diff options
| author | Marcus Alves Grando <mnag@FreeBSD.org> | 2006-04-27 03:22:25 +0000 |
|---|---|---|
| committer | Marcus Alves Grando <mnag@FreeBSD.org> | 2006-04-27 03:22:25 +0000 |
| commit | ac69cc6c3cbe8706a285041079d067f016f2379f (patch) | |
| tree | d82cde93fe8e8c84885d40e39771ee16cbaa87e8 /security/vuxml/vuln.xml | |
| parent | c97506a8c5bdaf35679d33b0c21763b5850a603e (diff) | |
| download | ports-ac69cc6c3cbe8706a285041079d067f016f2379f.tar.gz ports-ac69cc6c3cbe8706a285041079d067f016f2379f.zip | |
Notes
Diffstat (limited to 'security/vuxml/vuln.xml')
| -rw-r--r-- | security/vuxml/vuln.xml | 35 |
1 files changed, 33 insertions, 2 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 4c94f481ab43..dfbd8f298868 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,37 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="116b0820-d59c-11da-8098-00123ffe8333"> + <topic>lifetype -- ADOdb "server.php" Insecure Test Script Security Issue</topic> + <affects> + <package> + <name>lifetype</name> + <range><lt>1.0.3</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>Secunia reports:</p> + <blockquote cite="http://secunia.com/advisories/19699/"> + <p>A security issue has been discovered in LifeType, which can be + exploited by malicious people to execute arbitrary SQL code and + potentially compromise a vulnerable system.</p> + <p>The problem is caused due to the presence of the insecure + "server.php" test script.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2006-0146</cvename> + <url>http://secunia.com/advisories/19699/</url> + <url>http://secunia.com/advisories/17418/</url> + </references> + <dates> + <discovery>2006-04-19</discovery> + <entry>2006-04-27</entry> + </dates> + </vuln> + <vuln vid="21c223f2-d596-11da-8098-00123ffe8333"> <topic>ethereal -- Multiple Protocol Dissector Vulnerabilities</topic> <affects> @@ -63,8 +94,6 @@ Note: Please add new entries to the beginning of this file. </body> </description> <references> - <url>http://www.ethereal.com/appnotes/enpa-sa-00023.html</url> - <url>http://secunia.com/advisories/19769/</url> <cvename>CVE-2006-1932</cvename> <cvename>CVE-2006-1933</cvename> <cvename>CVE-2006-1934</cvename> @@ -74,6 +103,8 @@ Note: Please add new entries to the beginning of this file. <cvename>CVE-2006-1938</cvename> <cvename>CVE-2006-1939</cvename> <cvename>CVE-2006-1940</cvename> + <url>http://www.ethereal.com/appnotes/enpa-sa-00023.html</url> + <url>http://secunia.com/advisories/19769/</url> </references> <dates> <discovery>2006-04-25</discovery> |