admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-19 17:32:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-03-18 00:50:43 +00:00
parent 80d9ed6067
commit 84d6d4bb00
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
49 changed files with 3851 additions and 3851 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

104
2006/1xxx/CVE-2006-1084.json
View File

@ -1,96 +1,96 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-1084", "ID": "CVE-2006-1084",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Multiple SQL injection vulnerabilities in PHP-Stats 0.1.9.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the option[prefix] parameter in admin.php and other unspecified PHP scripts, and (2) the PC_REMOTE_ADDR HTTP header to click.php." "value": "Multiple SQL injection vulnerabilities in PHP-Stats 0.1.9.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the option[prefix] parameter in admin.php and other unspecified PHP scripts, and (2) the PC_REMOTE_ADDR HTTP header to click.php."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20060304 PHP-Stats <= 0.1.9.1 remote commands execution", "name": "ADV-2006-0822",
"refsource" : "BUGTRAQ", "refsource": "VUPEN",
"url" : "http://www.securityfocus.com/archive/1/426762/100/0/threaded" "url": "http://www.vupen.com/english/advisories/2006/0822"
}, },
{ {
"name" : "http://retrogod.altervista.org/php_stats_0191_adv.html", "name": "20060322 Re: PHP-Stats <= 0.1.9.1 remote commands execution",
"refsource" : "MISC", "refsource": "BUGTRAQ",
"url" : "http://retrogod.altervista.org/php_stats_0191_adv.html" "url": "http://www.securityfocus.com/archive/1/428614/100/0/threaded"
}, },
{ {
"name" : "20060322 Re: PHP-Stats <= 0.1.9.1 remote commands execution", "name": "http://retrogod.altervista.org/php_stats_0191_adv.html",
"refsource" : "BUGTRAQ", "refsource": "MISC",
"url" : "http://www.securityfocus.com/archive/1/428614/100/0/threaded" "url": "http://retrogod.altervista.org/php_stats_0191_adv.html"
}, },
{ {
"name" : "http://www.phpstats.net/forum/viewtopic.php?t=140", "name": "20060304 PHP-Stats <= 0.1.9.1 remote commands execution",
"refsource" : "MISC", "refsource": "BUGTRAQ",
"url" : "http://www.phpstats.net/forum/viewtopic.php?t=140" "url": "http://www.securityfocus.com/archive/1/426762/100/0/threaded"
}, },
{ {
"name" : "20060327 Re: PHP-Stats <= 0.1.9.1 remote commands execution", "name": "20060327 Re: PHP-Stats <= 0.1.9.1 remote commands execution",
"refsource" : "BUGTRAQ", "refsource": "BUGTRAQ",
"url" : "http://www.securityfocus.com/archive/1/429145/100/0/threaded" "url": "http://www.securityfocus.com/archive/1/429145/100/0/threaded"
}, },
{ {
"name" : "16963", "name": "19116",
"refsource" : "BID", "refsource": "SECUNIA",
"url" : "http://www.securityfocus.com/bid/16963" "url": "http://secunia.com/advisories/19116"
}, },
{ {
"name" : "ADV-2006-0822", "name": "16963",
"refsource" : "VUPEN", "refsource": "BID",
"url" : "http://www.vupen.com/english/advisories/2006/0822" "url": "http://www.securityfocus.com/bid/16963"
}, },
{ {
"name" : "19116", "name": "http://www.phpstats.net/forum/viewtopic.php?t=140",
"refsource" : "SECUNIA", "refsource": "MISC",
"url" : "http://secunia.com/advisories/19116" "url": "http://www.phpstats.net/forum/viewtopic.php?t=140"
} }
] ]
} }

