From 711a0f0d93cc5daced1ce1795fbb48d46cb54748 Mon Sep 17 00:00:00 2001 From: Stefan Behte Date: Thu, 20 Jan 2011 21:25:35 +0000 Subject: NFU svn path=/; revision=2219 --- data/CVE/list | 2469 +++++++++++++++++++++++++++++++++++++++++++-------------- 1 file changed, 1892 insertions(+), 577 deletions(-) diff --git a/data/CVE/list b/data/CVE/list index 9a3167f..ffe43d8 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -47346,8 +47346,8 @@ CVE-2006-7241 (The Image Viewer component in IBM FileNet P8 Application Engine ( NOT-FOR-US: ibm filenet_p8_application_engine CVE-2006-7242 (The Workplace (aka WP) component in IBM FileNet P8 Application Engine ...) NOT-FOR-US: ibm filenet_p8_application_engine -CVE-2006-7243 - RESERVED +CVE-2006-7243 (PHP before 5.3.4 accepts the \0 character in a pathname, which might ...) + NOT-FOR-US: Data pre-dating the Security Tracker CVE-2007-0001 (The file watch implementation in the audit subsystem (auditctl -w) in ...) TODO: check-old CVE-2007-0002 (Multiple heap-based buffer overflows in WordPerfect Document ...) @@ -59533,7 +59533,7 @@ CVE-2007-6010 (Unspecified vulnerability in pioneers (formerly gnocatan) 0.11.3 BUG: 198807 CVE-2007-6011 (Unspecified vulnerability in main.php of BugHotel Reservation System ...) NOT-FOR-US: bug software bughotel reservation system -CVE-2007-6012 (SQL injection vulnerability in SearchR.asp in DocuSafe 4.1.0 allows ...) +CVE-2007-6012 (SQL injection vulnerability in SearchR.asp in DocuSafe 4.1.0 and 4.1.2 ...) NOT-FOR-US: DocuSafe CVE-2007-6013 (Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash ...) BUG: 199833 @@ -75598,6 +75598,12 @@ CVE-2008-7269 (Open redirect vulnerability in api.php in SiteEngine 5.x allows . NOT-FOR-US: boka siteengine CVE-2008-7270 (OpenSSL before 0.9.8j, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is ...) TODO: check +CVE-2008-7271 (Multiple cross-site scripting (XSS) vulnerabilities in the Help ...) + TODO: check +CVE-2008-7272 + RESERVED +CVE-2008-7273 + RESERVED CVE-2009-0001 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote ...) NOT-FOR-US: apple quicktime CVE-2009-0002 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote ...) @@ -79993,8 +79999,8 @@ CVE-2009-2187 (Multiple memory leaks in the (1) IP and (2) IPv6 multicast ...) NOT-FOR-US: kernel in Sun Solaris CVE-2009-2188 (Buffer overflow in ImageIO in Apple Mac OS X 10.5 before 10.5.8, and ...) NOT-FOR-US: apple mac_os_x_server -CVE-2009-2189 - RESERVED +CVE-2009-2189 (The ICMPv6 implementation on the Apple Time Capsule, AirPort Extreme ...) + NOT-FOR-US: apple time_capsule CVE-2009-2190 (launchd in Apple Mac OS X 10.5 before 10.5.8 allows remote attackers ...) NOT-FOR-US: apple mac_os_x_server CVE-2009-2191 (Format string vulnerability in Login Window in Apple Mac OS X 10.4.11 ...) @@ -85690,8 +85696,8 @@ CVE-2009-5016 (Integer overflow in the xml_utf8_decode function in ext/xml/xml.c TODO: check CVE-2009-5017 (Mozilla Firefox before 3.6 Beta 3 does not properly handle overlong ...) TODO: check -CVE-2009-5018 - RESERVED +CVE-2009-5018 (Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier ...) + TODO: check CVE-2009-5019 (Web Wiz NewsPad stores sensitive information under the web root with ...) NOT-FOR-US: webwiz web_wiz_newspad CVE-2009-5020 (Open redirect vulnerability in awredir.pl in AWStats before 6.95 ...) @@ -85718,6 +85724,46 @@ CVE-2009-5030 RESERVED CVE-2009-5031 RESERVED +CVE-2009-5032 (The encrypted e-mail feature in IBM Lotus Notes Traveler before ...) + TODO: check +CVE-2009-5033 (IBM Lotus Notes Traveler before 8.5.0.2 does not properly handle a "* ...) + TODO: check +CVE-2009-5034 (IBM Lotus Notes Traveler before 8.5.0.2 allows remote authenticated ...) + TODO: check +CVE-2009-5035 (The Nokia client in IBM Lotus Notes Traveler before 8.5.0.2 does not ...) + TODO: check +CVE-2009-5036 (traveler.exe in IBM Lotus Notes Traveler before 8.0.1.3 CF1 allows ...) + TODO: check +CVE-2009-5037 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...) + TODO: check +CVE-2009-5038 (Cisco IOS before 15.0(1)XA does not properly handle IRC traffic during ...) + TODO: check +CVE-2009-5039 (Memory leak in the gk_circuit_info_do_in_acf function in the H.323 ...) + TODO: check +CVE-2009-5040 (CallManager Express (CME) on Cisco IOS before 15.0(1)XA allows remote ...) + TODO: check +CVE-2009-5041 + RESERVED +CVE-2009-5042 + RESERVED +CVE-2009-5043 + RESERVED +CVE-2009-5044 + RESERVED +CVE-2009-5045 + RESERVED +CVE-2009-5046 + RESERVED +CVE-2009-5047 + RESERVED +CVE-2009-5048 + RESERVED +CVE-2009-5049 + RESERVED +CVE-2009-5050 + RESERVED +CVE-2009-5051 (Hastymail2 before RC 8 does not set the secure flag for the session ...) + TODO: check CVE-2010-0001 (Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 ...) BUG: 300943 CVE-2010-0002 (The /etc/profile.d/60alias.sh script in the Mandriva bash package for ...) @@ -85794,8 +85840,8 @@ CVE-2010-0037 (Buffer overflow in Image RAW in Apple Mac OS X 10.5.8 and 10.6.2 NOT-FOR-US: apple mac_os_x_server CVE-2010-0038 (Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for ...) NOT-FOR-US: apple iphone_os -CVE-2010-0039 - RESERVED +CVE-2010-0039 (The Application-Level Gateway (ALG) on the Apple Time Capsule, AirPort ...) + TODO: check CVE-2010-0040 (Integer overflow in ColorSync in Apple Safari before 4.0.5 on Windows, ...) NOT-FOR-US: apple safari CVE-2010-0041 (ImageIO in Apple Safari before 4.0.5 and iTunes before 9.1 on Windows ...) @@ -85944,10 +85990,10 @@ CVE-2010-0112 (Multiple SQL injection vulnerabilities in the Administrative Inte NOT-FOR-US: symantec im_manager CVE-2010-0113 (The Symantec Norton Mobile Security application 1.0 Beta for Android ...) NOT-FOR-US: symantec mobile_security -CVE-2010-0114 - RESERVED -CVE-2010-0115 - RESERVED +CVE-2010-0114 (fw_charts.php in the reporting module in the Manager (aka SEPM) ...) + TODO: check +CVE-2010-0115 (SQL injection vulnerability in login.php in the GUI management console ...) + TODO: check CVE-2010-0116 (Integer overflow in RealNetworks RealPlayer 11.0 through 11.1 and ...) NOT-FOR-US: realnetworks realplayer_sp CVE-2010-0117 (RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0 ...) @@ -85958,16 +86004,16 @@ CVE-2010-0119 (Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, NOT-FOR-US: becauseinter bournal CVE-2010-0120 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) NOT-FOR-US: realnetworks realplayer_sp -CVE-2010-0121 - RESERVED +CVE-2010-0121 (The cook codec in RealNetworks RealPlayer 11.0 through 11.1, ...) + TODO: check CVE-2010-0122 (Multiple SQL injection vulnerabilities in Employee Timeclock Software ...) NOT-FOR-US: timeclock software employee_timeclock_software CVE-2010-0123 (The database backup implementation in Employee Timeclock Software 0.99 ...) NOT-FOR-US: timeclock software employee_timeclock_software CVE-2010-0124 (Employee Timeclock Software 0.99 places the database password on the ...) NOT-FOR-US: timeclock software employee_timeclock_software -CVE-2010-0125 - RESERVED +CVE-2010-0125 (RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through ...) + TODO: check CVE-2010-0126 (Heap-based buffer overflow in an unspecified library in Autonomy ...) NOT-FOR-US: autonomy keyview_viewer_sdk CVE-2010-0127 (Adobe Shockwave Player before 11.5.7.609 allows remote attackers to ...) @@ -86165,10 +86211,10 @@ CVE-2010-0212 (OpenLDAP 2.4.22 allows remote attackers to cause a denial of serv BUG: 323777 CVE-2010-0213 (BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has a ...) NOT-FOR-US: We already have 9.7.1-p2 -CVE-2010-0214 - RESERVED -CVE-2010-0215 - RESERVED +CVE-2010-0214 (The administrative interface on the PolyVision RoomWizard with ...) + TODO: check +CVE-2010-0215 (ActiveCollab before 2.3.2 allows remote authenticated users to bypass ...) + NOT-FOR-US: a51dev activecollab CVE-2010-0216 RESERVED CVE-2010-0217 @@ -89091,14 +89137,14 @@ CVE-2010-1674 RESERVED CVE-2010-1675 RESERVED -CVE-2010-1676 - RESERVED -CVE-2010-1677 - RESERVED +CVE-2010-1676 (Heap-based buffer overflow in Tor before 0.2.1.28 and 0.2.2.x before ...) + TODO: check +CVE-2010-1677 (MHonArc 2.6.16 allows remote attackers to cause a denial of service ...) + TODO: check CVE-2010-1678 RESERVED -CVE-2010-1679 - RESERVED +CVE-2010-1679 (Directory traversal vulnerability in dpkg-source in dpkg before ...) + TODO: check CVE-2010-1680 RESERVED CVE-2010-1681 (Buffer overflow in VISIODWG.DLL before 10.0.6880.4 in Microsoft Office ...) @@ -89349,8 +89395,8 @@ CVE-2010-1802 (libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly NOT-FOR-US: apple mac_os_x_server CVE-2010-1803 (Time Machine in Apple Mac OS X 10.6.x before 10.6.5 does not verify ...) TODO: check -CVE-2010-1804 - RESERVED +CVE-2010-1804 (Unspecified vulnerability in the network bridge functionality on the ...) + TODO: check CVE-2010-1805 (Untrusted search path vulnerability in Apple Safari 4.x before 4.1.2 ...) TODO: check CVE-2010-1806 (Use-after-free vulnerability in Apple Safari 4.x before 4.1.2 and 5.x ...) @@ -90574,7 +90620,7 @@ CVE-2010-2412 (Unspecified vulnerability in the OLAP component in Oracle Databas CVE-2010-2413 (Unspecified vulnerability in the BI Publisher component in Oracle ...) NOT-FOR-US: oracle fusion_middleware CVE-2010-2414 (Unspecified vulnerability in the (1) Sun Convergence 1 and (2) Sun ...) - TODO: check + NOT-FOR-US: oracle sun_products_suite CVE-2010-2415 (Unspecified vulnerability in the Change Data Capture component in ...) NOT-FOR-US: oracle database_server CVE-2010-2416 (Unspecified vulnerability in the Oracle E-Business Intelligence ...) @@ -90883,12 +90929,12 @@ CVE-2010-2567 (The RPC client implementation in Microsoft Windows XP SP2 and SP3 NOT-FOR-US: microsoft windows_xp CVE-2010-2568 (Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 ...) NOT-FOR-US: microsoft windows_xp -CVE-2010-2569 - RESERVED -CVE-2010-2570 - RESERVED -CVE-2010-2571 - RESERVED +CVE-2010-2569 (pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher ...) + TODO: check +CVE-2010-2570 (Heap-based buffer overflow in pubconv.dll (aka the Publisher Converter ...) + NOT-FOR-US: microsoft publisher +CVE-2010-2571 (Array index error in pubconv.dll (aka the Publisher Converter DLL) in ...) + NOT-FOR-US: microsoft publisher CVE-2010-2572 (Buffer overflow in Microsoft PowerPoint 2002 SP3 and 2003 SP3 allows ...) NOT-FOR-US: microsoft powerpoint CVE-2010-2573 (Integer underflow in Microsoft PowerPoint 2002 SP3 and 2003 SP3, ...) @@ -90903,8 +90949,8 @@ CVE-2010-2577 (Multiple SQL injection vulnerabilities in Pligg before 1.1.1 allo NOT-FOR-US: pligg CVE-2010-2578 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) NOT-FOR-US: realnetworks realplayer_sp -CVE-2010-2579 - RESERVED +CVE-2010-2579 (The cook codec in RealNetworks RealPlayer 11.0 through 11.1, ...) + NOT-FOR-US: realnetworks realplayer_sp CVE-2010-2580 (The SMTP service (MESMTPC.exe) in MailEnable 3.x and 4.25 does not ...) NOT-FOR-US: mailenable CVE-2010-2581 (dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows remote ...) @@ -90925,8 +90971,8 @@ CVE-2010-2588 RESERVED CVE-2010-2589 RESERVED -CVE-2010-2590 - RESERVED +CVE-2010-2590 (Heap-based buffer overflow in the ...) + NOT-FOR-US: sap crystal_reports CVE-2010-2591 RESERVED CVE-2010-2592 @@ -90943,18 +90989,18 @@ CVE-2010-2597 (The TIFFVStripSize function in tif_strip.c in LibTIFF 3.9.0 and 3 TODO: check CVE-2010-2598 (LibTIFF in Red Hat Enterprise Linux (RHEL) 3 on x86_64 platforms, as ...) TODO: check -CVE-2010-2599 - RESERVED +CVE-2010-2599 (Unspecified vulnerability in Research In Motion (RIM) BlackBerry ...) + NOT-FOR-US: rim blackberry_software CVE-2010-2600 (Untrusted search path vulnerability in BlackBerry Desktop Software ...) NOT-FOR-US: rim blackberry_desktop_software CVE-2010-2601 (Multiple buffer overflows in the PDF distiller in the Attachment ...) - TODO: check -CVE-2010-2602 - RESERVED -CVE-2010-2603 - RESERVED -CVE-2010-2604 - RESERVED + NOT-FOR-US: rim blackberry_professional_software +CVE-2010-2602 (Multiple buffer overflows in the PDF distiller component in the ...) + NOT-FOR-US: rim blackberry_enterprise_server +CVE-2010-2603 (RIM BlackBerry Desktop Software 4.7 through 6.0 for PC, and 1.0 for ...) + NOT-FOR-US: rim