in in Indiatimes Messenger 6.0 allows ...) - NOTE: not-for-us (Indiatimes Messenger) NOT-FOR-US: Indiatimes Messenger CAN-2005-2843 (Helpdesk software Hesk 0.92 does not properly verify usernames and ...) - NOTE: not-for-us (Hesk) NOT-FOR-US: Hesk CAN-2005-2842 (Buffer overflow in in Dame Ware Mini Remote Control before ...) - NOTE: not-for-us (Dame Ware Mini) NOT-FOR-US: Dame Ware Mini CAN-2005-2841 (Buffer overflow in Firewall Authentication Proxy for FTP and/or Telnet ...) - NOTE: not-for-us (IOS) NOT-FOR-US: IOS CAN-2005-2840 (Multiple unknown vulnerabilities in MAXdev MD-Pro 1.0.72 and earlier ...) - NOTE: not-for-us (MAXdev) NOT-FOR-US: MAXdev CAN-2005-2839 (Multiple cross-site scripting (XSS) vulnerabilities in MAXdev MD-Pro ...) - NOTE: not-for-us (MAXdev) NOT-FOR-US: MAXdev CAN-2005-2838 (SQL injection vulnerability in in my Bloggie 2.1.3-beta and ...) - NOTE: not-for-us (my Bloggie) NOT-FOR-US: my Bloggie CAN-2005-2837 (Multiple eval injection vulnerabilities in Plain Black Software Web GUI ...) - NOTE: not-for-us (Web GUI) NOT-FOR-US: Web GUI CAN-2005-2836 (Multiple cross-site scripting (XSS) vulnerabilities in Phorum 5.0.17a ...) - NOTE: not-for-us (Phorum) NOT-FOR-US: Phorum CAN-2005-2835 NOTE: reserved CAN-2005-2834 @@ -491,36 491,36 @@ CAN-2005-2820 (Cross-site scripting (XSS) vulnerability in Sq Web Mail 5.0.4 allows ...) - courier 0.47-9 (bug #327181; medium) CAN-2005-2819 (Unknown vulnerability in Down File 1.3 allows remote attackers to ...) - NOTE: not-for-us (Down File) NOT-FOR-US: Down File CAN-2005-2818 (Cross-site scripting (XSS) vulnerability in Down File 1.3 allows remote ...) - NOTE: not-for-us (Down File) NOT-FOR-US: Down File CAN-2005-2817 (Simple Machines Forum (SMF) 1-0-5 and earlier supports the use of URLs ...) - NOTE: not-for-us (Simple Machines Forum) NOT-FOR-US: Simple Machines Forum CAN-2005-2816 (Cross-site scripting (XSS) vulnerability in Greymatter allows remote ...) - NOTE: not-for-us (Greymatter) NOT-FOR-US: Greymatter CAN-2005-2815 (in Flat Nuke 2.5.6 allows remote attackers to obtain ...) - NOTE: not-for-us (Flat Nuke) NOT-FOR-US: Flat Nuke CAN-2005-2814 (Cross-site scripting (XSS) vulnerability in Flat Nuke 2.5.6 allows ...) - NOTE: not-for-us (Flat Nuke) NOT-FOR-US: Flat Nuke CAN-2005-2813 (Directory traversal vulnerability in Flat Nuke 2.5.6 and possibly ...) - NOTE: not-for-us (Flat Nuke) NOT-FOR-US: Flat Nuke CAN-2005-2812 (man2web allows remote attackers to execute arbitrary commands via -P ...) - NOTE: not-for-us (man2web) NOT-FOR-US: man2web CAN-2005-2811 (Untrusted search path vulnerability in Net-SNMP 5.2.1.2 and earlier, ...) NOTE: This looks like a Portage-specific configuration flaw to mee, but please double-check NOTE: double-checked CAN-2005-2810 (Multiple stack-based buffer overflows in urban before 1.5.3 allow ...) - NOTE: not-for-us (urban game) NOT-FOR-US: urban game CAN-2005-2809 (silc daemon (silcd.c) in Secure Internet Live Conferencing (SILC) 1.0 ...) - NOTE: not-for-us (silc daemon) NOT-FOR-US: silc daemon CAN-2005-2808 (frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, ...) - frox 0.7.18-1 (medium) CAN-2005-2807 (frox 0.7.18, when running setuid root, does not properly drop ...) - frox (does not run setuid root in the Debian package) CAN-2005-2806 (in BNBT Easy Tracker 7.7r3.20 and earlier allows ...) - NOTE: not-for-us (BNBT