104
2006/1xxx/CVE-2006-1798.json
View File

@ -1,96 +1,96 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-1798", "ID": "CVE-2006-1798",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "SQL injection vulnerability in rateit.php in RateIt 2.2 allows remote attackers to execute arbitrary SQL commands via the rateit_id parameter." "value": "SQL injection vulnerability in rateit.php in RateIt 2.2 allows remote attackers to execute arbitrary SQL commands via the rateit_id parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20060424 [eVuln] RateIt SQL Injection Vulnerability", "name": "rateit-rateit-sql-injection(25801)",
"refsource" : "BUGTRAQ", "refsource": "XF",
"url" : "http://www.securityfocus.com/archive/1/431859/100/0/threaded" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25801"
}, },
{ {
"name" : "http://evuln.com/vulns/124/summary.html", "name": "20060424 [eVuln] RateIt SQL Injection Vulnerability",
"refsource" : "MISC", "refsource": "BUGTRAQ",
"url" : "http://evuln.com/vulns/124/summary.html" "url": "http://www.securityfocus.com/archive/1/431859/100/0/threaded"
}, },
{ {
"name" : "17518", "name": "http://evuln.com/vulns/124/summary.html",
"refsource" : "BID", "refsource": "MISC",
"url" : "http://www.securityfocus.com/bid/17518" "url": "http://evuln.com/vulns/124/summary.html"
}, },
{ {
"name" : "ADV-2006-1358", "name": "17518",
"refsource" : "VUPEN", "refsource": "BID",
"url" : "http://www.vupen.com/english/advisories/2006/1358" "url": "http://www.securityfocus.com/bid/17518"
}, },
{ {
"name" : "24622", "name": "1015983",
"refsource" : "OSVDB", "refsource": "SECTRACK",
"url" : "http://www.osvdb.org/24622" "url": "http://securitytracker.com/id?1015983"
}, },
{ {
"name" : "1015983", "name": "ADV-2006-1358",
"refsource" : "SECTRACK", "refsource": "VUPEN",
"url" : "http://securitytracker.com/id?1015983" "url": "http://www.vupen.com/english/advisories/2006/1358"
}, },
{ {
"name" : "19637", "name": "24622",
"refsource" : "SECUNIA", "refsource": "OSVDB",
"url" : "http://secunia.com/advisories/19637" "url": "http://www.osvdb.org/24622"
}, },
{ {
"name" : "rateit-rateit-sql-injection(25801)", "name": "19637",
"refsource" : "XF", "refsource": "SECUNIA",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/25801" "url": "http://secunia.com/advisories/19637"
} }
] ]
} }

104
2006/1xxx/CVE-2006-1971.json
View File

@ -1,96 +1,96 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-1971", "ID": "CVE-2006-1971",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Cross-site scripting (XSS) vulnerability in login.php in KRANKIKOM ContentBoxX allows remote attackers to inject arbitrary web script or HTML via the action parameter." "value": "Cross-site scripting (XSS) vulnerability in login.php in KRANKIKOM ContentBoxX allows remote attackers to inject arbitrary web script or HTML via the action parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20060419 ContentBoxx Login.php Cross-Site Scripting", "name": "779",
"refsource" : "BUGTRAQ", "refsource": "SREASON",
"url" : "http://www.securityfocus.com/archive/1/431386/100/0/threaded" "url": "http://securityreason.com/securityalert/779"
}, },
{ {
"name" : "17612", "name": "24768",
"refsource" : "BID", "refsource": "OSVDB",
"url" : "http://www.securityfocus.com/bid/17612" "url": "http://www.osvdb.org/24768"
}, },
{ {
"name" : "ADV-2006-1438", "name": "ADV-2006-1438",
"refsource" : "VUPEN", "refsource": "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2006/1438" "url": "http://www.vupen.com/english/advisories/2006/1438"
}, },
{ {
"name" : "24768", "name": "20060419 ContentBoxx Login.php Cross-Site Scripting",
"refsource" : "OSVDB", "refsource": "BUGTRAQ",
"url" : "http://www.osvdb.org/24768" "url": "http://www.securityfocus.com/archive/1/431386/100/0/threaded"
}, },
{ {
"name" : "19733", "name": "19733",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/19733" "url": "http://secunia.com/advisories/19733"
}, },
{ {
"name" : "740", "name": "17612",
"refsource" : "SREASON", "refsource": "BID",
"url" : "http://securityreason.com/securityalert/740" "url": "http://www.securityfocus.com/bid/17612"
}, },
{ {
"name" : "779", "name": "740",
"refsource" : "SREASON", "refsource": "SREASON",
"url" : "http://securityreason.com/securityalert/779" "url": "http://securityreason.com/securityalert/740"
}, },
{ {
"name" : "contentboxx-login-xss(25952)", "name": "contentboxx-login-xss(25952)",
"refsource" : "XF", "refsource": "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/25952" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25952"
} }
] ]
} }

