MITRE sync

svn path=/; revision=2140

1 files changed, 50 insertions, 40 deletions

diff --git a/data/CVE/list b/data/CVE/list
index 8ce8969..30c4615 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -87267,12 +87267,12 @@ CVE-2010-0816 (Integer overflow in inetcomm.dll in Microsoft Outlook Express 5.5
 	NOT-FOR-US: microsoft windows_mail
 CVE-2010-0817 (Cross-site scripting (XSS) vulnerability in _layouts/help.aspx in ...)
 	NOT-FOR-US: microsoft sharepoint_server
-CVE-2010-0818
-	RESERVED
+CVE-2010-0818 (The MPEG-4 codec in the Windows Media codecs in Microsoft Windows XP ...)
+	TODO: check
 CVE-2010-0819 (Unspecified vulnerability in the Windows OpenType Compact Font Format ...)
 	NOT-FOR-US: microsoft windows_xp
-CVE-2010-0820
-	RESERVED
+CVE-2010-0820 (Heap-based buffer overflow in the Local Security Authority Subsystem ...)
+	TODO: check
 CVE-2010-0821 (Unspecified vulnerability in Microsoft Office Excel 2002 SP3, 2003 ...)
 	NOT-FOR-US: Microsoft Office Excel
 CVE-2010-0822 (Stack-based buffer overflow in Microsoft Office Excel 2002 SP3, Office ...)
@@ -88283,8 +88283,8 @@ CVE-2010-1324
 	RESERVED
 CVE-2010-1325 (Cross-site request forgery (CSRF) vulnerability in the apache2-slms ...)
 	TODO: check
-CVE-2010-1326
-	RESERVED
+CVE-2010-1326 (perms.cpp in March Hare Software CVSNT 2.0.58, 2.5.01, 2.5.02, 2.5.03 ...)
+	TODO: check
 CVE-2010-1327 (Multiple SQL injection vulnerabilities in TornadoStore 1.4.3 and ...)
 	NOT-FOR-US: tornadostore
 CVE-2010-1328 (Multiple cross-site scripting (XSS) vulnerabilities in TornadoStore ...)
@@ -89416,8 +89416,8 @@ CVE-2010-1889 (Double free vulnerability in the kernel in Microsoft Windows Vist
 	NOT-FOR-US: microsoft windows_vista
 CVE-2010-1890 (The kernel in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 ...)
 	NOT-FOR-US: microsoft windows_vista
-CVE-2010-1891
-	RESERVED
+CVE-2010-1891 (The Client/Server Runtime Subsystem (aka CSRSS) in the Win32 subsystem ...)
+	TODO: check
 CVE-2010-1892 (The TCP/IP stack in Microsoft Windows Vista SP1 and SP2, Windows ...)
 	NOT-FOR-US: microsoft windows_vista
 CVE-2010-1893 (Integer overflow in the TCP/IP stack in Microsoft Windows Vista SP1, ...)
@@ -89432,8 +89432,8 @@ CVE-2010-1897 (The Windows kernel-mode drivers in win32k.sys in Microsoft Window
 	NOT-FOR-US: microsoft windows_xp
 CVE-2010-1898 (The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP1, ...)
 	NOT-FOR-US: microsoft silverlight
-CVE-2010-1899
-	RESERVED
+CVE-2010-1899 (Stack consumption vulnerability in the ASP implementation in Microsoft ...)
+	TODO: check
 CVE-2010-1900 (Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP2; Microsoft ...)
 	NOT-FOR-US: microsoft works
 CVE-2010-1901 (Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP2; Microsoft ...)
@@ -90762,16 +90762,16 @@ CVE-2010-2561 (Microsoft XML Core Services (aka MSXML) 3.0 does not properly han
 	NOT-FOR-US: microsoft xml_core_services
 CVE-2010-2562 (Microsoft Office Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for ...)
 	NOT-FOR-US: microsoft open_xml_file_format_converter
-CVE-2010-2563
-	RESERVED
+CVE-2010-2563 (The Word 97 text converter in the WordPad Text Converters in Microsoft ...)
+	TODO: check
 CVE-2010-2564 (Buffer overflow in Microsoft Windows Movie Maker (WMM) 2.1, 2.6, and ...)
 	NOT-FOR-US: microsoft windows_movie_maker
 CVE-2010-2565
 	RESERVED
 CVE-2010-2566 (The Secure Channel (aka SChannel) security package in Microsoft ...)
 	NOT-FOR-US: microsoft windows_xp
-CVE-2010-2567
-	RESERVED
+CVE-2010-2567 (The RPC client implementation in Microsoft Windows XP SP2 and SP3 and ...)
+	TODO: check
 CVE-2010-2568 (Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 ...)
 	NOT-FOR-US: microsoft windows_xp
 CVE-2010-2569
@@ -90796,8 +90796,8 @@ CVE-2010-2578
 	RESERVED
