aboutsummaryrefslogtreecommitdiff
path: root/data/CVE
diff options
context:
space:
mode:
authorcvebot <cvebot@localhost>2010-11-12 23:15:26 +0000
committercvebot <cvebot@localhost>2010-11-12 23:15:26 +0000
commit4e4b4c54a312aa84294def661eb598a733d1322a (patch)
tree7eb7396945f9d8b8d374414b14d4eac6d6cc8999 /data/CVE
parentMITRE sync (diff)
downloadsecurity-4e4b4c54a312aa84294def661eb598a733d1322a.tar.gz
security-4e4b4c54a312aa84294def661eb598a733d1322a.tar.bz2
security-4e4b4c54a312aa84294def661eb598a733d1322a.zip
MITRE sync
svn path=/; revision=2202
Diffstat (limited to 'data/CVE')
-rw-r--r--data/CVE/list54
1 files changed, 30 insertions, 24 deletions
diff --git a/data/CVE/list b/data/CVE/list
index f7507a9..c10e51d 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -85674,6 +85674,10 @@ CVE-2009-5014 (The default quickstart configuration of TurboGears2 (aka tg2) bef
TODO: check
CVE-2009-5015 (The URL dispatch mechanism in TurboGears2 (aka tg2) before 2.0.2 ...)
TODO: check
+CVE-2009-5016 (Integer overflow in the xml_utf8_decode function in ext/xml/xml.c in ...)
+ TODO: check
+CVE-2009-5017 (Mozilla Firefox before 3.6 Beta 3 does not properly handle overlong ...)
+ TODO: check
CVE-2010-0001 (Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 ...)
BUG: 300943
CVE-2010-0002 (The /etc/profile.d/60alias.sh script in the Mandriva bash package for ...)
@@ -90975,8 +90979,8 @@ CVE-2010-2635 (SQL injection vulnerability in IBM WebSphere Commerce 6.0 before
TODO: check
CVE-2010-2636 (Multiple cross-site scripting (XSS) vulnerabilities in sample store ...)
TODO: check
-CVE-2010-2637
- RESERVED
+CVE-2010-2637 (IBM WebSphere MQ 6.0 before 6.0.2.9 and 7.0 before 7.0.1.1 does not ...)
+ TODO: check
CVE-2010-2638
RESERVED
CVE-2010-2639
@@ -93447,8 +93451,8 @@ CVE-2010-3868
RESERVED
CVE-2010-3869
RESERVED
-CVE-2010-3870
- RESERVED
+CVE-2010-3870 (The utf8_decode function in PHP before 5.3.4 does not properly handle ...)
+ TODO: check
CVE-2010-3871 (Cross-site scripting (XSS) vulnerability in ...)
TODO: check
CVE-2010-3872
@@ -93488,26 +93492,26 @@ CVE-2010-3888 (Unspecified vulnerability in Microsoft Windows on 32-bit platform
TODO: check
CVE-2010-3889 (Unspecified vulnerability in Microsoft Windows on 32-bit platforms ...)
TODO: check
-CVE-2010-3890
- RESERVED
-CVE-2010-3891
- RESERVED
-CVE-2010-3892
- RESERVED
-CVE-2010-3893
- RESERVED
-CVE-2010-3894
- RESERVED
-CVE-2010-3895
- RESERVED
-CVE-2010-3896
- RESERVED
-CVE-2010-3897
- RESERVED
-CVE-2010-3898
- RESERVED
-CVE-2010-3899
- RESERVED
+CVE-2010-3890 (Cross-site scripting (XSS) vulnerability in IBM OmniFind Enterprise ...)
+ TODO: check
+CVE-2010-3891 (Cross-site request forgery (CSRF) vulnerability in ESAdmin/security.do ...)
+ TODO: check
+CVE-2010-3892 (Session fixation vulnerability in the login form in the administrator ...)
+ TODO: check
+CVE-2010-3893 (The administrator interface in IBM OmniFind Enterprise Edition 8.x and ...)
+ TODO: check
+CVE-2010-3894 (Stack-based buffer overflow in the ...)
+ TODO: check
+CVE-2010-3895 (esRunCommand in IBM OmniFind Enterprise Edition before 9.1 allows local ...)
+ TODO: check
+CVE-2010-3896 (The ESSearchApplication directory tree in IBM OmniFind Enterprise ...)
+ TODO: check
+CVE-2010-3897 (ESSearchApplication/palette.do in IBM OmniFind Enterprise Edition 8.x ...)
+ TODO: check
+CVE-2010-3898 (IBM OmniFind Enterprise Edition 8.x and 9.x does not properly restrict ...)
+ TODO: check
+CVE-2010-3899 (IBM OmniFind Enterprise Edition 8.x and 9.x performs web crawls with an ...)
+ TODO: check
CVE-2010-3900 (Midori before 0.2.5, when WebKitGTK+ before 1.1.14 or LibSoup before ...)
TODO: check
CVE-2010-3901 (OpenConnect before 2.25 does not properly validate X.509 certificates, ...)
@@ -94152,3 +94156,5 @@ CVE-2010-4220 (Cross-site scripting (XSS) vulnerability in the Integrated Soluti
TODO: check
CVE-2010-4221 (Multiple stack-based buffer overflows in the pr_netio_telnet_gets ...)
TODO: check
+CVE-2010-4236 (Untrusted search path vulnerability in estaskwrapper in IBM OmniFind ...)
+ TODO: check