104
2006/5xxx/CVE-2006-5013.json
View File

@ -1,96 +1,96 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-5013", "ID": "CVE-2006-5013",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Sun Solaris 10 before patch 118855-16 (20060925), when run on x64 systems using IPv6, allows remote attackers to cause a denial of service (kernel panic) via crafted IPv6 packets." "value": "Sun Solaris 10 before patch 118855-16 (20060925), when run on x64 systems using IPv6, allows remote attackers to cause a denial of service (kernel panic) via crafted IPv6 packets."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://support.avaya.com/elmodocs2/security/ASA-2006-235.htm", "name": "ADV-2006-3767",
"refsource" : "CONFIRM", "refsource": "VUPEN",
"url" : "http://support.avaya.com/elmodocs2/security/ASA-2006-235.htm" "url": "http://www.vupen.com/english/advisories/2006/3767"
}, },
{ {
"name" : "102568", "name": "oval:org.mitre.oval:def:1893",
"refsource" : "SUNALERT", "refsource": "OVAL",
"url" : "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102568-1" "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1893"
}, },
{ {
"name" : "20195", "name": "http://support.avaya.com/elmodocs2/security/ASA-2006-235.htm",
"refsource" : "BID", "refsource": "CONFIRM",
"url" : "http://www.securityfocus.com/bid/20195" "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-235.htm"
}, },
{ {
"name" : "ADV-2006-3767", "name": "20195",
"refsource" : "VUPEN", "refsource": "BID",
"url" : "http://www.vupen.com/english/advisories/2006/3767" "url": "http://www.securityfocus.com/bid/20195"
}, },
{ {
"name" : "oval:org.mitre.oval:def:1893", "name": "102568",
"refsource" : "OVAL", "refsource": "SUNALERT",
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1893" "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102568-1"
}, },
{ {
"name" : "1016930", "name": "1016930",
"refsource" : "SECTRACK", "refsource": "SECTRACK",
"url" : "http://securitytracker.com/id?1016930" "url": "http://securitytracker.com/id?1016930"
}, },
{ {
"name" : "22103", "name": "solaris-ipv6-dos(29150)",
"refsource" : "SECUNIA", "refsource": "XF",
"url" : "http://secunia.com/advisories/22103" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29150"
}, },
{ {
"name" : "solaris-ipv6-dos(29150)", "name": "22103",
"refsource" : "XF", "refsource": "SECUNIA",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/29150" "url": "http://secunia.com/advisories/22103"
} }
] ]
} }