 CVE-2010-2579
 	RESERVED
-CVE-2010-2580
-	RESERVED
+CVE-2010-2580 (The SMTP service (MESMTPC.exe) in MailEnable 3.x and 4.25 does not ...)
+	TODO: check
 CVE-2010-2581
 	RESERVED
 CVE-2010-2582
@@ -90836,8 +90836,8 @@ CVE-2010-2598 (LibTIFF in Red Hat Enterprise Linux (RHEL) 3 on x86_64 platforms,
 	TODO: check
 CVE-2010-2599
 	RESERVED
-CVE-2010-2600
-	RESERVED
+CVE-2010-2600 (Untrusted search path vulnerability in BlackBerry Desktop Software ...)
+	TODO: check
 CVE-2010-2601
 	RESERVED
 CVE-2010-2602
@@ -91092,14 +91092,14 @@ CVE-2010-2726
 	RESERVED
 CVE-2010-2727
 	RESERVED
-CVE-2010-2728
-	RESERVED
-CVE-2010-2729
-	RESERVED
-CVE-2010-2730
-	RESERVED
-CVE-2010-2731
-	RESERVED
+CVE-2010-2728 (Heap-based buffer overflow in Microsoft Outlook 2002 SP3, 2003 SP3, and ...)
+	TODO: check
+CVE-2010-2729 (The Print Spooler service in Microsoft Windows XP SP2 and SP3, Windows ...)
+	TODO: check
+CVE-2010-2730 (Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, ...)
+	TODO: check
+CVE-2010-2731 (Unspecified vulnerability in Microsoft Internet Information Services ...)
+	TODO: check
 CVE-2010-2732
 	RESERVED
 CVE-2010-2733
@@ -91112,8 +91112,8 @@ CVE-2010-2736
 	RESERVED
 CVE-2010-2737
 	RESERVED
-CVE-2010-2738
-	RESERVED
+CVE-2010-2738 (The Uniscribe (aka new Unicode Script Processor) implementation in ...)
+	TODO: check
 CVE-2010-2739 (Buffer overflow in the CreateDIBPalette function in win32k.sys in ...)
 	TODO: check
 CVE-2010-2740
@@ -91404,8 +91404,8 @@ CVE-2010-2882 (DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not .
 	NOT-FOR-US: adobe shockwave_player
 CVE-2010-2883 (Stack-based buffer overflow in CoolType.dll in Adobe Reader and ...)
 	TODO: check
-CVE-2010-2884
-	RESERVED
+CVE-2010-2884 (Unspecified vulnerability in Adobe Flash Player 10.1.82.76 and earlier ...)
+	TODO: check
 CVE-2010-2885
 	RESERVED
 CVE-2010-2886
@@ -91655,10 +91655,10 @@ CVE-2010-3007 (Unspecified vulnerability in HP Data Protector Express, and Data
 	TODO: check
 CVE-2010-3008 (Unspecified vulnerability in HP Data Protector Express, and Data ...)
 	TODO: check
-CVE-2010-3009
-	RESERVED
-CVE-2010-3010
-	RESERVED
+CVE-2010-3009 (Unspecified vulnerability in HP System Management Homepage (SMH) for ...)
+	TODO: check
+CVE-2010-3010 (Cross-site scripting (XSS) vulnerability on the HP 3Com OfficeConnect ...)
+	TODO: check
 CVE-2010-3011
 	RESERVED
 CVE-2010-3012
@@ -91776,8 +91776,8 @@ CVE-2010-3067
 	RESERVED
 CVE-2010-3068
 	RESERVED
-CVE-2010-3069
-	RESERVED
+CVE-2010-3069 (Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse ...)
+	TODO: check
 CVE-2010-3070
 	RESERVED
 CVE-2010-3071
@@ -91816,8 +91816,8 @@ CVE-2010-3087
 	RESERVED
 CVE-2010-3088
 	RESERVED
-CVE-2010-3089
-	RESERVED
+CVE-2010-3089 (Multiple cross-site scripting (XSS) vulnerabilities in GNU Mailman ...)
+	TODO: check
 CVE-2010-3090
 	RESERVED
 CVE-2010-3091
@@ -91980,8 +91980,8 @@ CVE-2010-3169 (Multiple unspecified vulnerabilities in the browser engine in Moz
 	TODO: check
 CVE-2010-3170
 	RESERVED
-CVE-2010-3171
-	RESERVED
+CVE-2010-3171 (The Math.random function in the JavaScript implementation in Mozilla ...)
+	TODO: check
 CVE-2010-3172
 	RESERVED
 CVE-2010-3173
@@ -92336,3 +92336,13 @@ CVE-2010-3347
 	RESERVED
 CVE-2010-3348
 	RESERVED
+CVE-2010-3396 (Buffer overflow in kavfm.sys in Kingsoft Antivirus 2010.04.26.648 and ...)
+	TODO: check
+CVE-2010-3397 (Untrusted search path vulnerability in PGP Desktop 9.9.0 Build 397, ...)
+	TODO: check
+CVE-2010-3398 (Unspecified vulnerability in the webcontainer implementation in IBM ...)
+	TODO: check
+CVE-2010-3399 (The js_InitRandom function in the JavaScript implementation in Mozilla ...)
+	TODO: check
+CVE-2010-3400 (The js_InitRandom function in the JavaScript implementation in Mozilla ...)
+	TODO: check