Easy Tracker) NOT-FOR-US: BNBT Easy Tracker CAN-2005-2805 (forum_in e107 0.6 allows remote attackers to post to ...) - NOTE: not-for-us (e107) NOT-FOR-US: e107 CAN-2005-2804 NOTE: reserved CAN-2005-2803 (Cross-site scripting (XSS) vulnerability in Hiki 0.8.1 to 0.8.2 allows ...) @@ -528,7 528,7 @@ CAN-2005-2800 (Memory leak in the seq_file implemenetation in the SCSI procfs ...) - linux-2.6 2.6.12-6 (low) CAN-2005-2799 (Buffer overflow in in Linksys WRT54G 3.01.03, 3.03.6, and ...) - NOTE: not-for-us (Linksys routers) NOT-FOR-US: Linksys routers CAN-2005-2798 (sshd in Open SSH before 4.2, when GSSAPIDelegate Credentials is enabled, ...) - openssh 1:4.2p1-1 (bug #326065; medium) - openssh-krb5 (bug #327233; medium) @@ -547,65 547,65 @@ CAN-2005-2792 (Directory traversal vulnerability in in php LDAPadmin 0.9.6 ...) - phpldapadmin 0.9.6c-7 (bug #325785; medium) CAN-2005-2791 (BFCommand & Control Server Manager BFCC 1.22_A and earlier, and BFVCC ...) - NOTE: not-for-us (BFCC) NOT-FOR-US: BFCC CAN-2005-2790 (BFCommand & Control Server Manager BFCC 1.22_A and earlier, and BFVCC ...) - NOTE: not-for-us (BFCC) NOT-FOR-US: BFCC CAN-2005-2789 (BFCommand & Control Server Manager BFCC 1.22_A and earlier, and BFVCC ...) - NOTE: not-for-us (BFCC) NOT-FOR-US: BFCC CAN-2005-2788 (Multiple SQL injection vulnerabilities in Land Down Under (LDU) 801 ...) - NOTE: not-for-us (Land Down Under) NOT-FOR-US: Land Down Under CAN-2005-2787 (comment_delete_in Simple PHP Blog allows remote attackers to ...) - NOTE: not-for-us (Simple PHP Blog) NOT-FOR-US: Simple PHP Blog CAN-2005-2786 (Directory traversal vulnerability in bestmail_in cosmoshop ...) - NOTE: not-for-us (cosmoshop) NOT-FOR-US: cosmoshop CAN-2005-2785 (cosmoshop 8.10.78 and earlier stores passwords in plaintext in the ...) - NOTE: not-for-us (cosmoshop) NOT-FOR-US: cosmoshop CAN-2005-2784 (SQL injection vulnerability in the login function for the ...) - NOTE: not-for-us (cosmoshop) NOT-FOR-US: cosmoshop CAN-2005-2783 (Cross-site scripting (XSS) vulnerability in PHP-Fusion 6.00.107 and ...) - NOTE: not-for-us (PHP-Fusion) NOT-FOR-US: PHP-Fusion CAN-2005-2782 (PHP remote file inclusion vulnerability in al_for ...) - NOTE: not-for-us (Auto Links Pro) NOT-FOR-US: Auto Links Pro CAN-2005-2781 (The Avatar upload feature in FUD Forum before 2.7.0 does not properly ...) TODO: check, whether egroupware-fudforum and phpgroupware-fudforum are affected CAN-2005-2780 (Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) ...) - NOTE: not-for-us (Land Down Under) NOT-FOR-US: Land Down Under CAN-2005-2779 (The i TAN Online-Banking Security System allows remote attackers to ...) - NOTE: not-for-us (i TAN) NOT-FOR-US: i TAN CAN-2005-2778 (SQL injection vulnerability in in My Bulletin Board (My BB) ...) - NOTE: not-for-us (My BB) NOT-FOR-US: My BB CAN-2005-2777 (Looking Glass 20040427 allows remote attackers to execute arbitrary ...) - NOTE: not-for-us (Looking Glass) NOT-FOR-US: Looking Glass CAN-2005-2776 (Multiple cross-site scripting (XSS) vulnerabilities in Looking Glass ...) - NOTE: not-for-us (Looking Glass) NOT-FOR-US: Looking Glass CAN-2005-2775 (php_in php Web Notes 2.0.0 uses the extract function to modify ...) - NOTE: not-for-us (Looking Glass) NOT-FOR-US: Looking Glass CAN-2005-2774 (Format string vulnerability in Lithium II mod 1.24 for Quake 2 allows ...) - NOTE: not-for-us (Litium Quake mod) NOT-FOR-US: Litium Quake mod CAN-2005-2773 (HP Open View Network Node Manager 6.2 through 7.50 allows remote ...) - NOTE: not-for-us (HP Open View) NOT-FOR-US: HP Open View CAN-2005-2772 (Multiple stack-based buffer overflows in University of Minnesota ...) - gopher 3.0.11 (bug #327722; high) CAN-2005-2771 (WRQ Reflection for Secure IT Windows Server 6.0 (formerly known as ...) - NOTE: not-for-us (Reflection for Secure IT) NOT-FOR-US: Reflection for Secure IT CAN-2005-2770 (WRQ Reflection for Secure IT Windows Server 6.0 (formerly known as ...) - NOTE: not-for-us (Reflection for Secure IT) NOT-FOR-US: Reflection for Secure IT CAN-2005-2769 (Cross-site scripting (XSS) vulnerability in Sq Web Mail 5.0.4 and ...) - sqwebmail 0.47-9 (bug #327727; medium) CAN-2005-2768 (Heap-based buffer overflow in the Sophos Antivirus Library, as used by ...) - NOTE: not-for-us (Sophos Anti Virus) NOT-FOR-US: Sophos Anti Virus CAN-2005-2767 (Buffer overflow in Leap FTP allows remote attackers to execute ...) - NOTE: not-for-us (Leap FTP) NOT-FOR-US: Leap FTP CAN-2005-XXXX [Four potentially Do S exploitable deadlocks and leaks in kernel 2.6] - linux-2.6 2.6.12-6 (low) CAN-2005-2766 (Symantec Anti Virus Corporate Edition 9.0.1.x and 9.0.4.x, and possibly ...) - NOTE: not-for-us (Symantec Anti Virus) NOT-FOR-US: Symantec Anti Virus CAN-2005-2765 (The user interface in the Windows Firewall does not properly display ...) - NOTE: not-for-us (Microsoft Windows) NOT-FOR-US: Microsoft Windows CAN-2005-2764 (Multiple buffer overflows in Open TTD before 0.4.0.1 allow attackers to ...) - NOTE: not-for-us (Open TTD) NOT-FOR-US: Open TTD CAN-2005-2763 (Multiple format string vulnerabilities in Open TTD before 0.4.0.1 allow ...) - NOTE: not-for-us (Open TTD) NOT-FOR-US: Open TTD CAN-2005-2762 NOTE: reserved CAN-2005-2760 @@ -655,47 655,47 @@ CAN-2005-2738 NOTE: reserved CAN-2005-2737 (Cross-site scripting (XSS) vulnerability in Photo Post PHP Pro 5.1 ...) - NOTE: not-for-us (Photo Post) NOT-FOR-US: Photo Post CAN-2005-2736 (Cross-site scripting (XSS) vulnerability in Ya Pig 0.95 and earlier ...) - NOTE: not-for-us (Ya Pig) NOT-FOR-US: Ya Pig CAN-2005-2735 (Cross-site scripting (XSS) vulnerability in php Graphy 0.9.9a and ...) - NOTE: not-for-us (php Graphy) NOT-FOR-US: php Graphy CAN-2005-2734 (Cross-site scripting (XSS) vulnerability in Gallery 1.5.1-RC2 and ...) - gallery 1.5-2 (bug #325285; medium) TODO: check gallery2 CAN-2005-2733 (upload_img_in Simple PHP Blog (SPHPBlog) does not properly ...) - NOTE: not-for-us (Simple PHP Blog) NOT-FOR-US: Simple PHP Blog CAN-2005-2732 (AWStats 6.4, and possibly earlier versions, allows remote attackers to ...) NOTE: path disclosure, so not very important on debian systems - awstats (bug #327729; low) CAN-2005-2731 (Directory traversal vulnerability in Astaro Security Linux 6.0, when ...) - NOTE: not-for-us (Astato specific) NOT-FOR-US: Astato specific CAN-2005-2730 (The HTTP proxy in Astaro Security Linux 6.0 allows remote attackers to ...) - NOTE: not-for-us (Astato specific) NOT-FOR-US: Astato specific CAN-2005-2729 (The HTTP proxy in Astaro Security Linux 6.0 does not properly filter ...) - NOTE: not-for-us (Astato specific) NOT-FOR-US: Astato specific CAN-2005-2728 (The byte-range filter in Apache 2.0 before 2.0.54 allows remote ...) NOTE: The CVE description