110
2006/5xxx/CVE-2006-5157.json
View File

@ -1,101 +1,101 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-5157", "ID": "CVE-2006-5157",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Format string vulnerability in the ActiveX control (ATXCONSOLE.OCX) in TrendMicro OfficeScan Corporate Edition (OSCE) before 7.3 Patch 1 allows remote attackers to execute arbitrary code via format string identifiers in the \"Management Console's Remote Client Install name search\"." "value": "Format string vulnerability in the ActiveX control (ATXCONSOLE.OCX) in TrendMicro OfficeScan Corporate Edition (OSCE) before 7.3 Patch 1 allows remote attackers to execute arbitrary code via format string identifiers in the \"Management Console's Remote Client Install name search\"."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20061001 Layered Defense Advisory: TrendMicro OfficesScan Corporate Edition Format String Vulnerability", "name": "http://www.layereddefense.com/TREND01OCT.html",
"refsource" : "BUGTRAQ", "refsource": "MISC",
"url" : "http://www.securityfocus.com/archive/1/447498/100/0/threaded" "url": "http://www.layereddefense.com/TREND01OCT.html"
}, },
{ {
"name" : "http://www.layereddefense.com/TREND01OCT.html", "name": "ADV-2006-3870",
"refsource" : "MISC", "refsource": "VUPEN",
"url" : "http://www.layereddefense.com/TREND01OCT.html" "url": "http://www.vupen.com/english/advisories/2006/3870"
}, },
{ {
"name" : "VU#788860", "name": "officescan-atxconsole-format-string(29308)",
"refsource" : "CERT-VN", "refsource": "XF",
"url" : "http://www.kb.cert.org/vuls/id/788860" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29308"
}, },
{ {
"name" : "20284", "name": "1016963",
"refsource" : "BID", "refsource": "SECTRACK",
"url" : "http://www.securityfocus.com/bid/20284" "url": "http://securitytracker.com/id?1016963"
}, },
{ {
"name" : "ADV-2006-3870", "name": "VU#788860",
"refsource" : "VUPEN", "refsource": "CERT-VN",
"url" : "http://www.vupen.com/english/advisories/2006/3870" "url": "http://www.kb.cert.org/vuls/id/788860"
}, },
{ {
"name" : "1016963", "name": "20284",
"refsource" : "SECTRACK", "refsource": "BID",
"url" : "http://securitytracker.com/id?1016963" "url": "http://www.securityfocus.com/bid/20284"
}, },
{ {
"name" : "22224", "name": "20061001 Layered Defense Advisory: TrendMicro OfficesScan Corporate Edition Format String Vulnerability",
"refsource" : "SECUNIA", "refsource": "BUGTRAQ",
"url" : "http://secunia.com/advisories/22224" "url": "http://www.securityfocus.com/archive/1/447498/100/0/threaded"
}, },
{ {
"name" : "1682", "name": "1682",
"refsource" : "SREASON", "refsource": "SREASON",
"url" : "http://securityreason.com/securityalert/1682" "url": "http://securityreason.com/securityalert/1682"
}, },
{ {
"name" : "officescan-atxconsole-format-string(29308)", "name": "22224",
"refsource" : "XF", "refsource": "SECUNIA",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/29308" "url": "http://secunia.com/advisories/22224"
} }
] ]
} }

