diff options
-rw-r--r-- | data/CVE/list | 995 |
1 files changed, 774 insertions, 221 deletions
diff --git a/data/CVE/list b/data/CVE/list index 93d1ee7..c7916e6 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -47346,6 +47346,8 @@ CVE-2006-7241 (The Image Viewer component in IBM FileNet P8 Application Engine ( NOT-FOR-US: ibm filenet_p8_application_engine CVE-2006-7242 (The Workplace (aka WP) component in IBM FileNet P8 Application Engine ...) NOT-FOR-US: ibm filenet_p8_application_engine +CVE-2006-7243 + RESERVED CVE-2007-0001 (The file watch implementation in the audit subsystem (auditctl -w) in ...) TODO: check-old CVE-2007-0002 (Multiple heap-based buffer overflows in WordPerfect Document ...) @@ -75586,8 +75588,16 @@ CVE-2008-7264 (The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 a NOT-FOR-US: g rodola pyftpdlib CVE-2008-7265 (The pr_data_xfer function in ProFTPD before 1.3.2rc3 allows remote ...) TODO: check -CVE-2008-7266 - RESERVED +CVE-2008-7266 (Cross-site scripting (XSS) vulnerability in an unspecified Shockwave ...) + TODO: check +CVE-2008-7267 (SQL injection vulnerability in announcements.php in SiteEngine 5.x ...) + TODO: check +CVE-2008-7268 (The phpinfo function in SiteEngine 5.x allows remote attackers to ...) + TODO: check +CVE-2008-7269 (Open redirect vulnerability in api.php in SiteEngine 5.x allows ...) + TODO: check +CVE-2008-7270 (OpenSSL before 0.9.8j, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is ...) + TODO: check CVE-2009-0001 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote ...) NOT-FOR-US: apple quicktime CVE-2009-0002 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote ...) @@ -83110,7 +83120,7 @@ CVE-2009-3741 RESERVED CVE-2009-3742 (Cross-site scripting (XSS) vulnerability in Liferay Portal before ...) NOT-FOR-US: Liferay Portal -CVE-2009-3743 (Off-by-one error in the TrueType bytecode interpreter in Ghostscript ...) +CVE-2009-3743 (Off-by-one error in the Ins_MINDEX function in the TrueType bytecode ...) TODO: check CVE-2009-3744 (rep_serv.exe 6.3.1.3 in the server in EMC RepliStor allows remote ...) NOT-FOR-US: server in EMC RepliStor allows remote attackers to cause a denial of service via a crafted packet to TCP port @@ -85682,6 +85692,32 @@ CVE-2009-5017 (Mozilla Firefox before 3.6 Beta 3 does not properly handle overlo TODO: check CVE-2009-5018 RESERVED +CVE-2009-5019 (Web Wiz NewsPad stores sensitive information under the web root with ...) + TODO: check +CVE-2009-5020 (Open redirect vulnerability in awredir.pl in AWStats before 6.95 ...) + TODO: check +CVE-2009-5021 (Cobbler before 1.6.1 does not properly determine whether an ...) + TODO: check +CVE-2009-5022 + RESERVED +CVE-2009-5023 + RESERVED +CVE-2009-5024 + RESERVED +CVE-2009-5025 + RESERVED +CVE-2009-5026 + RESERVED +CVE-2009-5027 + RESERVED +CVE-2009-5028 + RESERVED +CVE-2009-5029 + RESERVED +CVE-2009-5030 + RESERVED +CVE-2009-5031 + RESERVED CVE-2010-0001 (Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 ...) BUG: 300943 CVE-2010-0002 (The /etc/profile.d/60alias.sh script in the Mandriva bash package for ...) @@ -86761,8 +86797,8 @@ CVE-2010-0528 (Apple QuickTime before 7.6.6 on Windows allows remote attackers t NOT-FOR-US: apple quicktime CVE-2010-0529 (Heap-based buffer overflow in QuickTime.qts in Apple QuickTime before ...) NOT-FOR-US: apple quicktime -CVE-2010-0530 - RESERVED +CVE-2010-0530 (Apple QuickTime before 7.6.9 on Windows sets weak permissions for the ...) + TODO: check CVE-2010-0531 (Apple iTunes before 9.1 allows remote attackers to cause a denial of ...) NOT-FOR-US: apple itunes CVE-2010-0532 (Race condition in the installation package in Apple iTunes before 9.1 ...) @@ -88347,10 +88383,10 @@ CVE-2010-1321 (The kg_accept_krb5 function in krb5/accept_sec_context.c in the . BUG: 323525 CVE-2010-1322 (The merge_authdata function in kdc_authdata.c in the Key Distribution ...) TODO: check -CVE-2010-1323 - RESERVED -CVE-2010-1324 - RESERVED +CVE-2010-1323 (MIT Kerberos 5 (aka krb5) 1.3.x, 1.4.x, 1.5.x, 1.6.x, 1.7.x, and 1.8.x ...) + TODO: check +CVE-2010-1324 (MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x through 1.8.3 does not ...) + TODO: check CVE-2010-1325 (Cross-site request forgery (CSRF) vulnerability in the apache2-slms ...) NOT-FOR-US: novell suse_lifecycle_management_server CVE-2010-1326 (perms.cpp in March Hare Software CVSNT 2.0.58, 2.5.01, 2.5.02, 2.5.03 ...) @@ -88718,8 +88754,8 @@ CVE-2010-1506 (The Google V8 bindings in Google Chrome before 4.1.249.1059 allow TODO: check CVE-2010-1507 (WebYaST in yast2-webclient in SUSE Linux Enterprise (SLE) 11 on the ...) NOT-FOR-US: novell suse_linux -CVE-2010-1508 - RESERVED +CVE-2010-1508 (Heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows ...) + TODO: check CVE-2010-1509 (IrfanView before 4.27 does not properly handle an unspecified integer ...) NOT-FOR-US: irfanview CVE-2010-1510 (Heap-based buffer overflow in IrfanView before 4.27 allows remote ...) @@ -90177,8 +90213,8 @@ CVE-2010-2233 (tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as TODO: check CVE-2010-2234 (Cross-site request forgery (CSRF) vulnerability in Apache CouchDB ...) BUG: 335881 -CVE-2010-2235 - RESERVED +CVE-2010-2235 (template_api.py in Cobbler before 2.0.7, as used in Red Hat Network ...) + TODO: check CVE-2010-2236 RESERVED CVE-2010-2237 (Red Hat libvirt, possibly 0.6.1 through 0.8.2, looks up disk backing ...) @@ -90881,8 +90917,8 @@ CVE-2010-2584 (The Upload method in the RealPage Module Upload ActiveX control i TODO: check CVE-2010-2585 (Multiple buffer overflows in the RealPage Module Upload ActiveX ...) TODO: check -CVE-2010-2586 - RESERVED +CVE-2010-2586 (Multiple integer overflows in in_nsv.dll in the in_nsv plugin in ...) + TODO: check CVE-2010-2587 RESERVED CVE-2010-2588 @@ -90987,8 +91023,8 @@ CVE-2010-2637 (IBM WebSphere MQ 6.0 before 6.0.2.9 and 7.0 before 7.0.1.1 does n TODO: check CVE-2010-2638 (Unspecified vulnerability in IBM WebSphere MQ 7.0 before 7.0.1.5 ...) TODO: check -CVE-2010-2639 - RESERVED +CVE-2010-2639 (IBM WebSphere Commerce Enterprise 7.0 before 7.0.0.2 allows remote ...) + TODO: check CVE-2010-2640 RESERVED CVE-2010-2641 @@ -91231,8 +91267,8 @@ CVE-2010-2759 (Bugzilla 2.23.1 through 3.2.7, 3.3.1 through 3.4.7, 3.5.1 through BUG: 332193 CVE-2010-2760 (Use-after-free vulnerability in the nsTreeSelection function in ...) TODO: check -CVE-2010-2761 - RESERVED +CVE-2010-2761 (The multipart_init function in (1) CGI.pm before 3.50 and (2) ...) + TODO: check CVE-2010-2762 (The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) ...) TODO: check CVE-2010-2763 (The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) ...) @@ -91295,8 +91331,8 @@ CVE-2010-2791 (mod_proxy in httpd in Apache HTTP Server 2.2.9, when running on U BUG: 330195 CVE-2010-2792 (Race condition in the SPICE (aka spice-xpi) plug-in 2.2 for Firefox ...) NOT-FOR-US: redhat spice xpi -CVE-2010-2793 - RESERVED +CVE-2010-2793 (Race condition in the SPICE (aka spice-activex) plug-in for Internet ...) + TODO: check CVE-2010-2794 (The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users ...) NOT-FOR-US: redhat spice xpi CVE-2010-2795 (phpCAS before 1.1.2 allows remote authenticated users to hijack ...) @@ -91633,10 +91669,10 @@ CVE-2010-2960 (The keyctl_session_to_parent function in security/keys/keyctl.c i TODO: check CVE-2010-2961 (mountall.c in mountall before 2.15.2 uses 0666 permissions for the ...) NOT-FOR-US: scott_james_remnant mountall -CVE-2010-2962 - RESERVED -CVE-2010-2963 - RESERVED +CVE-2010-2962 (drivers/gpu/drm/i915/i915_gem.c in the Graphics Execution Manager ...) + TODO: check +CVE-2010-2963 (drivers/media/video/v4l2-compat-ioctl32.c in the Video4Linux (V4L) ...) + TODO: check CVE-2010-2964 RESERVED CVE-2010-2965 (The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and ...) @@ -91843,8 +91879,8 @@ CVE-2010-3064 (Stack-based buffer overflow in the php_mysqlnd_auth_write functio TODO: check CVE-2010-3065 (The default session serializer in PHP 5.2 through 5.2.13 and 5.3 ...) TODO: check -CVE-2010-3066 - RESERVED +CVE-2010-3066 (The io_submit_one function in fs/aio.c in the Linux kernel before ...) + TODO: check CVE-2010-3067 (Integer overflow in the do_io_submit function in fs/aio.c in the Linux ...) TODO: check CVE-2010-3068 @@ -92243,10 +92279,10 @@ CVE-2010-3264 (The engine installer in Novell Identity Manager (aka IDM) 3.6.1 s NOT-FOR-US: novell identity_manager CVE-2010-3265 RESERVED -CVE-2010-3266 - RESERVED -CVE-2010-3267 - RESERVED +CVE-2010-3266 (Multiple cross-site scripting (XSS) vulnerabilities in BugTracker.NET ...) + TODO: check +CVE-2010-3267 (Multiple SQL injection vulnerabilities in BugTracker.NET before 3.4.5 ...) + TODO: check CVE-2010-3268 RESERVED CVE-2010-3269 @@ -92450,14 +92486,14 @@ CVE-2010-3367 RESERVED CVE-2010-3368 RESERVED -CVE-2010-3369 (The (1) mdb and (2) mdb-symbolreader scripts in mono-debugger 2.4.3 ...) +CVE-2010-3369 (The (1) mdb and (2) mdb-symbolreader scripts in mono-debugger 2.4.3, ...) TODO: check CVE-2010-3370 RESERVED CVE-2010-3371 RESERVED -CVE-2010-3372 - RESERVED +CVE-2010-3372 (Untrusted search path vulnerability in NorduGrid Advanced Resource ...) + TODO: check CVE-2010-3373 RESERVED CVE-2010-3374 (Qt Creator before 2.0.1 places a zero-length directory name in the ...) @@ -92605,16 +92641,16 @@ CVE-2010-3443 RESERVED CVE-2010-3444 RESERVED -CVE-2010-3445 - RESERVED +CVE-2010-3445 (Stack consumption vulnerability in the dissect_ber_unknown function in ...) + TODO: check CVE-2010-3446 RESERVED CVE-2010-3447 RESERVED CVE-2010-3448 RESERVED -CVE-2010-3449 - RESERVED +CVE-2010-3449 (Cross-site request forgery (CSRF) vulnerability in Redback before ...) + TODO: check CVE-2010-3450 RESERVED CVE-2010-3451 @@ -92941,12 +92977,12 @@ CVE-2010-3611 (ISC DHCP server 4.0 before 4.0.2, 4.1 before 4.1.2, and 4.2 befor TODO: check CVE-2010-3612 RESERVED -CVE-2010-3613 - RESERVED -CVE-2010-3614 - RESERVED -CVE-2010-3615 - RESERVED +CVE-2010-3613 (named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, ...) + TODO: check +CVE-2010-3614 (named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4-ESV ...) + TODO: check +CVE-2010-3615 (named in ISC BIND 9.7.2-P2 does not check all intended locations for ...) + TODO: check CVE-2010-3616 RESERVED CVE-2010-3617 @@ -93111,10 +93147,10 @@ CVE-2010-3696 (The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in TODO: check CVE-2010-3697 (The wait_for_child_to_die function in main/event.c in FreeRADIUS 2.1.x ...) TODO: check -CVE-2010-3698 - RESERVED -CVE-2010-3699 - RESERVED +CVE-2010-3698 (The KVM implementation in the Linux kernel before 2.6.36 does not ...) + TODO: check +CVE-2010-3699 (The backend driver in Xen 3.x allows guest OS users to cause a denial ...) + TODO: check CVE-2010-3700 (VMware SpringSource Spring Security 2.x before 2.0.6 and 3.x before ...) TODO: check CVE-2010-3701 (lib/MessageStoreImpl.cpp in Red Hat Enterprise MRG before 1.2.2 allows ...) @@ -93125,8 +93161,8 @@ CVE-2010-3703 (The PostScriptFunction::PostScriptFunction function in ...) TODO: check CVE-2010-3704 (The FoFiType1::parse function in fofi/FoFiType1.cc in the PDF parser ...) TODO: check -CVE-2010-3705 - RESERVED +CVE-2010-3705 (The sctp_auth_asoc_get_hmac function in net/sctp/auth.c in the Linux ...) + TODO: check CVE-2010-3706 (plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and ...) TODO: check CVE-2010-3707 (plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x before 1.2.15 and ...) @@ -93247,32 +93283,32 @@ CVE-2010-3764 (The Old Charts implementation in Bugzilla 2.12 through 3.2.8, 3.4 TODO: check CVE-2010-3765 (Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, ...) TODO: check -CVE-2010-3766 - RESERVED -CVE-2010-3767 - RESERVED -CVE-2010-3768 - RESERVED -CVE-2010-3769 - RESERVED -CVE-2010-3770 - RESERVED -CVE-2010-3771 - RESERVED -CVE-2010-3772 - RESERVED -CVE-2010-3773 - RESERVED -CVE-2010-3774 - RESERVED -CVE-2010-3775 - RESERVED -CVE-2010-3776 - RESERVED -CVE-2010-3777 - RESERVED -CVE-2010-3778 - RESERVED +CVE-2010-3766 (Use-after-free vulnerability in Mozilla Firefox before 3.5.16 and 3.6.x ...) + TODO: check +CVE-2010-3767 (Integer overflow in the NewIdArray function in Mozilla Firefox before ...) + TODO: check +CVE-2010-3768 (Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird ...) + TODO: check +CVE-2010-3769 (The line-breaking implementation in Mozilla Firefox before 3.5.16 and ...) + TODO: check +CVE-2010-3770 (Multiple cross-site scripting (XSS) vulnerabilities in the rendering ...) + TODO: check +CVE-2010-3771 (Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ...) + TODO: check +CVE-2010-3772 (Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ...) + TODO: check +CVE-2010-3773 (Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ...) + TODO: check +CVE-2010-3774 (The NS_SecurityCompareURIs function in netwerk/base/public/nsNetUtil.h ...) + TODO: check +CVE-2010-3775 (Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ...) + TODO: check +CVE-2010-3776 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...) + TODO: check +CVE-2010-3777 (Unspecified vulnerability in Mozilla Firefox 3.6.x before 3.6.13 and ...) + TODO: check +CVE-2010-3778 (Unspecified vulnerability in Mozilla Firefox 3.5.x before 3.5.16, ...) + TODO: check CVE-2010-3779 (Dovecot 1.2.x before 1.2.15 and 2.0.x before 2.0.beta2 grants the ...) TODO: check CVE-2010-3780 (Dovecot 1.2.x before 1.2.15 allows remote authenticated users to cause ...) @@ -93315,12 +93351,12 @@ CVE-2010-3798 (Heap-based buffer overflow in xar in Apple Mac OS X 10.6.x before TODO: check CVE-2010-3799 RESERVED -CVE-2010-3800 - RESERVED -CVE-2010-3801 - RESERVED -CVE-2010-3802 - RESERVED +CVE-2010-3800 (Apple QuickTime before 7.6.9 allows remote attackers to execute ...) + TODO: check +CVE-2010-3801 (Apple QuickTime before 7.6.9 allows remote attackers to execute ...) + TODO: check +CVE-2010-3802 (Integer signedness error in Apple QuickTime before 7.6.9 allows remote ...) + TODO: check CVE-2010-3803 (Integer overflow in WebKit in Apple Safari before 5.0.3 on Mac OS X ...) TODO: check CVE-2010-3804 (The JavaScript implementation in WebKit in Apple Safari before 5.0.3 ...) @@ -93339,12 +93375,12 @@ CVE-2010-3810 (WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 TODO: check CVE-2010-3811 (Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on ...) TODO: check -CVE-2010-3812 (Integer overflow in WebKit in Apple Safari before 5.0.3 on Mac OS X ...) +CVE-2010-3812 (Integer overflow in the wholeText method in WebKit in Apple Safari ...) TODO: check CVE-2010-3813 (WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ...) TODO: check -CVE-2010-3814 - RESERVED +CVE-2010-3814 (Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in ...) + TODO: check CVE-2010-3815 RESERVED CVE-2010-3816 (Use-after-free vulnerability in WebKit in Apple Safari before 5.0.3 on ...) @@ -93369,18 +93405,18 @@ CVE-2010-3825 RESERVED CVE-2010-3826 (WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and ...) TODO: check -CVE-2010-3827 - RESERVED -CVE-2010-3828 - RESERVED -CVE-2010-3829 - RESERVED -CVE-2010-3830 - RESERVED -CVE-2010-3831 - RESERVED -CVE-2010-3832 - RESERVED +CVE-2010-3827 (Apple iOS before 4.2 does not properly validate signatures before ...) + TODO: check +CVE-2010-3828 (iAd Content Display in Apple iOS before 4.2 allows man-in-the-middle ...) + TODO: check +CVE-2010-3829 (WebKit in Apple iOS before 4.2 allows remote attackers to bypass the ...) + TODO: check +CVE-2010-3830 (Networking in Apple iOS before 4.2 accesses an invalid pointer during ...) + TODO: check +CVE-2010-3831 (Photos in Apple iOS before 4.2 enables support for HTTP Basic ...) + TODO: check +CVE-2010-3832 (Heap-based buffer overflow in the GSM mobility management ...) + TODO: check CVE-2010-3833 RESERVED CVE-2010-3834 @@ -93425,20 +93461,20 @@ CVE-2010-3853 RESERVED CVE-2010-3854 RESERVED -CVE-2010-3855 - RESERVED +CVE-2010-3855 (Buffer overflow in the ft_var_readpackedpoints function in ...) + TODO: check CVE-2010-3856 RESERVED CVE-2010-3857 RESERVED -CVE-2010-3858 - RESERVED +CVE-2010-3858 (The setup_arg_pages function in fs/exec.c in the Linux kernel before ...) + TODO: check CVE-2010-3859 RESERVED -CVE-2010-3860 - RESERVED -CVE-2010-3861 - RESERVED +CVE-2010-3860 (IcedTea before 1.9.2, as based on OpenJDK 6, declares multiple ...) + TODO: check +CVE-2010-3861 (The ethtool_get_rxnfc function in net/core/ethtool.c in the Linux ...) + TODO: check CVE-2010-3862 RESERVED CVE-2010-3863 (Apache Shiro before 1.1.0, and JSecurity 0.9.x, does not canonicalize ...) @@ -93475,8 +93511,8 @@ CVE-2010-3878 RESERVED CVE-2010-3879 RESERVED -CVE-2010-3880 - RESERVED +CVE-2010-3880 (net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not ...) + TODO: check CVE-2010-3881 RESERVED CVE-2010-3882 (Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple ...) @@ -93524,8 +93560,8 @@ CVE-2010-3902 (OpenConnect before 2.26 places the webvpn cookie value in the ... TODO: check CVE-2010-3903 (Unspecified vulnerability in OpenConnect before 2.23 allows remote ...) TODO: check -CVE-2010-3904 - RESERVED +CVE-2010-3904 (The rds_page_copy_user function in net/rds/page.c in the Reliable ...) + TODO: check CVE-2010-3905 RESERVED CVE-2010-3906 @@ -93534,12 +93570,12 @@ CVE-2010-3907 RESERVED CVE-2010-3908 RESERVED -CVE-2010-3909 - RESERVED -CVE-2010-3910 - RESERVED -CVE-2010-3911 - RESERVED +CVE-2010-3909 (Incomplete blacklist vulnerability in config.template.php in vtiger ...) + TODO: check +CVE-2010-3910 (Multiple directory traversal vulnerabilities in the ...) + TODO: check +CVE-2010-3911 (Multiple cross-site scripting (XSS) vulnerabilities in vtiger CRM ...) + TODO: check CVE-2010-3912 RESERVED CVE-2010-3913 (CRLF injection vulnerability in TransWARE Active! mail 6 build ...) @@ -93552,16 +93588,16 @@ CVE-2010-3916 (Unspecified vulnerability in JustSystems Ichitaro and Ichitaro .. TODO: check CVE-2010-3917 RESERVED -CVE-2010-3918 - RESERVED -CVE-2010-3919 - RESERVED -CVE-2010-3920 - RESERVED -CVE-2010-3921 - RESERVED -CVE-2010-3922 - RESERVED +CVE-2010-3918 (Fenrir Sleipnir 2.9.6 and earlier does not prevent interaction between ...) + TODO: check +CVE-2010-3919 (Fenrir Grani 4.5 and earlier does not prevent interaction between web ...) + TODO: check +CVE-2010-3920 (The Seiko Epson printer driver installers for LP-S9000 before 4.1.11 ...) + TODO: check +CVE-2010-3921 (Cross-site scripting (XSS) vulnerability in Movable Type 4.x before ...) + TODO: check +CVE-2010-3922 (SQL injection vulnerability in Movable Type 4.x before 4.35 and 5.x ...) + TODO: check CVE-2010-3923 RESERVED CVE-2010-3924 @@ -93734,14 +93770,14 @@ CVE-2010-4007 (Oracle Mojarra uses an encrypted View State without a Message ... NOT-FOR-US: oracle mojarra CVE-2010-4008 (libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, ...) TODO: check -CVE-2010-4009 - RESERVED +CVE-2010-4009 (Integer overflow in Apple QuickTime before 7.6.9 allows remote ...) + TODO: check CVE-2010-4010 (Integer signedness error in Apple Type Services (ATS) in Apple Mac OS ...) TODO: check CVE-2010-4011 (Dovecot in Apple Mac OS X 10.6.5 10H574 does not properly manage ...) TODO: check -CVE-2010-4012 - RESERVED +CVE-2010-4012 (Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later ...) + TODO: check CVE-2010-4013 RESERVED CVE-2010-4014 @@ -93756,10 +93792,10 @@ CVE-2010-4018 RESERVED CVE-2010-4019 RESERVED -CVE-2010-4020 - RESERVED -CVE-2010-4021 - RESERVED +CVE-2010-4020 (MIT Kerberos 5 (aka krb5) 1.8.x through 1.8.3 does not reject RC4 ...) + TODO: check +CVE-2010-4021 (The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 ...) + TODO: check CVE-2010-4022 RESERVED CVE-2010-4023 (Cross-site scripting (XSS) vulnerability in HP Insight Control Power ...) @@ -93860,30 +93896,30 @@ CVE-2010-4070 (Integer overflow in librpc.dll in portmap.exe (aka the ISM Portma TODO: check CVE-2010-4071 RESERVED -CVE-2010-4072 - RESERVED -CVE-2010-4073 - RESERVED -CVE-2010-4074 - RESERVED -CVE-2010-4075 - RESERVED -CVE-2010-4076 - RESERVED -CVE-2010-4077 - RESERVED -CVE-2010-4078 - RESERVED -CVE-2010-4079 - RESERVED -CVE-2010-4080 - RESERVED -CVE-2010-4081 - RESERVED -CVE-2010-4082 - RESERVED -CVE-2010-4083 - RESERVED +CVE-2010-4072 (The copy_shmid_to_user function in ipc/shm.c in the Linux kernel ...) + TODO: check +CVE-2010-4073 (The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not ...) + TODO: check +CVE-2010-4074 (The USB subsystem in the Linux kernel before 2.6.36-rc5 does not ...) + TODO: check +CVE-2010-4075 (The uart_get_count function in drivers/serial/serial_core.c in the ...) + TODO: check +CVE-2010-4076 (The rs_ioctl function in drivers/char/amiserial.c in the Linux kernel ...) + TODO: check +CVE-2010-4077 (The ntty_ioctl_tiocgicount function in drivers/char/nozomi.c in the ...) + TODO: check +CVE-2010-4078 (The sisfb_ioctl function in drivers/video/sis/sis_main.c in the Linux ...) + TODO: check +CVE-2010-4079 (The ivtvfb_ioctl function in drivers/media/video/ivtv/ivtvfb.c in the ...) + TODO: check +CVE-2010-4080 (The snd_hdsp_hwdep_ioctl function in sound/pci/rme9652/hdsp.c in the ...) + TODO: check +CVE-2010-4081 (The snd_hdspm_hwdep_ioctl function in sound/pci/rme9652/hdspm.c in the ...) + TODO: check +CVE-2010-4082 (The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c ...) + TODO: check +CVE-2010-4083 (The copy_semid_to_user function in ipc/sem.c in the Linux kernel ...) + TODO: check CVE-2010-4084 (dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows ...) TODO: check CVE-2010-4085 (dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows ...) @@ -93932,10 +93968,10 @@ CVE-2010-4106 (Cross-site request forgery (CSRF) vulnerability in HP Insight Con TODO: check CVE-2010-4107 (The default configuration of the PJL Access value in the File System ...) TODO: check -CVE-2010-4108 - RESERVED -CVE-2010-4109 - RESERVED +CVE-2010-4108 (HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support ...) + TODO: check +CVE-2010-4109 (Cross-site scripting (XSS) vulnerability in the Contacts Application ...) + TODO: check CVE-2010-4110 RESERVED CVE-2010-4111 @@ -94016,8 +94052,8 @@ CVE-2010-4148 (Directory traversal vulnerability in AnyConnect 1.2.3.0, and poss TODO: check CVE-2010-4149 (Directory traversal vulnerability in FreshWebMaster Fresh FTP 5.36, ...) TODO: check -CVE-2010-4150 - RESERVED +CVE-2010-4150 (Double free vulnerability in the imap_do_open function in the IMAP ...) + TODO: check CVE-2010-4151 (SQL injection vulnerability in misc.php in DeluxeBB 1.3, and possibly ...) TODO: check CVE-2010-4152 (SQL injection vulnerability in catalog/index.shtml in 4site CMS 2.6, ...) @@ -94030,8 +94066,8 @@ CVE-2010-4155 (Multiple cross-site scripting (XSS) vulnerabilities in eXV2 CMS 2 TODO: check CVE-2010-4156 (The mb_strcut function in Libmbfl 1.1.0, as used in PHP 5.3.x through ...) TODO: check -CVE-2010-4157 - RESERVED +CVE-2010-4157 (Integer overflow in the ioc_general function in drivers/scsi/gdth.c in ...) + TODO: check CVE-2010-4158 RESERVED CVE-2010-4159 (Untrusted search path vulnerability in metadata/loader.c in Mono 2.8 ...) @@ -94056,28 +94092,28 @@ CVE-2010-4168 (Multiple use-after-free vulnerabilities in OpenTTD 1.0.x before 1 TODO: check CVE-2010-4169 (Use-after-free vulnerability in mm/mprotect.c in the Linux kernel ...) TODO: check -CVE-2010-4170 - RESERVED -CVE-2010-4171 - RESERVED -CVE-2010-4172 - RESERVED +CVE-2010-4170 (The staprun runtime tool in SystemTap 1.3 does not properly clear the ...) + TODO: check +CVE-2010-4171 (The staprun runtime tool in SystemTap 1.3 does not verify that a ...) + TODO: check +CVE-2010-4172 (Multiple cross-site scripting (XSS) vulnerabilities in the Manager ...) + TODO: check CVE-2010-4173 (The default configuration of libsdp.conf in libsdp 1.1.104 and earlier ...) TODO: check CVE-2010-4174 RESERVED CVE-2010-4175 RESERVED -CVE-2010-4176 - RESERVED +CVE-2010-4176 (plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 ...) + TODO: check CVE-2010-4177 RESERVED CVE-2010-4178 RESERVED -CVE-2010-4179 - RESERVED -CVE-2010-4180 - RESERVED +CVE-2010-4179 (The installation documentation for Red Hat Enterprise Messaging, ...) + TODO: check +CVE-2010-4180 (OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when ...) + TODO: check CVE-2010-4181 (Directory traversal vulnerability in Yaws 1.89 allows remote attackers ...) TODO: check CVE-2010-4182 (Untrusted search path vulnerability in the Data Access Objects (DAO) ...) @@ -94209,38 +94245,38 @@ CVE-2010-4244 RESERVED CVE-2010-4245 RESERVED -CVE-2010-4246 - RESERVED +CVE-2010-4246 (Multiple cross-site scripting (XSS) vulnerabilities in graph.php in ...) + TODO: check CVE-2010-4247 RESERVED -CVE-2010-4248 - RESERVED -CVE-2010-4249 - RESERVED +CVE-2010-4248 (Race condition in the __exit_signal function in kernel/exit.c in the ...) + TODO: check +CVE-2010-4249 (The wait_for_unix_gc function in net/unix/garbage.c in the Linux ...) + TODO: check CVE-2010-4250 RESERVED CVE-2010-4251 RESERVED -CVE-2010-4252 - RESERVED +CVE-2010-4252 (OpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly ...) + TODO: check CVE-2010-4253 