blackberry_desktop_software +CVE-2010-2604 (Multiple buffer overflows in the PDF Distiller in the BlackBerry ...) + NOT-FOR-US: rim blackberry_enterprise_server_express CVE-2010-2605 RESERVED CVE-2010-2606 @@ -91009,8 +91055,8 @@ CVE-2010-2630 (The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly TODO: check CVE-2010-2631 (LibTIFF 3.9.0 ignores tags in certain situations during the first ...) TODO: check -CVE-2010-2632 - RESERVED +CVE-2010-2632 (Unspecified vulnerability in the FTP Server in Oracle Solaris 8, 9, ...) + NOT-FOR-US: sunos CVE-2010-2633 (Unspecified vulnerability in EMC Disk Library (EDL) before 3.2.7, ...) NOT-FOR-US: emc disk_library CVE-2010-2634 (RSA enVision before 3.7 SP1 allows remote authenticated users to cause ...) @@ -91025,16 +91071,16 @@ CVE-2010-2638 (Unspecified vulnerability in IBM WebSphere MQ 7.0 before 7.0.1.5 NOT-FOR-US: ibm websphere_mq CVE-2010-2639 (IBM WebSphere Commerce Enterprise 7.0 before 7.0.0.2 allows remote ...) NOT-FOR-US: ibm websphere_commerce -CVE-2010-2640 - RESERVED -CVE-2010-2641 - RESERVED -CVE-2010-2642 - RESERVED -CVE-2010-2643 - RESERVED -CVE-2010-2644 - RESERVED +CVE-2010-2640 (Array index error in the PK font parser in the dvi-backend component ...) + TODO: check +CVE-2010-2641 (Array index error in the VF font parser in the dvi-backend component ...) + TODO: check +CVE-2010-2642 (Heap-based buffer overflow in the AFM font parser in the dvi-backend ...) + TODO: check +CVE-2010-2643 (Integer overflow in the TFM font parser in the dvi-backend component ...) + TODO: check +CVE-2010-2644 (IBM WebSphere Service Registry and Repository (WSRR) 7.0.0 before FP1 ...) + NOT-FOR-US: ibm websphere_service_registry_and_repository CVE-2010-2645 (Unspecified vulnerability in Google Chrome before 5.0.375.99, when ...) TODO: check CVE-2010-2646 (Google Chrome before 5.0.375.99 does not properly isolate sandboxed ...) @@ -91229,8 +91275,8 @@ CVE-2010-2740 (The OpenType Font (OTF) format driver in Microsoft Windows XP SP2 NOT-FOR-US: microsoft windows_xp CVE-2010-2741 (The OpenType Font (OTF) format driver in Microsoft Windows XP SP2 and ...) NOT-FOR-US: microsoft windows_xp -CVE-2010-2742 - RESERVED +CVE-2010-2742 (The Netlogon RPC Service in Microsoft Windows Server 2003 SP2 and ...) + TODO: check CVE-2010-2743 RESERVED CVE-2010-2744 (The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows ...) @@ -91740,12 +91786,12 @@ CVE-2010-2995 (The SigComp Universal Decompressor Virtual Machine (UDVM) in Wire TODO: check CVE-2010-2996 (Array index error in RealNetworks RealPlayer 11.0 through 11.1 on ...) NOT-FOR-US: realnetworks realplayer -CVE-2010-2997 - RESERVED +CVE-2010-2997 (Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through ...) + TODO: check CVE-2010-2998 (Array index error in RealNetworks RealPlayer 11.0 through 11.1 and ...) NOT-FOR-US: realnetworks realplayer_sp -CVE-2010-2999 - RESERVED +CVE-2010-2999 (Integer overflow in RealNetworks RealPlayer 11.0 through 11.1, ...) + TODO: check CVE-2010-3000 (Multiple integer overflows in the ParseKnownType function in ...) NOT-FOR-US: realnetworks realplayer_sp CVE-2010-3001 (Unspecified vulnerability in an ActiveX control in the Internet ...) @@ -91919,8 +91965,8 @@ CVE-2010-3084 (Buffer overflow in the niu_get_ethtool_tcam_all function in ...) TODO: check CVE-2010-3085 (The network-play implementation in Mednafen before 0.8.D might allow ...) TODO: check -CVE-2010-3086 - RESERVED +CVE-2010-3086 (include/asm-x86/futex.h in the Linux kernel before 2.6.25 does not ...) + TODO: check CVE-2010-3087 (LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote ...) TODO: check CVE-2010-3088 (The notify function in pidgin-knotify.c in the pidgin-knotify plugin ...) @@ -92035,13 +92081,13 @@ CVE-2010-3142 (Untrusted search path vulnerability in Microsoft Office PowerPoin NOT-FOR-US: microsoft powerpoint CVE-2010-3143 (Untrusted search path vulnerability in Microsoft Windows Contacts ...) NOT-FOR-US: microsoft windows -CVE-2010-3144 (Untrusted search path vulnerability in Microsoft Internet Connection ...) +CVE-2010-3144 (Untrusted search path vulnerability in the Internet Connection Signup ...) NOT-FOR-US: microsoft windows -CVE-2010-3145 (Untrusted search path vulnerability in the Microsoft Vista BitLocker ...) +CVE-2010-3145 (Untrusted search path vulnerability in the BitLocker Drive Encryption ...) NOT-FOR-US: microsoft windows_vista CVE-2010-3146 (Untrusted search path vulnerability in Microsoft Office Groove 2007 ...) NOT-FOR-US: microsoft groove -CVE-2010-3147 (Untrusted search path vulnerability in Microsoft Address Book ...) +CVE-2010-3147 (Untrusted search path vulnerability in wab.exe 6.00.2900.5512 in ...) NOT-FOR-US: microsoft outlook_express CVE-2010-3148 (Untrusted search path vulnerability in Microsoft Visio 2003 allows ...) NOT-FOR-US: microsoft visio @@ -92113,7 +92159,7 @@ CVE-2010-3181 (Untrusted search path vulnerability in Mozilla Firefox before 3.5 TODO: check CVE-2010-3182 (A certain application-launch script in Mozilla Firefox before 3.5.14 ...) TODO: check -CVE-2010-3183 (The LookupGetterOrSetter function in Mozilla Firefox before 3.5.14 and ...) +CVE-2010-3183 (The LookupGetterOrSetter function in js3250.dll in Mozilla Firefox ...) TODO: check CVE-2010-3184 RESERVED @@ -92149,8 +92195,8 @@ CVE-2010-3199 (Untrusted search path vulnerability in TortoiseSVN 1.6.10, Build NOT-FOR-US: windows only CVE-2010-3200 (MSO.dll in Microsoft Word 2003 SP3 11.8326.11.8324 allows remote ...) NOT-FOR-US: microsoft word -CVE-2010-3201 - RESERVED +CVE-2010-3201 (Cross-site scripting (XSS) vulnerability in NetWin Surgemail before ...) + TODO: check CVE-2010-3202 (Cross-site scripting (XSS) vulnerability in Flock Browser 3.0.0.3989 ...) NOT-FOR-US: flock CVE-2010-3203 (Directory traversal vulnerability in the PicSell (com_picsell) ...) @@ -92181,7 +92227,7 @@ CVE-2010-3215 (Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly h NOT-FOR-US: microsoft word CVE-2010-3216 (Microsoft Word 2002 SP3 and Office 2004 for Mac allow remote attackers ...) NOT-FOR-US: microsoft word -CVE-2010-3217 (Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary ...) +CVE-2010-3217 (Double free vulnerability in Microsoft Word 2002 SP3 allows remote ...) NOT-FOR-US: microsoft word CVE-2010-3218 (Heap-based buffer overflow in Microsoft Word 2002 SP3 allows remote ...) NOT-FOR-US: microsoft word @@ -92283,8 +92329,8 @@ CVE-2010-3266 (Multiple cross-site scripting (XSS) vulnerabilities in BugTracker NOT-FOR-US: ifdefined bugtracker net CVE-2010-3267 (Multiple SQL injection vulnerabilities in BugTracker.NET before 3.4.5 ...) NOT-FOR-US: ifdefined bugtracker net -CVE-2010-3268 - RESERVED +CVE-2010-3268 (The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in ...) + TODO: check CVE-2010-3269 RESERVED CVE-2010-3270 @@ -92370,8 +92416,8 @@ CVE-2010-3309 RESERVED CVE-2010-3310 (Multiple integer signedness errors in net/rose/af_rose.c in the Linux ...) TODO: check -CVE-2010-3311 - RESERVED +CVE-2010-3311 (Integer overflow in base/ftstream.c in libXft (aka the X FreeType ...) + TODO: check CVE-2010-3312 (Epiphany 2.28 and 2.29, when WebKit and LibSoup are used, ...) TODO: check CVE-2010-3313 (phpgwapi/js/fckeditor/editor/dialog/fck_spellerpages/spellerpages/serverscripts/spellchecker.php ...) @@ -92424,28 +92470,28 @@ CVE-2010-3336 (Microsoft Office XP SP3, Office 2004 and 2008 for Mac, Office for NOT-FOR-US: microsoft open_xml_file_format_converter CVE-2010-3337 (Untrusted search path vulnerability in Microsoft Office 2007 SP2 and ...) NOT-FOR-US: microsoft office -CVE-2010-3338 - RESERVED +CVE-2010-3338 (The Windows Task Scheduler in Microsoft Windows Vista SP1 and SP2, ...) + TODO: check CVE-2010-3339 RESERVED -CVE-2010-3340 - RESERVED +CVE-2010-3340 (Microsoft Internet Explorer 6 and 7 does not properly handle objects ...) + TODO: check CVE-2010-3341 RESERVED -CVE-2010-3342 - RESERVED -CVE-2010-3343 - RESERVED +CVE-2010-3342 (Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of ...) + TODO: check +CVE-2010-3343 (Microsoft Internet Explorer 6 does not properly handle objects in ...) + TODO: check CVE-2010-3344 RESERVED -CVE-2010-3345 - RESERVED -CVE-2010-3346 - RESERVED +CVE-2010-3345 (Microsoft Internet Explorer 8 does not properly handle objects in ...) + TODO: check +CVE-2010-3346 (Microsoft Internet Explorer 6, 7, and 8 does not properly handle ...) + TODO: check CVE-2010-3347 RESERVED -CVE-2010-3348 - RESERVED +CVE-2010-3348 (Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of ...) + TODO: check CVE-2010-3349 (Ardour 2.8.11 places a zero-length directory name in the ...) TODO: check CVE-2010-3350 (bareFTP 0.3.4 places a zero-length directory name in the ...) @@ -92639,16 +92685,16 @@ CVE-2010-3442 (Multiple integer overflows in the snd_ctl_new function in ...) TODO: check CVE-2010-3443 RESERVED -CVE-2010-3444 - RESERVED +CVE-2010-3444 (Buffer overflow in the log2vis_utf8 function in pyfribidi.c in GNU ...) + TODO: check CVE-2010-3445 (Stack consumption vulnerability in the dissect_ber_unknown function in ...) TODO: check CVE-2010-3446 RESERVED CVE-2010-3447 RESERVED -CVE-2010-3448 - RESERVED +CVE-2010-3448 (drivers/platform/x86/thinkpad_acpi.c in the Linux kernel before 2.6.34 ...) + TODO: check CVE-2010-3449 (Cross-site request forgery (CSRF) vulnerability in Redback before ...) NOT-FOR-US: codehaus redback CVE-2010-3450 @@ -92761,8 +92807,8 @@ CVE-2010-3503 (Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris al NOT-FOR-US: oracle solaris CVE-2010-3504 (Unspecified vulnerability in the Oracle Applications Technology Stack ...) NOT-FOR-US: oracle e business_suite -CVE-2010-3505 - RESERVED +CVE-2010-3505 (Unspecified vulnerability in the Agile Core component in Oracle Supply ...) + TODO: check CVE-2010-3506 (Unspecified vulnerability in the Oracle Explorer (Sun Explorer) ...) NOT-FOR-US: oracle sun_products_suite CVE-2010-3507 (Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local ...) @@ -92771,8 +92817,8 @@ CVE-2010-3508 (Unspecified vulnerability in Oracle Solaris 10 allows local users NOT-FOR-US: oracle solaris CVE-2010-3509 (Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote ...) NOT-FOR-US: oracle solaris -CVE-2010-3510 - RESERVED +CVE-2010-3510 (Unspecified vulnerability in the Oracle WebLogic Server component in ...) + TODO: check CVE-2010-3511 (Unspecified vulnerability in Oracle OpenSolaris allows local users to ...) NOT-FOR-US: oracle opensolaris CVE-2010-3512 (Unspecified vulnerability in the Oracle iPlanet Web Server (Sun Java ...) @@ -92923,36 +92969,36 @@ CVE-2010-3584 (Unspecified vulnerability in the Oracle VM component in Oracle VM NOT-FOR-US: oracle vm CVE-2010-3585 (Unspecified vulnerability in the OracleVM component in Oracle VM 2.2.1 ...) NOT-FOR-US: oracle vm -CVE-2010-3586 - RESERVED -CVE-2010-3587 - RESERVED -CVE-2010-3588 - RESERVED -CVE-2010-3589 - RESERVED -CVE-2010-3590 - RESERVED -CVE-2010-3591 - RESERVED -CVE-2010-3592 - RESERVED -CVE-2010-3593 - RESERVED -CVE-2010-3594 - RESERVED -CVE-2010-3595 - RESERVED -CVE-2010-3596 - RESERVED -CVE-2010-3597 - RESERVED -CVE-2010-3598 - RESERVED -CVE-2010-3599 - RESERVED -CVE-2010-3600 - RESERVED +CVE-2010-3586 (Unspecified vulnerability in Oracle Solaris 9 allows local users to ...) + TODO: check +CVE-2010-3587 (Unspecified vulnerability in the Oracle Common Applications component ...) + TODO: check +CVE-2010-3588 (Unspecified vulnerability in the Oracle Discoverer component in Oracle ...) + TODO: check +CVE-2010-3589 (Unspecified vulnerability in the Oracle Application Object Library ...) + TODO: check +CVE-2010-3590 (Unspecified vulnerability in the Oracle Spatial component in Oracle ...) + TODO: check +CVE-2010-3591 (Unspecified vulnerability in the Oracle Document Capture component in ...) + TODO: check +CVE-2010-3592 (Unspecified vulnerability in the Oracle Document Capture component in ...) + TODO: check +CVE-2010-3593 (Unspecified vulnerability in the Health Sciences - Oracle Argus Safety ...) + TODO: check +CVE-2010-3594 (Unspecified vulnerability in the Real User Experience Insight ...) + TODO: check +CVE-2010-3595 (Unspecified vulnerability in the Oracle Document Capture component in ...) + TODO: check +CVE-2010-3596 (Unspecified