146
2006/5xxx/CVE-2006-5158.json
View File

@ -1,131 +1,131 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-5158", "ID": "CVE-2006-5158",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a kernel oops (null dereference) and a deadlock." "value": "The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a kernel oops (null dereference) and a deadlock."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "[linux-kernel] 20051216 lockd: couldn't create RPC handle for (host)", "name": "oval:org.mitre.oval:def:10128",
"refsource" : "MLIST", "refsource": "OVAL",
"url" : "http://marc.info/?l=linux-kernel&m=113476665626446&w=2" "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10128"
}, },
{ {
"name" : "[linux-kernel] 20051218 Re: lockd: couldn't create RPC handle for (host)", "name": "[linux-kernel] 20051218 Re: lockd: couldn't create RPC handle for (host)",
"refsource" : "MLIST", "refsource": "MLIST",
"url" : "http://marc.info/?l=linux-kernel&m=113494474208973&w=2" "url": "http://marc.info/?l=linux-kernel&m=113494474208973&w=2"
}, },
{ {
"name" : "http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9b5b1f5bf9dcdb6f23abf65977a675eb4deba3c0", "name": "23361",
"refsource" : "CONFIRM", "refsource": "SECUNIA",
"url" : "http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9b5b1f5bf9dcdb6f23abf65977a675eb4deba3c0" "url": "http://secunia.com/advisories/23361"
}, },
{ {
"name" : "http://support.avaya.com/elmodocs2/security/ASA-2007-287.htm", "name": "26289",
"refsource" : "CONFIRM", "refsource": "SECUNIA",
"url" : "http://support.avaya.com/elmodocs2/security/ASA-2007-287.htm" "url": "http://secunia.com/advisories/26289"
}, },
{ {
"name" : "MDKSA-2007:012", "name": "MDKSA-2007:012",
"refsource" : "MANDRIVA", "refsource": "MANDRIVA",
"url" : "http://www.mandriva.com/security/advisories?name=MDKSA-2007:012" "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:012"
}, },
{ {
"name" : "RHSA-2007:0488", "name": "25838",
"refsource" : "REDHAT", "refsource": "SECUNIA",
"url" : "http://rhn.redhat.com/errata/RHSA-2007-0488.html" "url": "http://secunia.com/advisories/25838"
}, },
{ {
"name" : "SUSE-SA:2006:057", "name": "23384",
"refsource" : "SUSE", "refsource": "SECUNIA",
"url" : "http://www.novell.com/linux/security/advisories/2006_57_kernel.html" "url": "http://secunia.com/advisories/23384"
}, },
{ {
"name" : "USN-395-1", "name": "http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9b5b1f5bf9dcdb6f23abf65977a675eb4deba3c0",
"refsource" : "UBUNTU", "refsource": "CONFIRM",
"url" : "http://www.ubuntu.com/usn/usn-395-1" "url": "http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=9b5b1f5bf9dcdb6f23abf65977a675eb4deba3c0"
}, },
{ {
"name" : "21581", "name": "[linux-kernel] 20051216 lockd: couldn't create RPC handle for (host)",
"refsource" : "BID", "refsource": "MLIST",
"url" : "http://www.securityfocus.com/bid/21581" "url": "http://marc.info/?l=linux-kernel&m=113476665626446&w=2"
}, },
{ {
"name" : "oval:org.mitre.oval:def:10128", "name": "23752",
"refsource" : "OVAL", "refsource": "SECUNIA",
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10128" "url": "http://secunia.com/advisories/23752"
}, },
{ {
"name" : "23361", "name": "21581",
"refsource" : "SECUNIA", "refsource": "BID",
"url" : "http://secunia.com/advisories/23361" "url": "http://www.securityfocus.com/bid/21581"
}, },
{ {
"name" : "23384", "name": "http://support.avaya.com/elmodocs2/security/ASA-2007-287.htm",
"refsource" : "SECUNIA", "refsource": "CONFIRM",
"url" : "http://secunia.com/advisories/23384" "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-287.htm"
}, },
{ {
"name" : "23752", "name": "USN-395-1",
"refsource" : "SECUNIA", "refsource": "UBUNTU",
"url" : "http://secunia.com/advisories/23752" "url": "http://www.ubuntu.com/usn/usn-395-1"
}, },
{ {
"name" : "25838", "name": "RHSA-2007:0488",
"refsource" : "SECUNIA", "refsource": "REDHAT",
"url" : "http://secunia.com/advisories/25838" "url": "http://rhn.redhat.com/errata/RHSA-2007-0488.html"
}, },
{ {
"name" : "26289", "name": "SUSE-SA:2006:057",
"refsource" : "SECUNIA", "refsource": "SUSE",
"url" : "http://secunia.com/advisories/26289" "url": "http://www.novell.com/linux/security/advisories/2006_57_kernel.html"
} }
] ]
} }

92
2006/5xxx/CVE-2006-5184.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-5184", "ID": "CVE-2006-5184",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "SQL injection vulnerability in PKR Internet Taskjitsu before 2.0.6 allows remote attackers to execute arbitrary SQL commands via the key parameter, when the limit query parameter is set to customerid." "value": "SQL injection vulnerability in PKR Internet Taskjitsu before 2.0.6 allows remote attackers to execute arbitrary SQL commands via the key parameter, when the limit query parameter is set to customerid."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://www.pkrinternet.com/taskjitsu/task/3517", "name": "https://www.pkrinternet.com/taskjitsu/task/3517",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://www.pkrinternet.com/taskjitsu/task/3517" "url": "https://www.pkrinternet.com/taskjitsu/task/3517"
}, },
{ {
"name" : "https://www.pkrinternet.com/download/RELEASE-NOTES.txt", "name": "1016978",
"refsource" : "CONFIRM", "refsource": "SECTRACK",
"url" : "https://www.pkrinternet.com/download/RELEASE-NOTES.txt" "url": "http://securitytracker.com/id?1016978"
}, },
{ {
"name" : "20332", "name": "20332",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/20332" "url": "http://www.securityfocus.com/bid/20332"
}, },
{ {
"name" : "ADV-2006-3903", "name": "22257",
"refsource" : "VUPEN", "refsource": "SECUNIA",
"url" : "http://www.vupen.com/english/advisories/2006/3903" "url": "http://secunia.com/advisories/22257"
}, },
{ {
"name" : "1016978", "name": "https://www.pkrinternet.com/download/RELEASE-NOTES.txt",
"refsource" : "SECTRACK", "refsource": "CONFIRM",
"url" : "http://securitytracker.com/id?1016978" "url": "https://www.pkrinternet.com/download/RELEASE-NOTES.txt"
}, },
{ {
"name" : "22257", "name": "ADV-2006-3903",
"refsource" : "SECUNIA", "refsource": "VUPEN",
"url" : "http://secunia.com/advisories/22257" "url": "http://www.vupen.com/english/advisories/2006/3903"
} }
] ]
} }