is wrong, this has been merged for 2.0.55 - apache2 2.0.54-5 (bug #326435; medium) CAN-2005-2727 (Home Ftp Server 1.0.7 stores sensitive user information and server ...) - NOTE: not-for-us (Home Ftp Server) NOT-FOR-US: Home Ftp Server CAN-2005-2726 (Directory traversal vulnerability in Home Ftp Server 1.0.7 allows ...) - NOTE: not-for-us (Home Ftp Server) NOT-FOR-US: Home Ftp Server CAN-2005-2725 (The inputtrap utility in QNX RTOS 6.1.0, 6.3, and possibly earlier ...) - NOTE: not-for-us (QNX) NOT-FOR-US: QNX CAN-2005-2723 (SQL injection vulnerability in in Pa File DB 3.1, when ...) - NOTE: not-for-us (Pa File DB) NOT-FOR-US: Pa File DB CAN-2005-2722 (Foojan PHP Weblog allows remote attackers to obtain sensitive ...) - NOTE: not-for-us (Foojan PHP Weblog) NOT-FOR-US: Foojan PHP Weblog CAN-2005-2721 (Multiple cross-site scripting (XSS) vulnerabilities in (1) ...) - NOTE: not-for-us (Foojan PHP Weblog) NOT-FOR-US: Foojan PHP Weblog CAN-2005-2720 (Stack-based buffer overflow in the ACE archive decompression library ...) - NOTE: not-for-us (HAURI Antivirus) NOT-FOR-US: HAURI Antivirus CAN-2005-2719 (Ventrilo 2.1.2 through 2.3.0 allows remote attackers to cause a denial ...) - NOTE: not-for-us (Ventrilo) NOT-FOR-US: Ventrilo CAN-2005-2718 (Buffer overflow in ad_pcm.c in MPlayer 1.0pre7 and earlier allows ...) - NOTE: not-for-us (MPlayer) NOT-FOR-US: MPlayer CAN-2005-2717 (PHP remote file inclusion vulnerability in Web Calendar before 1.0.1 ...) - webcalendar 0.9.45-7 (bug #326223; medium) @@ -748,23 748,23 @@ - libapache-mod-ssl 2.8.24-1 (medium) - apache2 2.0.54-5 (bug #327210; medium) CAN-2005-2699 (admin/in PHPKit 1.6.1 allows remote authenticated ...) - NOTE: not-for-us (PHPKit) NOT-FOR-US: PHPKit CAN-2005-2698 (Cross-site scripting (XSS) vulnerability in in Nephp ...) - NOTE: not-for-us (Nephp Publisher Enterprise) NOT-FOR-US: Nephp Publisher Enterprise CAN-2005-2697 (SQL injection vulnerability in for My Bulletin Board (My BB) ...) - NOTE: not-for-us (My BB) NOT-FOR-US: My BB CAN-2005-2696 (IBM Lotus Notes does not properly restrict access to password hashes ...) - NOTE: not-for-us (Notes) NOT-FOR-US: Notes CAN-2005-2695 (Unspecified vulnerability in the SSL certificate checking ...) - NOTE: not-for-us (Cisco) NOT-FOR-US: Cisco CAN-2005-2694 (Buffer overflow in Win Ace 2.6.0.5, and possibly earlier versions, ...) - NOTE: not-for-us (Win Ace) NOT-FOR-US: Win Ace CAN-1999-1586 (loadmodule in Sun OS 4.1.x, as used by xnews, does not properly ...) - NOTE: not-for-us (Sun OS) NOT-FOR-US: Sun OS CAN-1999-1585 (The (1) rc S and (2) mountall programs in Sun Solaris 2.x, possibly ...) - NOTE: not-for-us (Solaris) NOT-FOR-US: Solaris CAN-1999-1584 (Unknown vulnerability in (1) loadmodule, and (2) modload if modload is ...) - NOTE: not-for-us (Sun OS) NOT-FOR-US: Sun OS CAN-2005-XXXX [osh buffer overflow in handlers.c] NOTE: This is not the same as -13 - osh 1.7-14 (bug #323424; bug #323482; medium) @@ -800,63 800,63 @@ - cvs 1:1.12.9-15 (bug #325106; unimportant) - gcvs 1.0final-8 (bug #324969; low) CAN-2005-2692 (Multiple SQL injection vulnerabilities in Run CMS 1.2 and earlier allow ...) - NOTE: not-for-us (Run CMS) NOT-FOR-US: Run CMS CAN-2005-2691 (includes/in Run CMS 1.2 and earlier calls the extract ...) - NOTE: not-for-us (Run CMS) NOT-FOR-US: Run CMS CAN-2005-2690 (SQL injection vulnerability in the