RESERVED -CVE-2010-4254 - RESERVED +CVE-2010-4254 (Mono, when Moonlight before 2.3.0.1 or 2.99.x before 2.99.0.10 is ...) + TODO: check CVE-2010-4255 RESERVED CVE-2010-4256 RESERVED -CVE-2010-4257 - RESERVED +CVE-2010-4257 (SQL injection vulnerability in the do_trackbacks function in ...) + TODO: check CVE-2010-4258 RESERVED -CVE-2010-4259 - RESERVED -CVE-2010-4260 - RESERVED -CVE-2010-4261 - RESERVED +CVE-2010-4259 (Stack-based buffer overflow in FontForge 20100501 allows remote ...) + TODO: check +CVE-2010-4260 (Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV ...) + TODO: check +CVE-2010-4261 (Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ...) + TODO: check CVE-2010-4262 RESERVED CVE-2010-4263 @@ -94273,18 +94309,18 @@ CVE-2010-4276 RESERVED CVE-2010-4277 RESERVED -CVE-2010-4278 - RESERVED -CVE-2010-4279 - RESERVED -CVE-2010-4280 - RESERVED -CVE-2010-4281 - RESERVED -CVE-2010-4282 - RESERVED -CVE-2010-4283 - RESERVED +CVE-2010-4278 (operation/agentes/networkmap.php in Pandora FMS before 3.1.1 allows ...) + TODO: check +CVE-2010-4279 (The default configuration of Pandora FMS 3.1 and earlier specifies an ...) + TODO: check +CVE-2010-4280 (Multiple SQL injection vulnerabilities in Pandora FMS before 3.1.1 ...) + TODO: check +CVE-2010-4281 (Incomplete blacklist vulnerability in the safe_url_extraclean function ...) + TODO: check +CVE-2010-4282 (Multiple directory traversal vulnerabilities in Pandora FMS before ...) + TODO: check +CVE-2010-4283 (PHP remote file inclusion vulnerability in extras/pandora_diag.php in ...) + TODO: check CVE-2010-4284 RESERVED CVE-2010-4285 @@ -94305,22 +94341,22 @@ CVE-2010-4292 RESERVED CVE-2010-4293 RESERVED -CVE-2010-4294 - RESERVED -CVE-2010-4295 - RESERVED -CVE-2010-4296 - RESERVED -CVE-2010-4297 - RESERVED -CVE-2010-4298 - RESERVED +CVE-2010-4294 (The frame decompression functionality in the VMnc media codec in ...) + TODO: check +CVE-2010-4295 (Race condition in the mounting process in vmware-mount in VMware ...) + TODO: check +CVE-2010-4296 (vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on ...) + TODO: check +CVE-2010-4297 (The VMware Tools update functionality in VMware Workstation 6.5.x ...) + TODO: check +CVE-2010-4298 (SQL injection vulnerability in the download module in Free Simple ...) + TODO: check CVE-2010-4299 (Heap-based buffer overflow in ZfHIPCND.exe in Novell Zenworks 7 ...) TODO: check -CVE-2010-4300 - RESERVED -CVE-2010-4301 - RESERVED +CVE-2010-4300 (Heap-based buffer overflow in the dissect_ldss_transfer function ...) + TODO: check +CVE-2010-4301 (epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in ...) + TODO: check CVE-2010-4302 (/opt/rv/Versions/CurrentVersion/Mcu/Config/Mcu.val in Cisco Unified ...) TODO: check CVE-2010-4303 (Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the ...) @@ -94339,3 +94375,520 @@ CVE-2010-4309 RESERVED CVE-2010-4310 RESERVED +CVE-2010-4311 (Free Simple Software 1.0 stores passwords in cleartext, which allows ...) + TODO: check +CVE-2010-4312 (The default configuration of Apache Tomcat 6.x does not include the ...) + TODO: check +CVE-2010-4313 (Unrestricted file upload vulnerability in fileman_file_upload.php in ...) + TODO: check +CVE-2010-4314 + RESERVED +CVE-2010-4315 + RESERVED +CVE-2010-4316 + RESERVED +CVE-2010-4317 + RESERVED +CVE-2010-4318 + RESERVED +CVE-2010-4319 + RESERVED +CVE-2010-4320 + RESERVED +CVE-2010-4321 + RESERVED +CVE-2010-4322 + RESERVED +CVE-2010-4323 + RESERVED +CVE-2010-4324 + RESERVED +CVE-2010-4325 + RESERVED +CVE-2010-4326 + RESERVED +CVE-2010-4327 + RESERVED +CVE-2010-4328 + RESERVED +CVE-2010-4329 (Cross-site scripting (XSS) vulnerability in the PMA_linkOrButton ...) + TODO: check +CVE-2010-4330 (Directory traversal vulnerability in includes/controller.php in Pulse ...) + TODO: check +CVE-2010-4331 + RESERVED +CVE-2010-4332 + RESERVED +CVE-2010-4333 + RESERVED +CVE-2010-4334 + RESERVED +CVE-2010-4335 + RESERVED +CVE-2010-4336 + RESERVED +CVE-2010-4337 + RESERVED +CVE-2010-4338 + RESERVED +CVE-2010-4339 + RESERVED +CVE-2010-4340 + RESERVED +CVE-2010-4341 + RESERVED +CVE-2010-4342 + RESERVED +CVE-2010-4343 + RESERVED +CVE-2010-4344 + RESERVED +CVE-2010-4345 + RESERVED +CVE-2010-4346 + RESERVED +CVE-2010-4347 + RESERVED +CVE-2010-4348 + RESERVED +CVE-2010-4349 + RESERVED +CVE-2010-4350 + RESERVED +CVE-2010-4351 + RESERVED +CVE-2010-4352 + RESERVED +CVE-2010-4353 + RESERVED +CVE-2010-4354 (The remote-access IPSec VPN implementation on Cisco Adaptive Security ...) + TODO: check +CVE-2010-4355 (Cross-site scripting (XSS) vulnerability in DaDaBIK before 4.3 beta2, ...) + TODO: check +CVE-2010-4356 (SQL injection vulnerability in news_default.asp in Site2Nite Big Truck ...) + TODO: check +CVE-2010-4357 (SQL injection vulnerability in comments.php in SiteEngine 7.1 allows ...) + TODO: check +CVE-2010-4358 (Multiple cross-site scripting (XSS) vulnerabilities in gb.cgi in ...) + TODO: check +CVE-2010-4359 (SQL injection vulnerability in index.php in Jurpopage 0.2.0 allows ...) + TODO: check +CVE-2010-4360 (Multiple SQL injection vulnerabilities in index.php in Jurpopage 0.2.0 ...) + TODO: check +CVE-2010-4361 (Cross-site scripting (XSS) vulnerability in url-gateway.php in ...) + TODO: check +CVE-2010-4362 (Multiple SQL injection vulnerabilities in MicroNetsoft RV Dealer ...) + TODO: check +CVE-2010-4363 (Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY ...) + TODO: check +CVE-2010-4364 (DaDaBIK 4.3 beta3, when running in a case-sensitive environment, does ...) + TODO: check +CVE-2010-4365 (SQL injection vulnerability in JE Ajax Event Calendar ...) + TODO: check +CVE-2010-4366 (Multiple cross-site scripting (XSS) vulnerabilities in ...) + TODO: check +CVE-2010-4367 (awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the ...) + TODO: check +CVE-2010-4368 (awstats.cgi in AWStats before 7.0 on Windows accepts a configdir ...) + TODO: check +CVE-2010-4369 (Directory traversal vulnerability in AWStats before 7.0 allows remote ...) + TODO: check +CVE-2010-4370 (Multiple integer overflows in the in_midi plugin in Winamp before 5.6 ...) + TODO: check +CVE-2010-4371 (Buffer overflow in the in_mod plugin in Winamp before 5.6 allows ...) + TODO: check +CVE-2010-4372 (Integer overflow in the in_nsv plugin in Winamp before 5.6 allows ...) + TODO: check +CVE-2010-4373 (The in_mp4 plugin in Winamp before 5.6 allows remote attackers to ...) + TODO: check +CVE-2010-4374 (The in_mkv plugin in Winamp before 5.6 allows remote attackers to ...) + TODO: check +CVE-2010-4375 + RESERVED +CVE-2010-4376 + RESERVED +CVE-2010-4377 + RESERVED +CVE-2010-4378 + RESERVED +CVE-2010-4379 + RESERVED +CVE-2010-4380 + RESERVED +CVE-2010-4381 + RESERVED +CVE-2010-4382 + RESERVED +CVE-2010-4383 + RESERVED +CVE-2010-4384 + RESERVED +CVE-2010-4385 + RESERVED +CVE-2010-4386 + RESERVED +CVE-2010-4387 + RESERVED +CVE-2010-4388 + RESERVED +CVE-2010-4389 + RESERVED +CVE-2010-4390 + RESERVED +CVE-2010-4391 + RESERVED +CVE-2010-4392 + RESERVED +CVE-2010-4393 + RESERVED +CVE-2010-4394 + RESERVED +CVE-2010-4395 + RESERVED +CVE-2010-4396 + RESERVED +CVE-2010-4397 + RESERVED +CVE-2010-4398 (Stack-based buffer overflow in the RtlQueryRegistryValues function in ...) + TODO: check +CVE-2010-4399 (Directory traversal vulnerability in languages.inc.php in DynPG CMS ...) + TODO: check +CVE-2010-4400 (SQL injection vulnerability in _rights.php in DynPG CMS 4.2.0 allows ...) + TODO: check +CVE-2010-4401 (languages.inc.php in DynPG CMS 4.2.0 allows remote attackers to obtain ...) + TODO: check +CVE-2010-4402 (Multiple cross-site scripting (XSS) vulnerabilities in wp-login.php in ...) + TODO: check +CVE-2010-4403 (The Register Plus plugin 3.5.1 and earlier for WordPress allows remote ...) + TODO: check +CVE-2010-4404 (SQL injection vulnerability in the Yannick Gaultier sh404SEF component ...) + TODO: check +CVE-2010-4405 (Cross-site scripting (XSS) vulnerability in the Yannick Gaultier ...) + TODO: check +CVE-2010-4406 (Directory traversal vulnerability in gallery.php in Brunetton ...) + TODO: check +CVE-2010-4407 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...) + TODO: check +CVE-2010-4408 (Apache Archiva 1.0 through 1.0.3, 1.1 through 1.1.4, 1.2 through ...) + TODO: check +CVE-2010-4409 (Integer overflow in the NumberFormatter::getSymbol (aka ...) + TODO: check +CVE-2010-4410 (CRLF injection vulnerability in the header function in (1) CGI.pm ...) + TODO: check +CVE-2010-4411 (Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote ...) + TODO: check +CVE-2010-4412 (Multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta ...) + TODO: check +CVE-2010-4413 + RESERVED +CVE-2010-4414 + RESERVED +CVE-2010-4415 + RESERVED +CVE-2010-4416 + RESERVED +CVE-2010-4417 + RESERVED +CVE-2010-4418 + RESERVED +CVE-2010-4419 + RESERVED +CVE-2010-4420 + RESERVED +CVE-2010-4421 + RESERVED +CVE-2010-4422 + RESERVED +CVE-2010-4423 + RESERVED +CVE-2010-4424 + RESERVED +CVE-2010-4425 + RESERVED +CVE-2010-4426 + RESERVED +CVE-2010-4427 + RESERVED +CVE-2010-4428 + RESERVED +CVE-2010-4429 + RESERVED +CVE-2010-4430 + RESERVED +CVE-2010-4431 + RESERVED +CVE-2010-4432 + RESERVED +CVE-2010-4433 + RESERVED +CVE-2010-4434 + RESERVED +CVE-2010-4435 + RESERVED +CVE-2010-4436 + RESERVED +CVE-2010-4437 + RESERVED +CVE-2010-4438 + RESERVED +CVE-2010-4439 + RESERVED +CVE-2010-4440 + RESERVED +CVE-2010-4441 + RESERVED +CVE-2010-4442 + RESERVED +CVE-2010-4443 + RESERVED +CVE-2010-4444 + RESERVED +CVE-2010-4445 + RESERVED +CVE-2010-4446 + RESERVED +CVE-2010-4447 + RESERVED +CVE-2010-4448 + RESERVED +CVE-2010-4449 + RESERVED +CVE-2010-4450 + RESERVED +CVE-2010-4451 + RESERVED +CVE-2010-4452 + RESERVED +CVE-2010-4453 + RESERVED +CVE-2010-4454 + RESERVED +CVE-2010-4455 + RESERVED +CVE-2010-4456 + RESERVED +CVE-2010-4457 + RESERVED +CVE-2010-4458 + RESERVED +CVE-2010-4459 + RESERVED +CVE-2010-4460 + RESERVED +CVE-2010-4461 + RESERVED +CVE-2010-4462 + RESERVED +CVE-2010-4463 + RESERVED +CVE-2010-4464 + RESERVED +CVE-2010-4465 + RESERVED +CVE-2010-4466 + RESERVED +CVE-2010-4467 + RESERVED +CVE-2010-4468 + RESERVED +CVE-2010-4469 + RESERVED +CVE-2010-4470 + RESERVED +CVE-2010-4471 + RESERVED +CVE-2010-4472 + RESERVED +CVE-2010-4473 + RESERVED +CVE-2010-4474 + RESERVED +CVE-2010-4475 + RESERVED +CVE-2010-4476 + RESERVED +CVE-2010-4477 + RESERVED +CVE-2010-4478 (OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly ...) + TODO: check +CVE-2010-4479 (Unspecified vulnerability in pdf.c in libclamav in ClamAV before ...) + TODO: check +CVE-2010-4480 (error.php in PhpMyAdmin 3.3.8.1 and earlier allows remote attackers to ...) + TODO: check +CVE-2010-4481 + RESERVED +CVE-2010-4482 (Unspecified vulnerability in Google Chrome before 8.0.552.215 allows ...) + TODO: check +CVE-2010-4483 (Google Chrome before 8.0.552.215 does not properly restrict read ...) + TODO: check +CVE-2010-4484 (Google Chrome before 8.0.552.215 does not properly handle HTML5 ...) + TODO: check +CVE-2010-4485 (Google Chrome before 8.0.552.215 does not properly restrict the ...) + TODO: check +CVE-2010-4486 (Use-after-free vulnerability in Google Chrome before 8.0.552.215 ...) + TODO: check +CVE-2010-4487 (Incomplete blacklist vulnerability in Google Chrome before 8.0.552.215 ...) + TODO: check +CVE-2010-4488 (Google Chrome before 8.0.552.215 does not properly handle HTTP proxy ...) + TODO: check +CVE-2010-4489 (Google Chrome before 8.0.552.215 does not properly handle WebM video, ...) + TODO: check +CVE-2010-4490 (Google Chrome before 8.0.552.215 allows remote attackers to cause a ...) + TODO: check +CVE-2010-4491 (Google Chrome before 8.0.552.215 does not properly restrict privileged ...) + TODO: check +CVE-2010-4492 (Use-after-free vulnerability in Google Chrome before 8.0.552.215 ...) + TODO: check +CVE-2010-4493 (Use-after-free vulnerability in Google Chrome before 8.0.552.215 ...) + TODO: check +CVE-2010-4494 (Double free vulnerability in Google Chrome before 8.0.552.215 allows ...) + TODO: check +CVE-2010-4495 + RESERVED +CVE-2010-4496 + RESERVED +CVE-2010-4497 + RESERVED +CVE-2010-4498 + RESERVED +CVE-2010-4499 + RESERVED +CVE-2010-4500 (Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY ...) + TODO: check +CVE-2010-4501 (IO::Socket::SSL Perl module 1.35, when verify_mode is not VERIFY_NONE, ...) + TODO: check +CVE-2010-4502 (Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite ...) + TODO: check +CVE-2010-4503 (SQL injection vulnerability in indexlight.php in Aigaion 1.3.4 allows ...) + TODO: check +CVE-2010-4504 (Multiple cross-site scripting (XSS) vulnerabilities in eSyndiCat ...) + TODO: check +CVE-2010-4505 (Multiple SQL injection vulnerabilities in login.php in Injader 2.4.4, ...) + TODO: check +CVE-2010-4506 + RESERVED +CVE-2010-4507 + RESERVED +CVE-2010-4508 (The WebSockets implementation in Mozilla Firefox 4 through 4.0 Beta 7 ...) + TODO: check +CVE-2010-4509 (Multiple unspecified vulnerabilities in Movable Type 4.x before 4.35 ...) + TODO: check +CVE-2010-4510 + REJECTED + TODO: check +CVE-2010-4511 (Unspecified vulnerability in Movable Type 4.x before 4.35 and 5.x ...) + TODO: check +CVE-2010-4512 (Cobbler before 2.0.4 uses an incorrect umask value, which allows local ...) + TODO: check +CVE-2010-4513 (Multiple cross-site scripting (XSS) vulnerabilities in Zimplit CMS ...) + TODO: check +CVE-2010-4514 (Cross-site scripting (XSS) vulnerability in Install/InstallWizard.aspx ...) + TODO: check +CVE-2010-4515 (Cross-site scripting (XSS) vulnerability in Citrix Web Interface 5.0, ...) + TODO: check +CVE-2010-4516 (Multiple cross-site scripting (XSS) vulnerabilities in the JXtended ...) + TODO: check +CVE-2010-4517 (SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) ...) + TODO: check +CVE-2010-4518 (Cross-site scripting (XSS) vulnerability in ...) + TODO: check +CVE-2010-4519 + RESERVED +CVE-2010-4520 + RESERVED +CVE-2010-4521 + RESERVED +CVE-2010-4522 + RESERVED +CVE-2010-4523 + RESERVED +CVE-2010-4524 + RESERVED +CVE-2010-4525 + RESERVED +CVE-2010-4526 + RESERVED +CVE-2010-4527 + RESERVED +CVE-2010-4528 + RESERVED +CVE-2010-4529 + RESERVED +CVE-2010-4530 + RESERVED +CVE-2010-4531 + RESERVED +CVE-2010-4532 + RESERVED +CVE-2010-4533 + RESERVED +CVE-2010-4534 + RESERVED +CVE-2010-4535 + RESERVED +CVE-2010-4536 + RESERVED +CVE-2010-4537 + RESERVED +CVE-2010-4538 + RESERVED +CVE-2010-4539 + RESERVED +CVE-2010-4540 + RESERVED +CVE-2010-4541 + RESERVED +CVE-2010-4542 + RESERVED +CVE-2010-4543 + RESERVED +CVE-2011-0001 + RESERVED +CVE-2011-0002 + RESERVED +CVE-2011-0003 + RESERVED +CVE-2011-0004 + RESERVED +CVE-2011-0005 + RESERVED +CVE-2011-0006 + RESERVED +CVE-2011-0007 + RESERVED +CVE-2011-0008 + RESERVED +CVE-2011-0009 + RESERVED +CVE-2011-0010 + RESERVED +CVE-2011-0011 + RESERVED +CVE-2011-0012 + RESERVED +CVE-2011-0013 + RESERVED +CVE-2011-0014 + RESERVED +CVE-2011-0015 + RESERVED +CVE-2011-0016 + RESERVED +CVE-2011-0017 + RESERVED +CVE-2011-0018 + RESERVED +CVE-2011-0019 + RESERVED +CVE-2011-0020 + RESERVED +CVE-2011-0021 + RESERVED +CVE-2011-0022 + RESERVED +CVE-2011-0023 + RESERVED +CVE-2011-0024 + RESERVED +CVE-2011-0025 + RESERVED |