80
2006/5xxx/CVE-2006-5483.json
View File

@ -1,76 +1,76 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-5483", "ID": "CVE-2006-5483",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "p1003_1b.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by setting a scheduler policy, which should only be settable by root." "value": "p1003_1b.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by setting a scheduler policy, which should only be settable by root."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "[freebsd-cvs-src] 20060520 cvs commit: src/sys/posix4 p1003_1b.c", "name": "[freebsd-cvs-src] 20060520 cvs commit: src/sys/posix4 p1003_1b.c",
"refsource" : "MLIST", "refsource": "MLIST",
"url" : "http://lists.freebsd.org/pipermail/cvs-src/2006-May/063969.html" "url": "http://lists.freebsd.org/pipermail/cvs-src/2006-May/063969.html"
}, },
{ {
"name" : "http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/posix4/p1003_1b.c.diff?r1=1.24&r2=1.24.2.1", "name": "22413",
"refsource" : "CONFIRM", "refsource": "SECUNIA",
"url" : "http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/posix4/p1003_1b.c.diff?r1=1.24&r2=1.24.2.1" "url": "http://secunia.com/advisories/22413"
}, },
{ {
"name" : "20517", "name": "20517",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/20517" "url": "http://www.securityfocus.com/bid/20517"
}, },
{ {
"name" : "22413", "name": "http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/posix4/p1003_1b.c.diff?r1=1.24&r2=1.24.2.1",
"refsource" : "SECUNIA", "refsource": "CONFIRM",
"url" : "http://secunia.com/advisories/22413" "url": "http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/posix4/p1003_1b.c.diff?r1=1.24&r2=1.24.2.1"
} }
] ]
} }

68
2007/2xxx/CVE-2007-2047.json
View File

@ -1,66 +1,66 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2007-2047", "ID": "CVE-2007-2047",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "CRLF injection vulnerability in www/delivery/ck.php in Openads 2.3 (aka Max Media Manager, MMM) before 0.3.31-alpha-pr3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the destination parameter. NOTE: some of these details are obtained from third party information." "value": "CRLF injection vulnerability in www/delivery/ck.php in Openads 2.3 (aka Max Media Manager, MMM) before 0.3.31-alpha-pr3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the destination parameter. NOTE: some of these details are obtained from third party information."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://forum.openads.org/index.php?showtopic=503413399&pid=39136", "name": "http://forum.openads.org/index.php?showtopic=503413399&pid=39136",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://forum.openads.org/index.php?showtopic=503413399&pid=39136" "url": "http://forum.openads.org/index.php?showtopic=503413399&pid=39136"
}, },
{ {
"name" : "ADV-2007-1365", "name": "ADV-2007-1365",
"refsource" : "VUPEN", "refsource": "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2007/1365" "url": "http://www.vupen.com/english/advisories/2007/1365"
} }
] ]
} }