Downloads module in Post Nuke ...) - NOTE: not-for-us (Post Nuke) NOT-FOR-US: Post Nuke CAN-2005-2689 (Multiple cross-site scripting (XSS) vulnerabilities in Post Nuke ...) - NOTE: not-for-us (Post Nuke) NOT-FOR-US: Post Nuke CAN-2005-2688 (Multiple cross-site scripting (XSS) vulnerabilities in Save Web Portal ...) - NOTE: not-for-us (Save Web Portal) NOT-FOR-US: Save Web Portal CAN-2005-2687 (PHP remote file inclusion vulnerability in Save Web Portal 3.4 allows ...) - NOTE: not-for-us (Save Web Portal) NOT-FOR-US: Save Web Portal CAN-2005-2686 (Directory traversal vulnerability in Save Web Portal 3.4 allows remote ...) - NOTE: not-for-us (Save Web Portal) NOT-FOR-US: Save Web Portal CAN-2005-2685 (Save Web Portal 3.4 allows remote attackers to execute arbitrary PHP ...) - NOTE: not-for-us (Save Web Portal) NOT-FOR-US: Save Web Portal CAN-2005-XXXX [Insecure temp files in firehol] - firehol 1.231-4 (low) CAN-2005-2684 (in Virtual Edge Netquery 3.11 allows remote attackers to ...) - NOTE: not-for-us (Virtual Edge Netquery) NOT-FOR-US: Virtual Edge Netquery CAN-2005-2683 (Multiple SQL injection vulnerabilities in PHPKit 1.6.1 allow remote ...) - NOTE: not-for-us (PHPKit) NOT-FOR-US: PHPKit CAN-2005-2682 (aspell_in the Spell Checker plugin in DTLink Area Edit before ...) - NOTE: not-for-us (DTLink Area Edit) NOT-FOR-US: DTLink Area Edit CAN-2005-2681 (Unspecified vulnerability in the command line processing (CLI) logic ...) - NOTE: not-for-us (Cisco) NOT-FOR-US: Cisco CAN-2005-2680 (Unspecified vulnerability in BEA Web Logic Portal 8.1 through SP4, when ...) - NOTE: not-for-us (BEA Web Logic Portal) NOT-FOR-US: BEA Web Logic Portal CAN-2005-2679 (Buffer overflow in Sysinternals Process Explorer 9.23, and other ...) - NOTE: not-for-us (Sysinternals Process Explorer) NOT-FOR-US: Sysinternals Process Explorer CAN-2005-2678 (Microsoft IIS 5.1 and 6 allows remote attackers to spoof the ...) - NOTE: not-for-us (MSIE) NOT-FOR-US: MSIE CAN-2005-2677 (ACNews stores the database in a file under the web document root with ...) - NOTE: not-for-us (ACNews) NOT-FOR-US: ACNews CAN-2005-2676 (Cross-site scripting (XSS) vulnerability in in ...) - NOTE: not-for-us (Coppermine) NOT-FOR-US: Coppermine CAN-2005-2675 (** DISPUTED ** Note: the vendor has disputed this issue.

...) - NOTE: not-for-us (Land Down Under) NOT-FOR-US: Land Down Under CAN-2005-2674 (** DISPUTED ** Note: the vendor has disputed this issue.

azdgdating in sg-65azdgdating in sg-50azdgdating in sg-57

Actual Actualanalyzer Pro v6.51 Php Actual Analyzer. NULL-DGT.zipabc_estore_v3[1].0_nulled_by_gtt.rarabcache-0.14.About-Me.ABPscript. ZIPAbsolute_Live_Support_v1.2Abstract DB102RAR.rarac_tradecode_Acc. Affiliate Affiliate Network Pro 7.4.0 Affiliate Network Pro v7.4.0 (Nulled).raraffiliate1Affiliate_Affiliate Marketers Toolkit.raraffiliatemask.raraffiliatemask.zipaffiliatemaster_Affiliate Split-Pay Affili Store_Recip_Links_Dir_v1.0Affili Store_v0.2Affili Store_v1.0.zipaffshop.raraffstoresscripts.zipafian_filemanager-full v1[1].4.3Age Status Indicator.AGENTS OF FORTUNE 8.1.raragents.raragentsmlm.raragentspro.raraimgupload1.0AITSH Download 1.0Ajaxfly.v1.0. NULL-DGT.zipalafoo_php_hits_01.zipalafoo_php_weblog_01.zipalbinator103Commerce. NULL-DGTcms-master-1.0.[GTT]CNStats.v2.2.[GTT]CNStats.v2.4.

You must have an account to comment. Please register or login here!