vulnerability in the mod_ssl component in Oracle Secure ...) + TODO: check +CVE-2010-3597 (Unspecified vulnerability in the Oracle Outside In Technology ...) + TODO: check +CVE-2010-3598 (Unspecified vulnerability in the Oracle Document Capture component in ...) + TODO: check +CVE-2010-3599 (Unspecified vulnerability in the Oracle Document Capture component in ...) + TODO: check +CVE-2010-3600 (Unspecified vulnerability in the Client System Analyzer component in ...) + TODO: check CVE-2010-3601 (SQL injection vulnerability in index.php in ibPhotohost 1.1.2 allows ...) NOT-FOR-US: invisionpower ibphotohost CVE-2010-3602 (Cross-site scripting (XSS) vulnerability in ProfileView.aspx in ...) @@ -92983,8 +93029,8 @@ CVE-2010-3614 (named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4 TODO: check CVE-2010-3615 (named in ISC BIND 9.7.2-P2 does not check all intended locations for ...) TODO: check -CVE-2010-3616 - RESERVED +CVE-2010-3616 (ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover ...) + TODO: check CVE-2010-3617 RESERVED CVE-2010-3618 (PGP Desktop 10.0.x before 10.0.3 SP2 and 10.1.0 before 10.1.0 SP1 does ...) @@ -93103,22 +93149,22 @@ CVE-2010-3674 RESERVED CVE-2010-3675 RESERVED -CVE-2010-3676 - RESERVED -CVE-2010-3677 - RESERVED -CVE-2010-3678 - RESERVED -CVE-2010-3679 - RESERVED -CVE-2010-3680 - RESERVED -CVE-2010-3681 - RESERVED -CVE-2010-3682 - RESERVED -CVE-2010-3683 - RESERVED +CVE-2010-3676 (storage/innobase/dict/dict0crea.c in mysqld in Oracle MySQL 5.1 before ...) + TODO: check +CVE-2010-3677 (Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote ...) + TODO: check +CVE-2010-3678 (Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to ...) + TODO: check +CVE-2010-3679 (Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to ...) + TODO: check +CVE-2010-3680 (Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to ...) + TODO: check +CVE-2010-3681 (Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote ...) + TODO: check +CVE-2010-3682 (Oracle MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote ...) + TODO: check +CVE-2010-3683 (Oracle MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet ...) + TODO: check CVE-2010-3684 (The FTP authentication module in Synology Disk Station 2.x logs ...) NOT-FOR-US: Synology Disk Station CVE-2010-3685 (The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x ...) @@ -93167,8 +93213,8 @@ CVE-2010-3706 (plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 an TODO: check CVE-2010-3707 (plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and ...) TODO: check -CVE-2010-3708 - RESERVED +CVE-2010-3708 (The serialization implementation in JBoss Drools in Red Hat JBoss ...) + TODO: check CVE-2010-3709 (The ZipArchive::getArchiveComment function in PHP 5.2.x through 5.2.14 ...) TODO: check CVE-2010-3710 (Stack consumption vulnerability in the filter_var function in PHP ...) @@ -93417,22 +93463,22 @@ CVE-2010-3831 (Photos in Apple iOS before 4.2 enables support for HTTP Basic ... TODO: check CVE-2010-3832 (Heap-based buffer overflow in the GSM mobility management ...) TODO: check -CVE-2010-3833 - RESERVED -CVE-2010-3834 - RESERVED -CVE-2010-3835 - RESERVED -CVE-2010-3836 - RESERVED -CVE-2010-3837 - RESERVED -CVE-2010-3838 - RESERVED -CVE-2010-3839 - RESERVED -CVE-2010-3840 - RESERVED +CVE-2010-3833 (MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 does ...) + TODO: check +CVE-2010-3834 (Unspecified vulnerability in MySQL 5.0 before 5.0.92, 5.1 before ...) + TODO: check +CVE-2010-3835 (MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote ...) + TODO: check +CVE-2010-3836 (MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 ...) + TODO: check +CVE-2010-3837 (MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 ...) + TODO: check +CVE-2010-3838 (MySQL 5.0 before 5.0.92, 5.1 before 5.1.51, and 5.5 before 5.5.6 ...) + TODO: check +CVE-2010-3839 (MySQL 5.1 before 5.1.51 and 5.5 before 5.5.6 allows remote ...) + TODO: check +CVE-2010-3840 (The Gis_line_string::init_from_wkb function in sql/spatial.cc in MySQL ...) + TODO: check CVE-2010-3841 (Multiple cross-site scripting (XSS) vulnerabilities in lib/TWiki.pm in ...) TODO: check CVE-2010-3842 (Absolute path traversal vulnerability in curl 7.20.0 through 7.21.1, ...) @@ -93445,14 +93491,14 @@ CVE-2010-3845 RESERVED CVE-2010-3846 (Array index error in the apply_rcs_change function in rcs.c in CVS ...) TODO: check -CVE-2010-3847 - RESERVED -CVE-2010-3848 - RESERVED -CVE-2010-3849 - RESERVED -CVE-2010-3850 - RESERVED +CVE-2010-3847 (elf/dl-load.c in ld.so in the GNU C Library (aka glibc or libc6) ...) + TODO: check +CVE-2010-3848 (Stack-based buffer overflow in the econet_sendmsg function in ...) + TODO: check +CVE-2010-3849 (The econet_sendmsg function in net/econet/af_econet.c in the Linux ...) + TODO: check +CVE-2010-3850 (The ec_dev_ioctl function in net/econet/af_econet.c in the Linux ...) + TODO: check CVE-2010-3851 (libguestfs before 1.5.23, as used in virt-v2v, virt-inspector 1.5.3 ...) NOT-FOR-US: libguestfs CVE-2010-3852 (The default configuration of Luci 0.22.4 and earlier in Red Hat Conga ...) @@ -93463,26 +93509,26 @@ CVE-2010-3854 RESERVED CVE-2010-3855 (Buffer overflow in the ft_var_readpackedpoints function in ...) TODO: check -CVE-2010-3856 - RESERVED +CVE-2010-3856 (ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and ...) + TODO: check CVE-2010-3857 RESERVED CVE-2010-3858 (The setup_arg_pages function in fs/exec.c in the Linux kernel before ...) TODO: check -CVE-2010-3859 - RESERVED +CVE-2010-3859 (Multiple integer signedness errors in the TIPC implementation in the ...) + TODO: check CVE-2010-3860 (IcedTea before 1.9.2, as based on OpenJDK 6, declares multiple ...) TODO: check CVE-2010-3861 (The ethtool_get_rxnfc function in net/core/ethtool.c in the Linux ...) TODO: check -CVE-2010-3862 - RESERVED +CVE-2010-3862 (The ...) + TODO: check CVE-2010-3863 (Apache Shiro before 1.1.0, and JSecurity 0.9.x, does not canonicalize ...) NOT-FOR-US: shiro CVE-2010-3864 (Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f through ...) TODO: check -CVE-2010-3865 - RESERVED +CVE-2010-3865 (Integer overflow in the rds_rdma_pages function in net/rds/rdma.c in ...) + TODO: check CVE-2010-3866 REJECTED CVE-2010-3867 (Multiple directory traversal vulnerabilities in the mod_site_misc ...) @@ -93497,24 +93543,24 @@ CVE-2010-3871 (Cross-site scripting (XSS) vulnerability in ...) NOT-FOR-US: mahara CVE-2010-3872 (The apr_status_t fcgid_header_bucket_read function in fcgid_bucket.c ...) TODO: check -CVE-2010-3873 - RESERVED -CVE-2010-3874 - RESERVED -CVE-2010-3875 - RESERVED -CVE-2010-3876 - RESERVED -CVE-2010-3877 - RESERVED -CVE-2010-3878 - RESERVED +CVE-2010-3873 (The X.25 implementation in the Linux kernel before 2.6.36.2 does not ...) + TODO: check +CVE-2010-3874 (Heap-based buffer overflow in the bcm_connect function in ...) + TODO: check +CVE-2010-3875 (The ax25_getname function in net/ax25/af_ax25.c in the Linux kernel ...) + TODO: check +CVE-2010-3876 (net/packet/af_packet.c in the Linux kernel before 2.6.37-rc2 does not ...) + TODO: check +CVE-2010-3877 (The get_name function in net/tipc/socket.c in the Linux kernel before ...) + TODO: check +CVE-2010-3878 (Cross-site request forgery (CSRF) vulnerability in the JMX Console in ...) + TODO: check CVE-2010-3879 RESERVED CVE-2010-3880 (net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not ...) TODO: check -CVE-2010-3881 - RESERVED +CVE-2010-3881 (arch/x86/kvm/x86.c in the Linux kernel before 2.6.36.2 does not ...) + TODO: check CVE-2010-3882 (Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple ...) NOT-FOR-US: cmsmadesimple cms_made_simple CVE-2010-3883 (Cross-site request forgery (CSRF) vulnerability in the Change Group ...) @@ -93562,12 +93608,12 @@ CVE-2010-3903 (Unspecified vulnerability in OpenConnect before 2.23 allows remot NOT-FOR-US: infradead openconnect CVE-2010-3904 (The rds_page_copy_user function in net/rds/page.c in the Reliable ...) TODO: check -CVE-2010-3905 - RESERVED -CVE-2010-3906 - RESERVED -CVE-2010-3907 - RESERVED +CVE-2010-3905 (The password reset feature in the administrator interface for ...) + TODO: check +CVE-2010-3906 (Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier ...) + TODO: check +CVE-2010-3907 (Multiple integer overflows in real.c in the Real demuxer plugin in ...) + TODO: check CVE-2010-3908 RESERVED CVE-2010-3909 (Incomplete blacklist vulnerability in config.template.php in vtiger ...) @@ -93576,8 +93622,8 @@ CVE-2010-3910 (Multiple directory traversal vulnerabilities in the ...) NOT-FOR-US: vtiger_crm CVE-2010-3911 (Multiple cross-site scripting (XSS) vulnerabilities in vtiger CRM ...) NOT-FOR-US: vtiger_crm -CVE-2010-3912 - RESERVED +CVE-2010-3912 (The supportconfig script in supportutils in SUSE Linux Enterprise 11 ...) + TODO: check CVE-2010-3913 (CRLF injection vulnerability in TransWARE Active! mail 6 build ...) NOT-FOR-US: transware active _mail CVE-2010-3914 (Untrusted search path vulnerability in VIM Development Group GVim ...) @@ -93598,24 +93644,24 @@ CVE-2010-3921 (Cross-site scripting (XSS) vulnerability in Movable Type 4.x befo NOT-FOR-US: sixapart movabletype CVE-2010-3922 (SQL injection vulnerability in Movable Type 4.x before 4.35 and 5.x ...) NOT-FOR-US: sixapart movabletype -CVE-2010-3923 - RESERVED -CVE-2010-3924 - RESERVED -CVE-2010-3925 - RESERVED -CVE-2010-3926 - RESERVED +CVE-2010-3923 (Untrusted search path vulnerability in AttacheCase before 2.70 allows ...) + TODO: check +CVE-2010-3924 (SQL injection vulnerability in Aimluck Aipo before 5.1.0.1 allows ...) + TODO: check +CVE-2010-3925 (Contents-Mall before 15 does not properly handle passwords, which ...) + TODO: check +CVE-2010-3926 (Multiple cross-site scripting (XSS) vulnerabilities in Shop.cgi in ...) + TODO: check CVE-2010-3927 RESERVED -CVE-2010-3928 - RESERVED +CVE-2010-3928 (Ruby Version Manager (RVM) before 1.2.1 writes file contents to a ...) + TODO: check CVE-2010-3929 RESERVED CVE-2010-3930 RESERVED -CVE-2010-3931 - RESERVED +CVE-2010-3931 (Cross-site scripting (XSS) vulnerability in multiple Rocomotion ...) + TODO: check CVE-2010-3932 RESERVED CVE-2010-3933 (Ruby on Rails 2.3.9 and 3.0.0 does not properly handle nested ...) @@ -93626,80 +93672,80 @@ CVE-2010-3935 RESERVED CVE-2010-3936 (Cross-site scripting (XSS) vulnerability in Signurl.asp in Microsoft ...) NOT-FOR-US: microsoft forefront_unified_access_gateway -CVE-2010-3937 - RESERVED +CVE-2010-3937 (Microsoft Exchange Server 2007 SP2 on the x64 platform allows remote ...) + TODO: check CVE-2010-3938 RESERVED -CVE-2010-3939 - RESERVED -CVE-2010-3940 - RESERVED -CVE-2010-3941 - RESERVED -CVE-2010-3942 - RESERVED -CVE-2010-3943 - RESERVED -CVE-2010-3944 - RESERVED -CVE-2010-3945 - RESERVED -CVE-2010-3946 - RESERVED -CVE-2010-3947 - RESERVED +CVE-2010-3939 (Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft ...) + TODO: check +CVE-2010-3940 (Double free vulnerability in win32k.sys in the kernel-mode drivers in ...) + TODO: check +CVE-2010-3941 (Double free vulnerability in win32k.sys in the kernel-mode drivers in ...) + TODO: check +CVE-2010-3942 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...) + TODO: check +CVE-2010-3943 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...) + TODO: check +CVE-2010-3944 (win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 ...) + TODO: check +CVE-2010-3945 (Buffer overflow in the CGM image converter in the graphics filters in ...) + TODO: check +CVE-2010-3946 (Integer overflow in the PICT image converter in the graphics filters ...) + TODO: check +CVE-2010-3947 (Heap-based buffer overflow in the TIFF image converter in the graphics ...) + TODO: check CVE-2010-3948 RESERVED -CVE-2010-3949 - RESERVED -CVE-2010-3950 - RESERVED -CVE-2010-3951 - RESERVED -CVE-2010-3952 - RESERVED +CVE-2010-3949 (Buffer overflow in the TIFF image converter in the graphics filters in ...) + TODO: check +CVE-2010-3950 (The TIFF image converter in the graphics filters in Microsoft Office ...) + TODO: check +CVE-2010-3951 (Buffer overflow in the FlashPix image converter in the graphics ...) + TODO: check +CVE-2010-3952 (The FlashPix image converter in the graphics filters in Microsoft ...) + TODO: check CVE-2010-3953 RESERVED -CVE-2010-3954 - RESERVED -CVE-2010-3955 - RESERVED -CVE-2010-3956 - RESERVED -CVE-2010-3957 - RESERVED +CVE-2010-3954 (Microsoft Publisher 2002 SP3, 2003 SP3, and 2010 allows remote ...) + TODO: check +CVE-2010-3955 (pubconv.dll (aka the Publisher Converter DLL) in Microsoft Publisher ...) + TODO: check +CVE-2010-3956 (The OpenType Font (OTF) driver in Microsoft Windows XP SP2 and SP3, ...) + TODO: check +CVE-2010-3957 (Double free vulnerability in the OpenType Font (OTF) driver in ...) + TODO: check CVE-2010-3958 RESERVED -CVE-2010-3959 - RESERVED -CVE-2010-3960 - RESERVED -CVE-2010-3961 - RESERVED +CVE-2010-3959 (The OpenType Font (OTF) driver in Microsoft Windows XP SP2 and SP3, ...) + TODO: check +CVE-2010-3960 (Hyper-V in Microsoft Windows Server 2008 Gold, SP2, and R2 allows ...) + TODO: check +CVE-2010-3961 (The Consent User Interface (UI) in Microsoft Windows Vista SP1 and ...) + TODO: check CVE-2010-3962 (Use-after-free vulnerability in Microsoft Internet Explorer 6, 7, and ...) NOT-FOR-US: microsoft ie -CVE-2010-3963 - RESERVED -CVE-2010-3964 - RESERVED -CVE-2010-3965 - RESERVED -CVE-2010-3966 - RESERVED -CVE-2010-3967 - RESERVED +CVE-2010-3963 (Buffer overflow in the Routing and Remote Access NDProxy component in ...) + TODO: check +CVE-2010-3964 (Unrestricted file upload vulnerability in the Document Conversions ...) + TODO: check +CVE-2010-3965 (Untrusted search path vulnerability in Windows Media Encoder 9 on ...) + TODO: check +CVE-2010-3966 (Untrusted search path vulnerability in Microsoft Windows Server 2008 ...) + TODO: check +CVE-2010-3967 (Untrusted search path vulnerability in Microsoft Windows Movie Maker ...) + TODO: check CVE-2010-3968 RESERVED CVE-2010-3969 RESERVED -CVE-2010-3970 - RESERVED -CVE-2010-3971 - RESERVED -CVE-2010-3972 - RESERVED -CVE-2010-3973 - RESERVED +CVE-2010-3970 (Stack-based buffer overflow in the CreateSizedDIBSECTION function in ...) + TODO: check +CVE-2010-3971 (Use-after-free vulnerability in the CSharedStyleSheet::Notify function ...) + TODO: check +CVE-2010-3972 (The TELNET_STREAM_CONTEXT::OnSendData function in the FTP protocol ...) + TODO: check +CVE-2010-3973 (The WBEMSingleView.ocx ActiveX control 1.50.1131.0 in Microsoft WMI ...) + TODO: check CVE-2010-3974 RESERVED CVE-2010-3975 (Untrusted search path vulnerability in Adobe Flash Player 9 allows ...) @@ -93720,8 +93766,8 @@ CVE-2010-3982 (SAP BusinessObjects Enterprise XI 3.2 allows remote attackers to NOT-FOR-US: sap businessobjects CVE-2010-3983 (CmcApp in SAP BusinessObjects Enterprise XI 3.2 allows remote ...) NOT-FOR-US: sap businessobjects -CVE-2010-3984 - RESERVED +CVE-2010-3984 (Buffer overflow in mng_core_com.dll in CA XOsoft Replication r12.0 SP1 ...) + TODO: check CVE-2010-3985 (Cross-site scripting (XSS) vulnerability in HP Operations ...) NOT-FOR-US: hp operations_orchestration CVE-2010-3986 (Unspecified vulnerability in HP Virtual Connect Enterprise Manager ...) @@ -93778,8 +93824,8 @@ CVE-2010-4011 (Dovecot in Apple Mac OS X 10.6.5 10H574 does not properly manage NOT-FOR-US: apple mac_os_x_server CVE-2010-4012 (Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later ...) TODO: check -CVE-2010-4013 - RESERVED +CVE-2010-4013 (Format string vulnerability in PackageKit in Apple Mac OS X 10.6.x ...) + TODO: check CVE-2010-4014 RESERVED CVE-2010-4015 @@ -93854,10 +93900,10 @@ CVE-2010-4049 (Opera before 10.63 allows remote attackers to cause a denial of . TODO: check CVE-2010-4050 (Opera before 10.63 allows remote attackers to cause a denial of ...) TODO: check -CVE-2010-4051 - RESERVED -CVE-2010-4052 - RESERVED +CVE-2010-4051 (The regcomp implementation in the GNU C Library (aka glibc or libc6) ...) + TODO: check +CVE-2010-4052 (Stack consumption vulnerability in the regcomp implementation in the ...) + TODO: check CVE-2010-4053 (Stack-based buffer overflow in an unspecified logging function in ...) NOT-FOR-US: ibm informix_dynamic_server CVE-2010-4054 (The gs_type2_interpret function in Ghostscript allows remote attackers ...) @@ -93894,8 +93940,8 @@ CVE-2010-4069 (Stack-based buffer overflow in IBM Informix Dynamic Server (IDS) NOT-FOR-US: ibm informix_dynamic_server CVE-2010-4070 (Integer overflow in librpc.dll in portmap.exe (aka the ISM Portmapper ...) NOT-FOR-US: ibm informix_dynamic_server -CVE-2010-4071 - RESERVED +CVE-2010-4071 (Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS ...) + TODO: check CVE-2010-4072 (The copy_shmid_to_user function in ipc/shm.c in the Linux kernel ...) TODO: check CVE-2010-4073 (The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not ...) @@ -93972,20 +94018,20 @@ CVE-2010-4108 (HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support NOT-FOR-US: hp ux CVE-2010-4109 (Cross-site scripting (XSS) vulnerability in the Contacts Application ...) NOT-FOR-US: hp palm_webos -CVE-2010-4110 - RESERVED -CVE-2010-4111 - RESERVED -CVE-2010-4112 - RESERVED -CVE-2010-4113 - RESERVED -CVE-2010-4114 - RESERVED -CVE-2010-4115 - RESERVED -CVE-2010-4116 - RESERVED +CVE-2010-4110 (Unspecified vulnerability in HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the ...) + TODO: check +CVE-2010-4111 (Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics ...) + TODO: check +CVE-2010-4112 (HP Insight Management Agents before 8.6 allows remote attackers to ...) + TODO: check +CVE-2010-4113 (Stack-based buffer overflow in HP Power Manager (HPPM) before 4.3.2 ...) + TODO: check +CVE-2010-4114 (Cross-site scripting (XSS) vulnerability in HP Discovery & Dependency ...) + TODO: check +CVE-2010-4115 (HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, ...) + TODO: check +CVE-2010-4116 (Unspecified vulnerability in HP StorageWorks Storage Mirroring 5.x ...) + TODO: check CVE-2010-4117 RESERVED CVE-2010-4118 @@ -94068,24 +94114,24 @@ CVE-2010-4156 (The mb_strcut function in Libmbfl 1.1.0, as used in PHP 5.3.x thr NOT-FOR-US: libmbfl CVE-2010-4157 (Integer overflow in the ioc_general function in drivers/scsi/gdth.c in ...) TODO: check -CVE-2010-4158 - RESERVED +CVE-2010-4158 (The sk_run_filter function in net/core/filter.c in the Linux kernel ...) + TODO: check CVE-2010-4159 (Untrusted search path vulnerability in metadata/loader.c in Mono 2.8 ...) TODO: check -CVE-2010-4160 - RESERVED -CVE-2010-4161 - RESERVED -CVE-2010-4162 - RESERVED -CVE-2010-4163 - RESERVED -CVE-2010-4164 - RESERVED +CVE-2010-4160 (Multiple integer overflows in the (1) pppol2tp_sendmsg function in ...) + TODO: check +CVE-2010-4161 (The udp_queue_rcv_skb function in net/ipv4/udp.c in a certain Red Hat ...) + TODO: check +CVE-2010-4162 (Multiple integer overflows in fs/bio.c in the Linux kernel before ...) + TODO: check +CVE-2010-4163 (The blk_rq_map_user_iov function in block/blk-map.c in the Linux ...) + TODO: check +CVE-2010-4164 (Multiple integer underflows in the x25_parse_facilities function in ...) + TODO: check CVE-2010-4165 (The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel ...) TODO: check -CVE-2010-4166 - RESERVED +CVE-2010-4166 (Multiple SQL injection vulnerabilities in Joomla! 1.5.x before 1.5.22 ...) + TODO: check CVE-2010-4167 (Untrusted search path vulnerability in configure.c in ImageMagick ...) TODO: check CVE-2010-4168 (Multiple use-after-free vulnerabilities in OpenTTD 1.0.x before 1.0.5 ...) @@ -94102,8 +94148,8 @@ CVE-2010-4173 (The default configuration of libsdp.conf in libsdp 1.1.104 and ea NOT-FOR-US: openfabrics libsdp CVE-2010-4174 RESERVED -CVE-2010-4175 - RESERVED +CVE-2010-4175 (Integer overflow in the rds_cmsg_rdma_args function (net/rds/rdma.c) ...) + TODO: check CVE-2010-4176 (plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 ...) TODO: check CVE-2010-4177 @@ -94203,8 +94249,8 @@ CVE-2010-4223 RESERVED CVE-2010-4224 RESERVED -CVE-2010-4225 - RESERVED +CVE-2010-4225 (Unspecified vulnerability in the mod_mono module for XSP in Mono 2.8.x ...) + TODO: check CVE-2010-4226 RESERVED CVE-2010-4227 @@ -94237,8 +94283,8 @@ CVE-2010-4240 RESERVED CVE-2010-4241 RESERVED -CVE-2010-4242 - RESERVED +CVE-2010-4242 (The hci_uart_tty_open function in the HCI UART driver ...) + TODO: check CVE-2010-4243 RESERVED CVE-2010-4244 @@ -94247,8 +94293,8 @@ CVE-2010-4245 RESERVED CVE-2010-4246 (Multiple cross-site scripting (XSS) vulnerabilities in graph.php in ...) NOT-FOR-US: bsdperimeter pfsense -CVE-2010-4247 - RESERVED +CVE-2010-4247 (The do_block_io_op function in (1) drivers/xen/blkback/blkback.c and ...) + TODO: check CVE-2010-4248 (Race condition in the __exit_signal function in kernel/exit.c in the ...) TODO: check CVE-2010-4249 (The wait_for_unix_gc function in net/unix/garbage.c in the Linux ...) @@ -94269,26 +94315,26 @@ CVE-2010-4256 RESERVED CVE-2010-4257 (SQL injection vulnerability in the do_trackbacks function in ...) TODO: check -CVE-2010-4258 - RESERVED +CVE-2010-4258 (The do_exit function in kernel/exit.c in the Linux kernel before ...) + TODO: check CVE-2010-4259 (Stack-based buffer overflow in FontForge 20100501 allows remote ...) TODO: check CVE-2010-4260 (Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV ...) TODO: check CVE-2010-4261 (Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ...) TODO: check -CVE-2010-4262 - RESERVED -CVE-2010-4263 - RESERVED +CVE-2010-4262 (Stack-based buffer overflow in Xfig 3.2.4 and 3.2.5 allows remote ...) + TODO: check +CVE-2010-4263 (The igb_receive_skb function in drivers/net/igb/igb_main.c in the ...) + TODO: check CVE-2010-4264 RESERVED -CVE-2010-4265 - RESERVED +CVE-2010-4265 (The ...) + TODO: check CVE-2010-4266 RESERVED -CVE-2010-4267 - RESERVED +CVE-2010-4267 (Stack-based buffer overflow in the hpmud_get_pml function in ...) + TODO: check CVE-2010-4268 (SQL injection vulnerability in the Pulse Infotech Flip Wall ...) NOT-FOR-US: pulseinfotech com_flipwall CVE-2010-4269 (SQL injection vulnerability in managechat.php in Collabtive 0.65 ...) @@ -94303,12 +94349,12 @@ CVE-2010-4273 (SQL injection vulnerability in imoveis.php in DescargarVista ACC NOT-FOR-US: accimoveis descargarvista_acc_imoveis CVE-2010-4274 (reset_diragent_keys in the Common agent in IBM Systems Director 6.2.0 ...) NOT-FOR-US: ibm director_agent -CVE-2010-4275 - RESERVED -CVE-2010-4276 - RESERVED -CVE-2010-4277 - RESERVED +CVE-2010-4275 (Multiple cross-site scripting (XSS) vulnerabilities in Radius Manager ...) + TODO: check +CVE-2010-4276 (Cross-site scripting (XSS) vulnerability in the lz_tracking_set_sessid ...) + TODO: check +CVE-2010-4277 (Cross-site scripting (XSS) vulnerability in lembedded-video.php in the ...) + TODO: check CVE-2010-4278 (operation/agentes/networkmap.php in Pandora FMS before 3.1.1 allows ...) NOT-FOR-US: pandora CVE-2010-4279 (The default configuration of Pandora FMS 3.1 and earlier specifies an ...) @@ -94395,14 +94441,14 @@ CVE-2010-4319 RESERVED CVE-2010-4320 RESERVED -CVE-2010-4321 - RESERVED -CVE-2010-4322 - RESERVED +CVE-2010-4321 (Stack-based buffer overflow in an ActiveX control in ienipp.ocx in ...) + TODO: check +CVE-2010-4322 (Cross-site scripting (XSS) vulnerability in gwtTeaming.rpc in Novell ...) + TODO: check CVE-2010-4323 RESERVED -CVE-2010-4324 - RESERVED +CVE-2010-4324 (Cross-site scripting (XSS) vulnerability in the Approval Form in the ...) + TODO: check CVE-2010-4325 RESERVED CVE-2010-4326 @@ -94415,50 +94461,50 @@ CVE-2010-4329 (Cross-site scripting (XSS) vulnerability in the PMA_linkOrButton TODO: check CVE-2010-4330 (Directory traversal vulnerability in includes/controller.php in Pulse ...) NOT-FOR-US: pulsecms pulse_cms -CVE-2010-4331 - RESERVED -CVE-2010-4332 - RESERVED -CVE-2010-4333 - RESERVED -CVE-2010-4334 - RESERVED -CVE-2010-4335 - RESERVED -CVE-2010-4336 - RESERVED -CVE-2010-4337 - RESERVED -CVE-2010-4338 - RESERVED -CVE-2010-4339 - RESERVED +CVE-2010-4331 (Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel 2.2.0 ...) + TODO: check +CVE-2010-4332 (Pointter PHP Content Management System 1.0 allows remote attackers to ...) + TODO: check +CVE-2010-4333 (Pointter PHP Micro-Blogging Social Network 1.8 allows remote attackers ...) + TODO: check +CVE-2010-4334 (IO::Socket::SSL Perl module 1.35, when verify_mode is not VERIFY_NONE, ...) + TODO: check +CVE-2010-4335 (The _validatePost function in libs/controller/components/security.php ...) + TODO: check +CVE-2010-4336 (The cu_rrd_create_file function (src/utils_rrdcreate.c) in collectd ...) + TODO: check +CVE-2010-4337 (The configure script in gnash 0.8.8 allows local users to overwrite ...) + TODO: check +CVE-2010-4338 (ocrodjvu 0.4.6-1 on Debian GNU/Linux, when using Cuneiform as the OCR ...) + TODO: check +CVE-2010-4339 (Cross-site scripting (XSS) vulnerability in Hypermail 2.2.0 allows ...) + TODO: check CVE-2010-4340 - RESERVED + TODO: check CVE-2010-4341 RESERVED -CVE-2010-4342 - RESERVED -CVE-2010-4343 - RESERVED -CVE-2010-4344 - RESERVED -CVE-2010-4345 - RESERVED -CVE-2010-4346 - RESERVED -CVE-2010-4347 - RESERVED -CVE-2010-4348 - RESERVED -CVE-2010-4349 - RESERVED -CVE-2010-4350 - RESERVED -CVE-2010-4351 - RESERVED -CVE-2010-4352 - RESERVED +CVE-2010-4342 (The aun_incoming function in net/econet/af_econet.c in the Linux ...) + TODO: check +CVE-2010-4343 (drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not ...) + TODO: check +CVE-2010-4344 (Heap-based buffer overflow in the string_vformat function in string.c ...) + TODO: check +CVE-2010-4345 (Exim 4.72 and earlier allows local users to gain privileges by ...) + TODO: check +CVE-2010-4346 (The install_special_mapping function in mm/mmap.c in the Linux kernel ...) + TODO: check +CVE-2010-4347 (The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 ...) + TODO: check +CVE-2010-4348 (Cross-site scripting (XSS) vulnerability in ...) + TODO: check +CVE-2010-4349 (admin/upgrade_unattended.php in MantisBT before 1.2.4 allows remote ...) + TODO: check +CVE-2010-4350 (Directory traversal vulnerability in admin/upgrade_unattended.php in ...) + TODO: check +CVE-2010-4351 (The JNLP SecurityManager in IcedTea (IcedTea.so) 1.7 before 1.7.7, 1.8 ...) + TODO: check +CVE-2010-4352 (Stack consumption vulnerability in D-Bus (aka DBus) before 1.4.1 ...) + TODO: check CVE-2010-4353 RESERVED CVE-2010-4354 (The remote-access IPSec VPN implementation on Cisco Adaptive Security ...) @@ -94503,52 +94549,52 @@ CVE-2010-4373 (The in_mp4 plugin in Winamp before 5.6 allows remote attackers to NOT-FOR-US: nullsoft winamp CVE-2010-4374 (The in_mkv plugin in Winamp before 5.6 allows remote attackers to ...) NOT-FOR-US: nullsoft winamp -CVE-2010-4375 - RESERVED -CVE-2010-4376 - RESERVED -CVE-2010-4377 - RESERVED -CVE-2010-4378 - RESERVED -CVE-2010-4379 - RESERVED -CVE-2010-4380 - RESERVED -CVE-2010-4381 - RESERVED -CVE-2010-4382 - RESERVED -CVE-2010-4383 - RESERVED -CVE-2010-4384 - RESERVED -CVE-2010-4385 - RESERVED -CVE-2010-4386 - RESERVED -CVE-2010-4387 - RESERVED -CVE-2010-4388 - RESERVED -CVE-2010-4389 - RESERVED -CVE-2010-4390 - RESERVED -CVE-2010-4391 - RESERVED -CVE-2010-4392 - RESERVED +CVE-2010-4375 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4376 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4377 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4378 (The drv2.dll (aka RV20 decompression) module in RealNetworks ...) + TODO: check +CVE-2010-4379 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4380 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4381 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4382 (Multiple heap-based buffer overflows in RealNetworks RealPlayer 11.0 ...) + TODO: check +CVE-2010-4383 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4384 (Array index error in RealNetworks RealPlayer 11.0 through 11.1, ...) + TODO: check +CVE-2010-4385 (Integer overflow in RealNetworks RealPlayer 11.0 through 11.1, ...) + TODO: check +CVE-2010-4386 (RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through ...) + TODO: check +CVE-2010-4387 (The RealAudio codec in RealNetworks RealPlayer 11.0 through 11.1, ...) + TODO: check +CVE-2010-4388 (The (1) Upsell.htm, (2) Main.html, and (3) Custsupport.html components ...) + TODO: check +CVE-2010-4389 (Heap-based buffer overflow in the cook codec in RealNetworks ...) + TODO: check +CVE-2010-4390 (Multiple heap-based buffer overflows in RealNetworks RealPlayer 11.0 ...) + TODO: check +CVE-2010-4391 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4392 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check CVE-2010-4393 RESERVED -CVE-2010-4394 - RESERVED -CVE-2010-4395 - RESERVED -CVE-2010-4396 - RESERVED -CVE-2010-4397 - RESERVED +CVE-2010-4394 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4395 (Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through ...) + TODO: check +CVE-2010-4396 (Cross-zone scripting vulnerability in the HandleAction method in a ...) + TODO: check +CVE-2010-4397 (Integer overflow in the pnen3260.dll module in RealNetworks RealPlayer ...) + TODO: check CVE-2010-4398 (Stack-based buffer overflow in the RtlQueryRegistryValues function in ...) NOT-FOR-US: microsoft windows_xp CVE-2010-4399 (Directory traversal vulnerability in languages.inc.php in DynPG CMS ...) @@ -94579,110 +94625,110 @@ CVE-2010-4411 (Unspecified vulnerability in CGI.pm 3.50 and earlier allows remot TODO: check CVE-2010-4412 (Multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta ...) NOT-FOR-US: bsdperimeter pfsense -CVE-2010-4413 - RESERVED -CVE-2010-4414 - RESERVED -CVE-2010-4415 - RESERVED -CVE-2010-4416 - RESERVED -CVE-2010-4417 - RESERVED -CVE-2010-4418 - RESERVED -CVE-2010-4419 - RESERVED -CVE-2010-4420 - RESERVED -CVE-2010-4421 - RESERVED +CVE-2010-4413 (Unspecified vulnerability in the Scheduler Agent component in Oracle ...) + TODO: check +CVE-2010-4414 (Unspecified vulnerability in Oracle VM VirtualBox 4.0 allows local ...) + TODO: check +CVE-2010-4415 (Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local ...) + TODO: check +CVE-2010-4416 (Unspecified vulnerability in the Oracle GoldenGate Veridata component ...) + TODO: check +CVE-2010-4417 (Unspecified vulnerability in the Services for Beehive component in ...) + TODO: check +CVE-2010-4418 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) + TODO: check +CVE-2010-4419 (Unspecified vulnerability in the PeopleSoft Enterprise CRM component ...) + TODO: check +CVE-2010-4420 (Unspecified vulnerability in the Database Vault component in Oracle ...) + TODO: check +CVE-2010-4421 (Unspecified vulnerability in the Database Vault component in Oracle ...) + TODO: check CVE-2010-4422 RESERVED -CVE-2010-4423 - RESERVED -CVE-2010-4424 - RESERVED -CVE-2010-4425 - RESERVED -CVE-2010-4426 - RESERVED -CVE-2010-4427 - RESERVED -CVE-2010-4428 - RESERVED -CVE-2010-4429 - RESERVED -CVE-2010-4430 - RESERVED -CVE-2010-4431 - RESERVED -CVE-2010-4432 - RESERVED -CVE-2010-4433 - RESERVED -CVE-2010-4434 - RESERVED -CVE-2010-4435 - RESERVED -CVE-2010-4436 - RESERVED -CVE-2010-4437 - RESERVED -CVE-2010-4438 - RESERVED -CVE-2010-4439 - RESERVED -CVE-2010-4440 - RESERVED -CVE-2010-4441 - RESERVED -CVE-2010-4442 - RESERVED -CVE-2010-4443 - RESERVED -CVE-2010-4444 - RESERVED -CVE-2010-4445 - RESERVED -CVE-2010-4446 - RESERVED +CVE-2010-4423 (Unspecified vulnerability in the Cluster Verify Utility component in ...) + TODO: check +CVE-2010-4424 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) + TODO: check +CVE-2010-4425 (Unspecified vulnerability in the Oracle BI Publisher component in ...) + TODO: check +CVE-2010-4426 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) + TODO: check +CVE-2010-4427 (Unspecified vulnerability in the Oracle BI Publisher component in ...) + TODO: check +CVE-2010-4428 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2010-4429 (Unspecified vulnerability in the Agile Core component in Oracle Supply ...) + TODO: check +CVE-2010-4430 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2010-4431 (Unspecified vulnerability in Oracle Sun Java System Portal Server 7.1 ...) + TODO: check +CVE-2010-4432 (Unspecified vulnerability in the Oracle Transportation Manager ...) + TODO: check +CVE-2010-4433 (Unspecified vulnerability in Oracle Solaris 10 allows remote attackers ...) + TODO: check +CVE-2010-4434 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) + TODO: check +CVE-2010-4435 (Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote ...) + TODO: check +CVE-2010-4436 (Unspecified vulnerability in Oracle Sun Management Center (SunMC) 4.0 ...) + TODO: check +CVE-2010-4437 (Unspecified vulnerability in the Oracle WebLogic Server component in ...) + TODO: check +CVE-2010-4438 (Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, ...) + TODO: check +CVE-2010-4439 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2010-4440 (Unspecified vulnerability in Oracle 10 and 11 Express allows local ...) + TODO: check +CVE-2010-4441 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2010-4442 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows ...) + TODO: check +CVE-2010-4443 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows ...) + TODO: check +CVE-2010-4444 (Unspecified vulnerability in Oracle Sun Java System Access Manager and ...) + TODO: check +CVE-2010-4445 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2010-4446 (Unspecified vulnerability in Oracle Solaris 11 Express allows local ...) + TODO: check CVE-2010-4447 RESERVED CVE-2010-4448 RESERVED -CVE-2010-4449 - RESERVED +CVE-2010-4449 (Unspecified vulnerability in the Audit Vault component in Oracle Audit ...) + TODO: check CVE-2010-4450 RESERVED CVE-2010-4451 RESERVED CVE-2010-4452 RESERVED -CVE-2010-4453 - RESERVED +CVE-2010-4453 (Unspecified vulnerability in the Oracle WebLogic Server component in ...) + TODO: check CVE-2010-4454 RESERVED -CVE-2010-4455 - RESERVED -CVE-2010-4456 - RESERVED -CVE-2010-4457 - RESERVED -CVE-2010-4458 - RESERVED -CVE-2010-4459 - RESERVED -CVE-2010-4460 - RESERVED -CVE-2010-4461 - RESERVED +CVE-2010-4455 (Unspecified vulnerability in the Oracle HTTP Server component in ...) + TODO: check +CVE-2010-4456 (Unspecified vulnerability in Oracle Sun Java System Communications ...) + TODO: check +CVE-2010-4457 (Unspecified vulnerability in Oracle Solaris 11 Express allows remote ...) + TODO: check +CVE-2010-4458 (Unspecified vulnerability in Oracle Solaris 11 Express allows local ...) + TODO: check +CVE-2010-4459 (Unspecified vulnerability in Oracle Solaris 11 Express allows local ...) + TODO: check +CVE-2010-4460 (Unspecified vulnerability in Oracle Solaris 10 allows local users to ...) + TODO: check +CVE-2010-4461 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check CVE-2010-4462 RESERVED CVE-2010-4463 RESERVED -CVE-2010-4464 - RESERVED +CVE-2010-4464 (Unspecified vulnerability in Oracle Sun Convergence 1.0 allows remote ...) + TODO: check CVE-2010-4465 RESERVED CVE-2010-4466 @@ -94713,10 +94759,10 @@ CVE-2010-4478 (OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properl TODO: check CVE-2010-4479 (Unspecified vulnerability in pdf.c in libclamav in ClamAV before ...) TODO: check -CVE-2010-4480 (error.php in PhpMyAdmin 3.3.8.1 and earlier allows remote attackers to ...) +CVE-2010-4480 (error.php in PhpMyAdmin 3.3.8.1, and other versions before ...) + TODO: check +CVE-2010-4481 (phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass ...) TODO: check -CVE-2010-4481 - RESERVED CVE-2010-4482 (Unspecified vulnerability in Google Chrome before 8.0.552.215 allows ...) TODO: check CVE-2010-4483 (Google Chrome before 8.0.552.215 does not properly restrict read ...) @@ -94741,21 +94787,22 @@ CVE-2010-4492 (Use-after-free vulnerability in Google Chrome before 8.0.552.215 TODO: check CVE-2010-4493 (Use-after-free vulnerability in Google Chrome before 8.0.552.215 ...) TODO: check -CVE-2010-4494 (Double free vulnerability in Google Chrome before 8.0.552.215 allows ...) +CVE-2010-4494 (Double free vulnerability in libxml2 2.7.8 and other versions, as used ...) + TODO: check +CVE-2010-4495 (Unspecified vulnerability in the ActiveMatrix Runtime component in ...) + TODO: check +CVE-2010-4496 (Multiple SQL injection vulnerabilities in Collaborative Information ...) + TODO: check +CVE-2010-4497 (Cross-site scripting (XSS) vulnerability in Collaborative Information ...) + TODO: check +CVE-2010-4498 (Unspecified vulnerability in Collaborative Information Manager server, ...) + TODO: check +CVE-2010-4499 (Session fixation vulnerability in Collaborative Information Manager ...) TODO: check -CVE-2010-4495 - RESERVED -CVE-2010-4496 - RESERVED -CVE-2010-4497 - RESERVED -CVE-2010-4498 - RESERVED -CVE-2010-4499 - RESERVED CVE-2010-4500 (Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY ...) NOT-FOR-US: mrcgiguy freeticket -CVE-2010-4501 (IO::Socket::SSL Perl module 1.35, when verify_mode is not VERIFY_NONE, ...) +CVE-2010-4501 + REJECTED TODO: check CVE-2010-4502 (Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite ...) NOT-FOR-US: ca internet_security_suite_plus_2010 @@ -94767,8 +94814,8 @@ CVE-2010-4505 (Multiple SQL injection vulnerabilities in login.php in Injader 2. NOT-FOR-US: injader CVE-2010-4506 RESERVED -CVE-2010-4507 - RESERVED +CVE-2010-4507 (Multiple cross-site request forgery (CSRF) vulnerabilities on the ...) + TODO: check CVE-2010-4508 (The WebSockets implementation in Mozilla Firefox 4 through 4.0 Beta 7 ...) TODO: check CVE-2010-4509 (Multiple unspecified vulnerabilities in Movable Type 4.x before 4.35 ...) @@ -94792,76 +94839,396 @@ CVE-2010-4517 (SQL injection vulnerability in the JExtensions JE Auto (com_jeaut NOT-FOR-US: harmistechnology com_jeauto CVE-2010-4518 (Cross-site scripting (XSS) vulnerability in ...) NOT-FOR-US: wobeo wp safe search -CVE-2010-4519 +CVE-2010-4519 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...) + TODO: check +CVE-2010-4520 (Multiple cross-site scripting (XSS) vulnerabilities in the Views ...) + TODO: check +CVE-2010-4521 (Cross-site scripting (XSS) vulnerability in the Views module 6.x ...) + TODO: check +CVE-2010-4522 (Multiple cross-site scripting (XSS) vulnerabilities in MyBB (aka ...) + TODO: check +CVE-2010-4523 (Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 ...) + TODO: check +CVE-2010-4524 (Cross-site scripting (XSS) vulnerability in lib/mhtxthtml.pl in ...) + TODO: check +CVE-2010-4525 (Linux kernel 2.6.33 and 2.6.34.y does not initialize the ...) + TODO: check +CVE-2010-4526 (Race condition in the sctp_icmp_proto_unreachable function in ...) + TODO: check +CVE-2010-4527 (The load_mixer_volumes function in sound/oss/soundcard.c in the OSS ...) + TODO: check +CVE-2010-4528 (directconn.c in the MSN protocol plugin in libpurple 2.7.6 through ...) + TODO: check +CVE-2010-4529 (Integer underflow in the irda_getsockopt function in ...) + TODO: check +CVE-2010-4530 (Signedness error in ccid_serial.c in libccid in the USB Chip/Smart ...) + TODO: check +CVE-2010-4531 (Stack-based buffer overflow in the ATRDecodeAtr function in the ...) + TODO: check +CVE-2010-4532 RESERVED -CVE-2010-4520 +CVE-2010-4533 RESERVED -CVE-2010-4521 +CVE-2010-4534 (The administrative interface in django.contrib.admin in Django before ...) + TODO: check +CVE-2010-4535 (The password reset functionality in django.contrib.auth in Django ...) + TODO: check +CVE-2010-4536 (Multiple cross-site scripting (XSS) vulnerabilities in KSES, as used ...) + TODO: check +CVE-2010-4537 (Unspecified vulnerability in CrawlTrack before 3.2.7, when a public ...) + TODO: check +CVE-2010-4538 (Buffer overflow in the sect_enttec_dmx_da function in ...) + TODO: check +CVE-2010-4539 (The walk function in repos.c in the mod_dav_svn module for the Apache ...) + TODO: check +CVE-2010-4540 (Stack-based buffer overflow in the load_preset_response function in ...) + TODO: check +CVE-2010-4541 (Stack-based buffer overflow in the loadit function in ...) + TODO: check +CVE-2010-4542 (Stack-based buffer overflow in the gfig_read_parameter_gimp_rgb ...) + TODO: check +CVE-2010-4543 (Heap-based buffer overflow in the read_channel_data function in ...) + TODO: check +CVE-2010-4544 (Cross-site scripting (XSS) vulnerability in the servlet in IBM Lotus ...) + TODO: check +CVE-2010-4545 (IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated ...) + TODO: check +CVE-2010-4546 (IBM Lotus Notes Traveler before 8.5.1.2 does not reject an attachment ...) + TODO: check +CVE-2010-4547 (IBM Lotus Notes Traveler before 8.5.1.3, when a multidomain ...) + TODO: check +CVE-2010-4548 (IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated ...) + TODO: check +CVE-2010-4549 (IBM Lotus Notes Traveler before 8.5.1.3 on the Nokia s60 device ...) + TODO: check +CVE-2010-4550 (IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to ...) + TODO: check +CVE-2010-4551 (IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated ...) + TODO: check +CVE-2010-4552 (Memory leak in IBM Lotus Notes Traveler before 8.5.1.1 allows remote ...) + TODO: check +CVE-2010-4553 (An unspecified Domino API in IBM Lotus Notes Traveler before 8.5.1.1 ...) + TODO: check +CVE-2010-4554 RESERVED -CVE-2010-4522 +CVE-2010-4555 RESERVED -CVE-2010-4523 +CVE-2010-4556 (Stack-based buffer overflow in the SapThemeRepository ActiveX control ...) + TODO: check +CVE-2010-4557 (Buffer overflow in the lm_tcp service in Invensys Wonderware InBatch ...) + TODO: check +CVE-2010-4558 (phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and ...) + TODO: check +CVE-2010-4559 RESERVED -CVE-2010-4524 +CVE-2010-4560 RESERVED -CVE-2010-4525 +CVE-2010-4561 RESERVED -CVE-2010-4526 +CVE-2010-4562 RESERVED -CVE-2010-4527 +CVE-2010-4563 RESERVED -CVE-2010-4528 +CVE-2010-4564 RESERVED -CVE-2010-4529 +CVE-2010-4565 (The bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) ...) + TODO: check +CVE-2010-4566 (Unspecified vulnerability in the NT4 authentication component in ...) + TODO: check +CVE-2010-4567 RESERVED -CVE-2010-4530 +CVE-2010-4568 RESERVED -CVE-2010-4531 +CVE-2010-4569 RESERVED -CVE-2010-4532 +CVE-2010-4570 RESERVED -CVE-2010-4533 +CVE-2010-4571 RESERVED -CVE-2010-4534 +CVE-2010-4572 RESERVED -CVE-2010-4535 +CVE-2010-4573 (The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is ...) + TODO: check +CVE-2010-4574 (The Pickle::Pickle function in base/pickle.cc in Google Chrome before ...) + TODO: check +CVE-2010-4575 (The ThemeInstalledInfoBarDelegate::Observe function in ...) + TODO: check +CVE-2010-4576 (browser/worker_host/message_port_dispatcher.cc in Google Chrome before ...) + TODO: check +CVE-2010-4577 (Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 do ...) + TODO: check +CVE-2010-4578 (Google Chrome before 8.0.552.224 and Chrome OS before 8.0.552.343 do ...) + TODO: check +CVE-2010-4579 (Opera before 11.00 does not properly constrain dialogs to appear on ...) + TODO: check +CVE-2010-4580 (Opera before 11.00 does not clear WAP WML form fields after manual ...) + TODO: check +CVE-2010-4581 (Unspecified vulnerability in Opera before 11.00 has unknown impact and ...) + TODO: check +CVE-2010-4582 (Opera before 11.00 does not properly handle security policies during ...) + TODO: check +CVE-2010-4583 (Opera before 11.00, when Opera Turbo is enabled, does not display a ...) + TODO: check +CVE-2010-4584 (Opera before 11.00, when Opera Turbo is used, does not properly ...) + TODO: check +CVE-2010-4585 (Unspecified vulnerability in the auto-update functionality in Opera ...) + TODO: check +CVE-2010-4586 (The default configuration of Opera before 11.00 enables WebSockets ...) + TODO: check +CVE-2010-4587 (Opera before 11.00 on Windows does not properly implement the Insecure ...) + TODO: check +CVE-2010-4588 (The WBEMSingleView.ocx ActiveX control 1.50.1131.0 in Microsoft WMI ...) + TODO: check +CVE-2010-4589 (Cross-site scripting (XSS) vulnerability in IBM ENOVIA 6 allows remote ...) + TODO: check +CVE-2010-4590 (Cross-site scripting (XSS) vulnerability in HTTP Access Services ...) + TODO: check +CVE-2010-4591 (The Connection Manager in IBM Lotus Mobile Connect (LMC) before 6.1.4, ...) + TODO: check +CVE-2010-4592 (The Mobile Network Connections functionality in the Connection Manager ...) + TODO: check +CVE-2010-4593 (The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 does ...) + TODO: check +CVE-2010-4594 (The Connection Manager in IBM Lotus Mobile Connect before 6.1.4, when ...) + TODO: check +CVE-2010-4595 (The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 ...) + TODO: check +CVE-2010-4596 RESERVED -CVE-2010-4536 +CVE-2010-4597 (Stack-based buffer overflow in the save method in the ...) + TODO: check +CVE-2010-4598 (Directory traversal vulnerability in Ecava IntegraXor 3.6.4000.0 and ...) + TODO: check +CVE-2010-4599 (Untrusted search path vulnerability in Ecava IntegraXor 3.6.4000.0 ...) + TODO: check +CVE-2010-4600 (Dojo Toolkit, as used in the Web client in IBM Rational ClearQuest ...) + TODO: check +CVE-2010-4601 (Multiple unspecified vulnerabilities in IBM Rational ClearQuest 7.0.x ...) + TODO: check +CVE-2010-4602 (The Web client in IBM Rational ClearQuest 7.1.1.x before 7.1.1.4 and ...) + TODO: check +CVE-2010-4603 (IBM Rational ClearQuest 7.0.x before 7.0.1.11, 7.1.1.x before 7.1.1.4, ...) + TODO: check +CVE-2010-4604 (Stack-based buffer overflow in the GeneratePassword function in dsmtca ...) + TODO: check +CVE-2010-4605 (Unspecified vulnerability in the backup-archive client in IBM Tivoli ...) + TODO: check +CVE-2010-4606 (Unspecified vulnerability in the Space Management client in the ...) + TODO: check +CVE-2010-4607 (Multiple cross-site scripting (XSS) vulnerabilities in Habari 0.6.5, ...) + TODO: check +CVE-2010-4608 (Habari 0.6.5 allows remote attackers to obtain sensitive information ...) + TODO: check +CVE-2010-4609 (SQL injection vulnerability in index.php in Html-edit CMS 3.1.8 allows ...) + TODO: check +CVE-2010-4610 (Cross-site scripting (XSS) vulnerability in index.php in Html-edit CMS ...) + TODO: check +CVE-2010-4611 (Html-edit CMS 3.1.8 allows remote attackers to obtain sensitive ...) + TODO: check +CVE-2010-4612 (Multiple SQL injection vulnerabilities in index.php in Hycus CMS ...) + TODO: check +CVE-2010-4613 (Multiple directory traversal vulnerabilities in Hycus CMS 1.0.3 allow ...) + TODO: check +CVE-2010-4614 (SQL injection vulnerability in item.php in Ero Auktion 2010 allows ...) + TODO: check +CVE-2010-4615 (Multiple SQL injection vulnerabilities in Oto Galeri Sistemi 1.0 allow ...) + TODO: check +CVE-2010-4616 (Cross-site scripting (XSS) vulnerability in ...) + TODO: check +CVE-2010-4617 (Directory traversal vulnerability in the JotLoader (com_jotloader) ...) + TODO: check +CVE-2010-4618 (Cross-site scripting (XSS) vulnerability in the Algis Info ...) + TODO: check +CVE-2010-4619 (SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka ...) + TODO: check +CVE-2010-4620 RESERVED -CVE-2010-4537 +CVE-2010-4621 RESERVED -CVE-2010-4538 +CVE-2010-4622 (Directory traversal vulnerability in WebSEAL in IBM Tivoli Access ...) + TODO: check +CVE-2010-4623 (WebSEAL in IBM Tivoli Access Manager for e-business 6.1.1 before ...) + TODO: check +CVE-2010-4624 (MyBB (aka MyBulletinBoard) before 1.4.12 allows remote authenticated ...) + TODO: check +CVE-2010-4625 (MyBB (aka MyBulletinBoard) before 1.4.12 does not properly handle a ...) + TODO: check +CVE-2010-4626 (The my_rand function in functions.php in MyBB (aka MyBulletinBoard) ...) + TODO: check +CVE-2010-4627 (Cross-site request forgery (CSRF) vulnerability in usercp2.php in MyBB ...) + TODO: check +CVE-2010-4628 (member.php in MyBB (aka MyBulletinBoard) before 1.4.12 makes a certain ...) + TODO: check +CVE-2010-4629 (MyBB (aka MyBulletinBoard) before 1.4.12 does not properly restrict ...) + TODO: check +CVE-2010-4630 (Cross-site scripting (XSS) vulnerability in ...) + TODO: check +CVE-2010-4631 (Multiple cross-site scripting (XSS) vulnerabilities in ASPilot Pilot ...) + TODO: check +CVE-2010-4632 (Multiple SQL injection vulnerabilities in ASPilot Pilot Cart 7.3 allow ...) + TODO: check +CVE-2010-4633 (SQL injection vulnerability in cart.php in digiSHOP 2.0.2 allows ...) + TODO: check +CVE-2010-4634 (** DISPUTED ** ...) + TODO: check +CVE-2010-4635 (SQL injection vulnerability in detail.asp in Site2Nite Vacation Rental ...) + TODO: check +CVE-2010-4636 (SQL injection vulnerability in detail.asp in Site2Nite Business ...) + TODO: check +CVE-2010-4637 (Cross-site scripting (XSS) vulnerability in feedlist/handler_image.php ...) + TODO: check +CVE-2010-4638 (SQL injection vulnerability in the submitSurvey function in ...) + TODO: check +CVE-2010-4639 (SQL injection vulnerability in index.php in MySource Matrix allows ...) + TODO: check +CVE-2010-4640 (Multiple cross-site scripting (XSS) vulnerabilities in XWiki Watch 1.0 ...) + TODO: check +CVE-2010-4641 (SQL injection vulnerability in XWiki Enterprise before 2.5 allows ...) + TODO: check +CVE-2010-4642 (Cross-site scripting (XSS) vulnerability in XWiki Enterprise before ...) + TODO: check +CVE-2010-4643 RESERVED -CVE-2010-4539 +CVE-2010-4644 (Multiple memory leaks in rev_hunt.c in Apache Subversion before 1.6.15 ...) + TODO: check +CVE-2010-4645 (strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 ...) + TODO: check +CVE-2010-4646 (Cross-site scripting (XSS) vulnerability in Hastymail2 before 1.01 ...) + TODO: check +CVE-2010-4647 (Multiple cross-site scripting (XSS) vulnerabilities in the Help ...) + TODO: check +CVE-2010-4648 RESERVED -CVE-2010-4540 +CVE-2010-4649 RESERVED -CVE-2010-4541 +CVE-2010-4650 RESERVED -CVE-2010-4542 +CVE-2010-4651 RESERVED -CVE-2010-4543 +CVE-2010-4652 RESERVED -CVE-2011-0001 +CVE-2010-4653 RESERVED -CVE-2011-0002 +CVE-2010-4654 RESERVED -CVE-2011-0003 +CVE-2010-4655 RESERVED -CVE-2011-0004 +CVE-2010-4656 RESERVED -CVE-2011-0005 +CVE-2010-4657 RESERVED -CVE-2011-0006 +CVE-2010-4658 RESERVED -CVE-2011-0007 +CVE-2010-4659 RESERVED -CVE-2011-0008 +CVE-2010-4660 RESERVED -CVE-2011-0009 +CVE-2010-4661 RESERVED -CVE-2011-0010 +CVE-2010-4662 RESERVED +CVE-2010-4663 + RESERVED +CVE-2010-4664 + RESERVED +CVE-2010-4665 + RESERVED +CVE-2010-4666 + RESERVED +CVE-2010-4667 + RESERVED +CVE-2010-4668 (The blk_rq_map_user_iov function in block/blk-map.c in the Linux ...) + TODO: check +CVE-2010-4669 (The Neighbor Discovery (ND) protocol implementation in the IPv6 stack ...) + TODO: check +CVE-2010-4670 (The Neighbor Discovery (ND) protocol implementation in the IPv6 stack ...) + TODO: check +CVE-2010-4671 (The Neighbor Discovery (ND) protocol implementation in the IPv6 stack ...) + TODO: check +CVE-2010-4672 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...) + TODO: check +CVE-2010-4673 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...) + TODO: check +CVE-2010-4674 (Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) ...) + TODO: check +CVE-2010-4675 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...) + TODO: check +CVE-2010-4676 (Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) ...) + TODO: check +CVE-2010-4677 (emWEB on Cisco Adaptive Security Appliances (ASA) 5500 series devices ...) + TODO: check +CVE-2010-4678 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...) + TODO: check +CVE-2010-4679 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...) + TODO: check +CVE-2010-4680 (The WebVPN implementation on Cisco Adaptive Security Appliances (ASA) ...) + TODO: check +CVE-2010-4681 (Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) ...) + TODO: check +CVE-2010-4682 (Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 series ...) + TODO: check +CVE-2010-4683 (Memory leak in Cisco IOS before 15.0(1)XA5 might allow remote ...) + TODO: check +CVE-2010-4684 (Cisco IOS before 15.0(1)XA1, when certain TFTP debugging is enabled, ...) + TODO: check +CVE-2010-4685 (Cisco IOS before 15.0(1)XA1 does not clear the public key cache upon a ...) + TODO: check +CVE-2010-4686 (CallManager Express (CME) on Cisco IOS before 15.0(1)XA1 does not ...) + TODO: check +CVE-2010-4687 (STCAPP (aka the SCCP telephony control application) on Cisco IOS ...) + TODO: check +CVE-2010-4688 (Unspecified vulnerability in the SIP inspection feature on Cisco ...) + TODO: check +CVE-2010-4689 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...) + TODO: check +CVE-2010-4690 (The Mobile User Security (MUS) service on Cisco Adaptive Security ...) + TODO: check +CVE-2010-4691 (Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) ...) + TODO: check +CVE-2010-4692 (Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) ...) + TODO: check +CVE-2010-4693 (Multiple cross-site scripting (XSS) vulnerabilities in Coppermine ...) + TODO: check +CVE-2010-4694 (Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow ...) + TODO: check +CVE-2010-4695 (A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as ...) + TODO: check +CVE-2010-4696 (Multiple SQL injection vulnerabilities in Joomla! 1.5.x before 1.5.22 ...) + TODO: check +CVE-2010-4697 (Use-after-free vulnerability in the Zend engine in PHP before 5.2.15 ...) + TODO: check +CVE-2010-4698 (Stack-based buffer overflow in the GD extension in PHP before 5.2.15 ...) + TODO: check +CVE-2010-4699 (The iconv_mime_decode_headers function in the Iconv extension in PHP ...) + TODO: check +CVE-2010-4700 (The set_magic_quotes_runtime function in PHP 5.3.2 and 5.3.3, when the ...) + TODO: check +CVE-2010-4701 (Heap-based buffer overflow in the CDrawPoly::Serialize function in ...) + TODO: check +CVE-2010-4702 (SQL injection vulnerability in JRadio (com_jradio) component before ...) + TODO: check +CVE-2010-4703 (SQL injection vulnerability in default.asp in HotWebScripts HotWeb ...) + TODO: check +CVE-2011-0001 + RESERVED +CVE-2011-0002 + RESERVED +CVE-2011-0003 (MediaWiki before 1.16.1, when user or site JavaScript or CSS is ...) + TODO: check +CVE-2011-0004 (Multiple cross-site scripting (XSS) vulnerabilities in Piwik before ...) + TODO: check +CVE-2011-0005 (Cross-site scripting (XSS) vulnerability in the com_search module for ...) + TODO: check +CVE-2011-0006 + RESERVED +CVE-2011-0007 (pimd 2.1.5 and possibly earlier versions allows user-assisted local ...) + TODO: check +CVE-2011-0008 (A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on ...) + TODO: check +CVE-2011-0009 + RESERVED +CVE-2011-0010 (check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is ...) + TODO: check CVE-2011-0011 RESERVED CVE-2011-0012 @@ -94870,10 +95237,10 @@ CVE-2011-0013 RESERVED CVE-2011-0014 RESERVED -CVE-2011-0015 - RESERVED -CVE-2011-0016 - RESERVED +CVE-2011-0015 (Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not ...) + TODO: check +CVE-2011-0016 (Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not ...) + TODO: check CVE-2011-0017 RESERVED CVE-2011-0018 @@ -94892,10 +95259,10 @@ CVE-2011-0024 RESERVED CVE-2011-0025 RESERVED -CVE-2011-0026 - RESERVED -CVE-2011-0027 - RESERVED +CVE-2011-0026 (Integer signedness error in the SQLConnectW function in an ODBC API ...) + TODO: check +CVE-2011-0027 (Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2, and Windows ...) + TODO: check CVE-2011-0028 RESERVED CVE-2011-0029 @@ -94932,3 +95299,951 @@ CVE-2011-0044 RESERVED CVE-2011-0045 RESERVED +CVE-2011-0046 + RESERVED +CVE-2011-0047 + RESERVED +CVE-2011-0048 + RESERVED +CVE-2011-0049 + RESERVED +CVE-2011-0050 + RESERVED +CVE-2011-0051 + RESERVED +CVE-2011-0052 + RESERVED +CVE-2011-0053 + RESERVED +CVE-2011-0054 + RESERVED +CVE-2011-0055 + RESERVED +CVE-2011-0056 + RESERVED +CVE-2011-0057 + RESERVED +CVE-2011-0058 + RESERVED +CVE-2011-0059 + RESERVED +CVE-2011-0060 + RESERVED +CVE-2011-0061 + RESERVED +CVE-2011-0062 + RESERVED +CVE-2011-0063 + RESERVED +CVE-2011-0064 + RESERVED +CVE-2011-0065 + RESERVED +CVE-2011-0066 + RESERVED +CVE-2011-0067 + RESERVED +CVE-2011-0068 + RESERVED +CVE-2011-0069 + RESERVED +CVE-2011-0070 + RESERVED +CVE-2011-0071 + RESERVED +CVE-2011-0072 + RESERVED +CVE-2011-0073 + RESERVED +CVE-2011-0074 + RESERVED +CVE-2011-0075 + RESERVED +CVE-2011-0076 + RESERVED +CVE-2011-0077 + RESERVED +CVE-2011-0078 + RESERVED +CVE-2011-0079 + RESERVED +CVE-2011-0080 + RESERVED +CVE-2011-0081 + RESERVED +CVE-2011-0082 + RESERVED +CVE-2011-0083 + RESERVED +CVE-2011-0084 + RESERVED +CVE-2011-0085 + RESERVED +CVE-2011-0086 + RESERVED +CVE-2011-0087 + RESERVED +CVE-2011-0088 + RESERVED +CVE-2011-0089 + RESERVED +CVE-2011-0090 + RESERVED +CVE-2011-0091 + RESERVED +CVE-2011-0092 + RESERVED +CVE-2011-0093 + RESERVED +CVE-2011-0094 + RESERVED +CVE-2011-0095 + RESERVED +CVE-2011-0096 + RESERVED +CVE-2011-0097 + RESERVED +CVE-2011-0098 + RESERVED +CVE-2011-0099 + RESERVED +CVE-2011-0100 + RESERVED +CVE-2011-0101 + RESERVED +CVE-2011-0102 + RESERVED +CVE-2011-0103 + RESERVED +CVE-2011-0104 + RESERVED +CVE-2011-0105 + RESERVED +CVE-2011-0106 + RESERVED +CVE-2011-0107 + RESERVED +CVE-2011-0108 + RESERVED +CVE-2011-0109 + RESERVED +CVE-2011-0110 + RESERVED +CVE-2011-0111 + RESERVED +CVE-2011-0112 + RESERVED +CVE-2011-0113 + RESERVED +CVE-2011-0114 + RESERVED +CVE-2011-0115 + RESERVED +CVE-2011-0116 + RESERVED +CVE-2011-0117 + RESERVED +CVE-2011-0118 + RESERVED +CVE-2011-0119 + RESERVED +CVE-2011-0120 + RESERVED +CVE-2011-0121 + RESERVED +CVE-2011-0122 + RESERVED +CVE-2011-0123 + RESERVED +CVE-2011-0124 + RESERVED +CVE-2011-0125 + RESERVED +CVE-2011-0126 + RESERVED +CVE-2011-0127 + RESERVED +CVE-2011-0128 + RESERVED +CVE-2011-0129 + RESERVED +CVE-2011-0130 + RESERVED +CVE-2011-0131 + RESERVED +CVE-2011-0132 + RESERVED +CVE-2011-0133 + RESERVED +CVE-2011-0134 + RESERVED +CVE-2011-0135 + RESERVED +CVE-2011-0136 + RESERVED +CVE-2011-0137 + RESERVED +CVE-2011-0138 + RESERVED +CVE-2011-0139 + RESERVED +CVE-2011-0140 + RESERVED +CVE-2011-0141 + RESERVED +CVE-2011-0142 + RESERVED +CVE-2011-0143 + RESERVED +CVE-2011-0144 + RESERVED +CVE-2011-0145 + RESERVED +CVE-2011-0146 + RESERVED +CVE-2011-0147 + RESERVED +CVE-2011-0148 + RESERVED +CVE-2011-0149 + RESERVED +CVE-2011-0150 + RESERVED +CVE-2011-0151 + RESERVED +CVE-2011-0152 + RESERVED +CVE-2011-0153 + RESERVED +CVE-2011-0154 + RESERVED +CVE-2011-0155 + RESERVED +CVE-2011-0156 + RESERVED +CVE-2011-0157 + RESERVED +CVE-2011-0158 + RESERVED +CVE-2011-0159 + RESERVED +CVE-2011-0160 + RESERVED +CVE-2011-0161 + RESERVED +CVE-2011-0162 + RESERVED +CVE-2011-0163 + RESERVED +CVE-2011-0164 + RESERVED +CVE-2011-0165 + RESERVED +CVE-2011-0166 + RESERVED +CVE-2011-0167 + RESERVED +CVE-2011-0168 + RESERVED +CVE-2011-0169 + RESERVED +CVE-2011-0170 + RESERVED +CVE-2011-0171 + RESERVED +CVE-2011-0172 + RESERVED +CVE-2011-0173 + RESERVED +CVE-2011-0174 + RESERVED +CVE-2011-0175 + RESERVED +CVE-2011-0176 + RESERVED +CVE-2011-0177 + RESERVED +CVE-2011-0178 + RESERVED +CVE-2011-0179 + RESERVED +CVE-2011-0180 + RESERVED +CVE-2011-0181 + RESERVED +CVE-2011-0182 + RESERVED +CVE-2011-0183 + RESERVED +CVE-2011-0184 + RESERVED +CVE-2011-0185 + RESERVED +CVE-2011-0186 + RESERVED +CVE-2011-0187 + RESERVED +CVE-2011-0188 + RESERVED +CVE-2011-0189 + RESERVED +CVE-2011-0190 + RESERVED +CVE-2011-0191 + RESERVED +CVE-2011-0192 + RESERVED +CVE-2011-0193 + RESERVED +CVE-2011-0194 + RESERVED +CVE-2011-0195 + RESERVED +CVE-2011-0196 + RESERVED +CVE-2011-0197 + RESERVED +CVE-2011-0198 + RESERVED +CVE-2011-0199 + RESERVED +CVE-2011-0200 + RESERVED +CVE-2011-0201 + RESERVED +CVE-2011-0202 + RESERVED +CVE-2011-0203 + RESERVED +CVE-2011-0204 + RESERVED +CVE-2011-0205 + RESERVED +CVE-2011-0206 + RESERVED +CVE-2011-0207 + RESERVED +CVE-2011-0208 + RESERVED +CVE-2011-0209 + RESERVED +CVE-2011-0210 + RESERVED +CVE-2011-0211 + RESERVED +CVE-2011-0212 + RESERVED +CVE-2011-0213 + RESERVED +CVE-2011-0214 + RESERVED +CVE-2011-0215 + RESERVED +CVE-2011-0216 + RESERVED +CVE-2011-0217 + RESERVED +CVE-2011-0218 + RESERVED +CVE-2011-0219 + RESERVED +CVE-2011-0220 + RESERVED +CVE-2011-0221 + RESERVED +CVE-2011-0222 + RESERVED +CVE-2011-0223 + RESERVED +CVE-2011-0224 + RESERVED +CVE-2011-0225 + RESERVED +CVE-2011-0226 + RESERVED +CVE-2011-0227 + RESERVED +CVE-2011-0228 + RESERVED +CVE-2011-0229 + RESERVED +CVE-2011-0230 + RESERVED +CVE-2011-0231 + RESERVED +CVE-2011-0232 + RESERVED +CVE-2011-0233 + RESERVED +CVE-2011-0234 + RESERVED +CVE-2011-0235 + RESERVED +CVE-2011-0236 + RESERVED +CVE-2011-0237 + RESERVED +CVE-2011-0238 + RESERVED +CVE-2011-0239 + RESERVED +CVE-2011-0240 + RESERVED +CVE-2011-0241 + RESERVED +CVE-2011-0242 + RESERVED +CVE-2011-0243 + RESERVED +CVE-2011-0244 + RESERVED +CVE-2011-0245 + RESERVED +CVE-2011-0246 + RESERVED +CVE-2011-0247 + RESERVED +CVE-2011-0248 + RESERVED +CVE-2011-0249 + RESERVED +CVE-2011-0250 + RESERVED +CVE-2011-0251 + RESERVED +CVE-2011-0252 + RESERVED +CVE-2011-0253 + RESERVED +CVE-2011-0254 + RESERVED +CVE-2011-0255 + RESERVED +CVE-2011-0256 + RESERVED +CVE-2011-0257 + RESERVED +CVE-2011-0258 + RESERVED +CVE-2011-0259 + RESERVED +CVE-2011-0260 + RESERVED +CVE-2011-0261 (Unspecified vulnerability in jovgraph.exe in jovgraph in HP OpenView ...) + TODO: check +CVE-2011-0262 (Buffer overflow in the stringToSeconds function in ovutil.dll in ...) + TODO: check +CVE-2011-0263 (Multiple stack-based buffer overflows in ovas.exe in the OVAS service ...) + TODO: check +CVE-2011-0264 (Stack-based buffer overflow in ovutil.dll in HP OpenView Network Node ...) + TODO: check +CVE-2011-0265 (Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node ...) + TODO: check +CVE-2011-0266 (Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node ...) + TODO: check +CVE-2011-0267 (Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network ...) + TODO: check +CVE-2011-0268 (Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node ...) + TODO: check +CVE-2011-0269 (Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node ...) + TODO: check +CVE-2011-0270 (Format string vulnerability in nnmRptConfig.exe in HP OpenView Network ...) + TODO: check +CVE-2011-0271 (The CGI scripts in HP OpenView Network Node Manager (OV NNM) 7.51 and ...) + TODO: check +CVE-2011-0272 (Unspecified vulnerability in HP LoadRunner 9.52 allows remote ...) + TODO: check +CVE-2011-0273 + RESERVED +CVE-2011-0274 + RESERVED +CVE-2011-0275 + RESERVED +CVE-2011-0276 + RESERVED +CVE-2011-0277 + RESERVED +CVE-2011-0278 + RESERVED +CVE-2011-0279 + RESERVED +CVE-2011-0280 + RESERVED +CVE-2011-0281 + RESERVED +CVE-2011-0282 + RESERVED +CVE-2011-0283 + RESERVED +CVE-2011-0284 + RESERVED +CVE-2011-0285 + RESERVED +CVE-2011-0286 + RESERVED +CVE-2011-0287 + RESERVED +CVE-2011-0288 + RESERVED +CVE-2011-0289 + RESERVED +CVE-2011-0290 + RESERVED +CVE-2011-0291 + RESERVED +CVE-2011-0292 + RESERVED +CVE-2011-0293 + RESERVED +CVE-2011-0294 + RESERVED +CVE-2011-0295 + RESERVED +CVE-2011-0296 + RESERVED +CVE-2011-0297 + RESERVED +CVE-2011-0298 + RESERVED +CVE-2011-0299 + RESERVED +CVE-2011-0300 + RESERVED +CVE-2011-0301 + RESERVED +CVE-2011-0302 + RESERVED +CVE-2011-0303 + RESERVED +CVE-2011-0304 + RESERVED +CVE-2011-0305 + RESERVED +CVE-2011-0306 + RESERVED +CVE-2011-0307 + RESERVED +CVE-2011-0308 + RESERVED +CVE-2011-0309 + RESERVED +CVE-2011-0310 (Buffer overflow in IBM WebSphere MQ 7.0 before 7.0.1.4 allows remote ...) + TODO: check +CVE-2011-0311 + RESERVED +CVE-2011-0312 + RESERVED +CVE-2011-0313 + RESERVED +CVE-2011-0314 (Heap-based buffer overflow in IBM WebSphere MQ 6.0 before 6.0.2.11 and ...) + TODO: check +CVE-2011-0315 (Cross-site scripting (XSS) vulnerability in the Servlet Engine / Web ...) + TODO: check +CVE-2011-0316 (The Administrative Console component in IBM WebSphere Application ...) + TODO: check +CVE-2011-0317 + RESERVED +CVE-2011-0318 + RESERVED +CVE-2011-0319 + RESERVED +CVE-2011-0320 + RESERVED +CVE-2011-0321 + RESERVED +CVE-2011-0322 + RESERVED +CVE-2011-0323 + RESERVED +CVE-2011-0324 + RESERVED +CVE-2011-0325 + RESERVED +CVE-2011-0326 + RESERVED +CVE-2011-0327 + RESERVED +CVE-2011-0328 + RESERVED +CVE-2011-0329 + RESERVED +CVE-2011-0330 + RESERVED +CVE-2011-0331 + RESERVED +CVE-2011-0332 + RESERVED +CVE-2011-0333 + RESERVED +CVE-2011-0334 + RESERVED +CVE-2011-0335 + RESERVED +CVE-2011-0336 + RESERVED +CVE-2011-0337 + RESERVED +CVE-2011-0338 + RESERVED +CVE-2011-0339 + RESERVED +CVE-2011-0340 + RESERVED +CVE-2011-0341 + RESERVED +CVE-2011-0342 + RESERVED +CVE-2011-0343 + RESERVED +CVE-2011-0344 + RESERVED +CVE-2011-0345 + RESERVED +CVE-2011-0346 (Use-after-free vulnerability in the ReleaseInterface function in ...) + TODO: check +CVE-2011-0347 (Microsoft Internet Explorer on Windows XP allows remote attackers to ...) + TODO: check +CVE-2011-0348 + RESERVED +CVE-2011-0349 + RESERVED +CVE-2011-0350 + RESERVED +CVE-2011-0351 + RESERVED +CVE-2011-0352 + RESERVED +CVE-2011-0353 + RESERVED +CVE-2011-0354 + RESERVED +CVE-2011-0355 + RESERVED +CVE-2011-0356 + RESERVED +CVE-2011-0357 + RESERVED +CVE-2011-0358 + RESERVED +CVE-2011-0359 + RESERVED +CVE-2011-0360 + RESERVED +CVE-2011-0361 + RESERVED +CVE-2011-0362 + RESERVED +CVE-2011-0363 + RESERVED +CVE-2011-0364 + RESERVED +CVE-2011-0365 + RESERVED +CVE-2011-0366 + RESERVED +CVE-2011-0367 + RESERVED +CVE-2011-0368 + RESERVED +CVE-2011-0369 + RESERVED +CVE-2011-0370 + RESERVED +CVE-2011-0371 + RESERVED +CVE-2011-0372 + RESERVED +CVE-2011-0373 + RESERVED +CVE-2011-0374 + RESERVED +CVE-2011-0375 + RESERVED +CVE-2011-0376 + RESERVED +CVE-2011-0377 + RESERVED +CVE-2011-0378 + RESERVED +CVE-2011-0379 + RESERVED +CVE-2011-0380 + RESERVED +CVE-2011-0381 + RESERVED +CVE-2011-0382 + RESERVED +CVE-2011-0383 + RESERVED +CVE-2011-0384 + RESERVED +CVE-2011-0385 + RESERVED +CVE-2011-0386 + RESERVED +CVE-2011-0387 + RESERVED +CVE-2011-0388 + RESERVED +CVE-2011-0389 + RESERVED +CVE-2011-0390 + RESERVED +CVE-2011-0391 + RESERVED +CVE-2011-0392 + RESERVED +CVE-2011-0393 + RESERVED +CVE-2011-0394 + RESERVED +CVE-2011-0395 + RESERVED +CVE-2011-0396 + RESERVED +CVE-2011-0397 + RESERVED +CVE-2011-0398 (The Piwik_Common::getIP function in Piwik before 1.1 does not properly ...) + TODO: check +CVE-2011-0399 (Piwik before 1.1 does not prevent the rendering of the login form ...) + TODO: check +CVE-2011-0400 (Cookie.php in Piwik before 1.1 does not set the secure flag for the ...) + TODO: check +CVE-2011-0401 (Piwik before 1.1 does not properly limit the number of files stored ...) + TODO: check +CVE-2011-0402 (dpkg-source in dpkg before 1.14.31 and 1.15.x allows user-assisted ...) + TODO: check +CVE-2011-0403 (Untrusted search path vulnerability in ImgBurn.exe in ImgBurn 2.4.0.0, ...) + TODO: check +CVE-2011-0404 (Stack-based buffer overflow in NetSupport Manager Agent for Linux ...) + TODO: check +CVE-2011-0405 (Directory traversal vulnerability in module.php in PhpGedView 4.2.3 ...) + TODO: check +CVE-2011-0406 (Heap-based buffer overflow in HistorySvr.exe in WellinTech KingView ...) + TODO: check +CVE-2011-0407 (SQL injection vulnerability in the store function in ...) + TODO: check +CVE-2011-0408 (pngrtran.c in libpng 1.5.x before 1.5.1 allows remote attackers to ...) + TODO: check +CVE-2011-0409 + RESERVED +CVE-2011-0410 + RESERVED +CVE-2011-0411 + RESERVED +CVE-2011-0412 + RESERVED +CVE-2011-0413 + RESERVED +CVE-2011-0414 + RESERVED +CVE-2011-0415 + RESERVED +CVE-2011-0416 + RESERVED +CVE-2011-0417 + RESERVED +CVE-2011-0418 + RESERVED +CVE-2011-0419 + RESERVED +CVE-2011-0420 + RESERVED +CVE-2011-0421 + RESERVED +CVE-2011-0422 + RESERVED +CVE-2011-0423 (The PolyVision RoomWizard with firmware 3.2.3 has a default password ...) + TODO: check +CVE-2011-0424 + RESERVED +CVE-2011-0425 + RESERVED +CVE-2011-0426 + RESERVED +CVE-2011-0427 (Heap-based buffer overflow in Tor before 0.2.1.29 and 0.2.2.x before ...) + TODO: check +CVE-2011-0428 + RESERVED +CVE-2011-0429 + RESERVED +CVE-2011-0430 + RESERVED +CVE-2011-0431 + RESERVED +CVE-2011-0432 + RESERVED +CVE-2011-0433 + RESERVED +CVE-2011-0434 + RESERVED +CVE-2011-0435 + RESERVED +CVE-2011-0436 + RESERVED +CVE-2011-0437 + RESERVED +CVE-2011-0438 + RESERVED +CVE-2011-0439 + RESERVED +CVE-2011-0440 + RESERVED +CVE-2011-0441 + RESERVED +CVE-2011-0442 + RESERVED +CVE-2011-0443 (SQL injection vulnerability in inc/tinybb-settings.php in tinyBB 1.2, ...) + TODO: check +CVE-2011-0444 (Buffer overflow in the MAC-LTE dissector ...) + TODO: check +CVE-2011-0445 (The ASN.1 BER dissector in Wireshark 1.4.0 through 1.4.2 allows remote ...) + TODO: check +CVE-2011-0446 + RESERVED +CVE-2011-0447 + RESERVED +CVE-2011-0448 + RESERVED +CVE-2011-0449 + RESERVED +CVE-2011-0450 + RESERVED +CVE-2011-0451 + RESERVED +CVE-2011-0452 + RESERVED +CVE-2011-0453 + RESERVED +CVE-2011-0454 + RESERVED +CVE-2011-0455 + RESERVED +CVE-2011-0456 + RESERVED +CVE-2011-0457 + RESERVED +CVE-2011-0458 + RESERVED +CVE-2011-0459 + RESERVED +CVE-2011-0460 + RESERVED +CVE-2011-0461 + RESERVED +CVE-2011-0462 + RESERVED +CVE-2011-0463 + RESERVED +CVE-2011-0464 + RESERVED +CVE-2011-0465 + RESERVED +CVE-2011-0466 + RESERVED +CVE-2011-0467 + RESERVED +CVE-2011-0468 + RESERVED +CVE-2011-0469 + RESERVED +CVE-2011-0470 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0471 (The node-iteration implementation in Google Chrome before 8.0.552.237 ...) + TODO: check +CVE-2011-0472 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0473 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0474 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0475 (Use-after-free vulnerability in Google Chrome before 8.0.552.237 and ...) + TODO: check +CVE-2011-0476 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 ...) + TODO: check +CVE-2011-0477 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0478 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0479 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0480 (Multiple buffer overflows in the Vorbis decoder in Google Chrome ...) + TODO: check +CVE-2011-0481 (Buffer overflow in Google Chrome before 8.0.552.237 and Chrome OS ...) + TODO: check +CVE-2011-0482 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0483 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0484 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0485 (Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do ...) + TODO: check +CVE-2011-0486 (Cross-site scripting (XSS) vulnerability in cognos.cgi in IBM Cognos 8 ...) + TODO: check +CVE-2011-0487 (ICQ 7 does not verify the authenticity of updates, which allows ...) + TODO: check +CVE-2011-0488 (Stack-based buffer overflow in NTWebServer.exe in the test web service ...) + TODO: check +CVE-2011-0489 (The server components in Objectivity/DB 10.0 do not require ...) + TODO: check +CVE-2011-0490 (Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha makes calls to ...) + TODO: check +CVE-2011-0491 (The tor_realloc function in Tor before 0.2.1.29 and 0.2.2.x before ...) + TODO: check +CVE-2011-0492 (Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha allows remote ...) + TODO: check +CVE-2011-0493 (Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha might allow ...) + TODO: check +CVE-2011-0494 (Directory traversal vulnerability in WebSEAL in IBM Tivoli Access ...) + TODO: check +CVE-2011-0495 (Stack-based buffer overflow in the ast_uri_encode function in ...) + TODO: check +CVE-2011-0496 (Unspecified vulnerability in Sybase EAServer 5.x and 6.x before 6.3 ...) + TODO: check +CVE-2011-0497 (Directory traversal vulnerability in Sybase EAServer 6.x before 6.3 ...) + TODO: check +CVE-2011-0498 (Stack-based buffer overflow in Nokia Multimedia Player 1.00.55.5010, ...) + TODO: check +CVE-2011-0499 (Buffer overflow in VideoSpirit Pro 1.6.8.1 and possibly earlier ...) + TODO: check +CVE-2011-0500 (Buffer overflow in VideoSpirit Pro 1.6.8.1, 1.68, and earlier; and ...) + TODO: check +CVE-2011-0501 (Stack-based buffer overflow in Music Animation Machine MIDI Player ...) + TODO: check +CVE-2011-0502 (Music Animation Machine MIDI Player 2006aug19 Release 035 and possibly ...) + TODO: check +CVE-2011-0503 (Cross-site request forgery (CSRF) vulnerability in VaM Shop 1.6, 1.6.1, ...) + TODO: check +CVE-2011-0504 (Multiple cross-site scripting (XSS) vulnerabilities in VaM Shop 1.6, ...) + TODO: check +CVE-2011-0505 (Directory traversal vulnerability in system/system.php in Zwii 2.1.1, ...) + TODO: check +CVE-2011-0506 (Directory traversal vulnerability in modules/profile/user.php in Ax ...) + TODO: check +CVE-2011-0507 (FTPService.exe in Blackmoon FTP 3.1 Build 1735 and Build 1736 ...) + TODO: check +CVE-2011-0508 (Cross-site scripting (XSS) vulnerability in ...) + TODO: check +CVE-2011-0509 (Cross-site scripting (XSS) vulnerability in Vaadin before 6.4.9 allows ...) + TODO: check +CVE-2011-0510 (SQL injection vulnerability in cart.php in Advanced Webhost Billing ...) + TODO: check +CVE-2011-0511 (SQL injection vulnerability in the allCineVid component ...) + TODO: check +CVE-2011-0512 (SQL injection vulnerability in team.php in the Teams Structure module ...) + TODO: check +CVE-2011-0513 (DCR.sys driver in SecurStar DriveCrypt 5.4, 5.3, and earlier allows ...) + TODO: check +CVE-2011-0514 (The RDS service (rds.exe) in HP Data Protector Manager 6.11 allows ...) + TODO: check +CVE-2011-0515 (KisKrnl.sys 2011.1.13.89 and earlier in Kingsoft AntiVirus 2011 SP5.2 ...) + TODO: check +CVE-2011-0516 (SQL injection vulnerability in mainx_a.php in E-PROMPT C BetMore Site ...) + TODO: check +CVE-2011-0517 (Stack-based buffer overflow in Sielco Sistemi Winlog Pro 2.07.00 and ...) + TODO: check +CVE-2011-0518 (Directory traversal vulnerability in core/lib/router.php in LotusCMS ...) + TODO: check +CVE-2011-0519 (SQL injection vulnerability in gallery.php in Gallarific PHP Photo ...) + TODO: check -- cgit v1.2.3-65-gdbad