122
2007/2xxx/CVE-2007-2223.json
View File

@ -1,111 +1,111 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "secure@microsoft.com",
"ID" : "CVE-2007-2223", "ID": "CVE-2007-2223",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Microsoft XML Core Services (MSXML) 3.0 through 6.0 allows remote attackers to execute arbitrary code via the substringData method on a (1) TextNode or (2) XMLDOM object, which causes an integer overflow that leads to a buffer overflow." "value": "Microsoft XML Core Services (MSXML) 3.0 through 6.0 allows remote attackers to execute arbitrary code via the substringData method on a (1) TextNode or (2) XMLDOM object, which causes an integer overflow that leads to a buffer overflow."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20070814 Microsoft XML Core Services XMLDOM Memory Corruption Vulnerability", "name": "VU#361968",
"refsource" : "IDEFENSE", "refsource": "CERT-VN",
"url" : "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=576" "url": "http://www.kb.cert.org/vuls/id/361968"
}, },
{ {
"name" : "20070814 ZDI-07-048: Microsoft Internet Explorer substringData() Heap Overflow Vulnerability", "name": "1018559",
"refsource" : "BUGTRAQ", "refsource": "SECTRACK",
"url" : "http://www.securityfocus.com/archive/1/476527/100/0/threaded" "url": "http://www.securitytracker.com/id?1018559"
}, },
{ {
"name" : "20070816 MS07-042 XMLDOM substringData() PoC", "name": "20070816 MS07-042 XMLDOM substringData() PoC",
"refsource" : "BUGTRAQ", "refsource": "BUGTRAQ",
"url" : "http://www.securityfocus.com/archive/1/476747/100/0/threaded" "url": "http://www.securityfocus.com/archive/1/476747/100/0/threaded"
}, },
{ {
"name" : "http://www.zerodayinitiative.com/advisories/ZDI-07-048/", "name": "20070814 Microsoft XML Core Services XMLDOM Memory Corruption Vulnerability",
"refsource" : "MISC", "refsource": "IDEFENSE",
"url" : "http://www.zerodayinitiative.com/advisories/ZDI-07-048/" "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=576"
}, },
{ {
"name" : "MS07-042", "name": "ADV-2007-2866",
"refsource" : "MS", "refsource": "VUPEN",
"url" : "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-042" "url": "http://www.vupen.com/english/advisories/2007/2866"
}, },
{ {
"name" : "VU#361968", "name": "20070814 ZDI-07-048: Microsoft Internet Explorer substringData() Heap Overflow Vulnerability",
"refsource" : "CERT-VN", "refsource": "BUGTRAQ",
"url" : "http://www.kb.cert.org/vuls/id/361968" "url": "http://www.securityfocus.com/archive/1/476527/100/0/threaded"
}, },
{ {
"name" : "25301", "name": "25301",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/25301" "url": "http://www.securityfocus.com/bid/25301"
}, },
{ {
"name" : "ADV-2007-2866", "name": "MS07-042",
"refsource" : "VUPEN", "refsource": "MS",
"url" : "http://www.vupen.com/english/advisories/2007/2866" "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-042"
}, },
{ {
"name" : "oval:org.mitre.oval:def:2069", "name": "26447",
"refsource" : "OVAL", "refsource": "SECUNIA",
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2069" "url": "http://secunia.com/advisories/26447"
}, },
{ {
"name" : "1018559", "name": "http://www.zerodayinitiative.com/advisories/ZDI-07-048/",
"refsource" : "SECTRACK", "refsource": "MISC",
"url" : "http://www.securitytracker.com/id?1018559" "url": "http://www.zerodayinitiative.com/advisories/ZDI-07-048/"
}, },
{ {
"name" : "26447", "name": "oval:org.mitre.oval:def:2069",
"refsource" : "SECUNIA", "refsource": "OVAL",
"url" : "http://secunia.com/advisories/26447" "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2069"
} }
] ]
} }

86
2007/2xxx/CVE-2007-2364.json
View File

@ -1,81 +1,81 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2007-2364", "ID": "CVE-2007-2364",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Multiple PHP remote file inclusion vulnerabilities in burnCMS 0.2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the root parameter to (1) mysql.class.php or (2) postgres.class.php in lib/db/; or (3) authuser.php, (4) misc.php, or (5) connect.php in lib/." "value": "Multiple PHP remote file inclusion vulnerabilities in burnCMS 0.2 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the root parameter to (1) mysql.class.php or (2) postgres.class.php in lib/db/; or (3) authuser.php, (4) misc.php, or (5) connect.php in lib/."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "3809", "name": "3809",
"refsource" : "EXPLOIT-DB", "refsource": "EXPLOIT-DB",
"url" : "https://www.exploit-db.com/exploits/3809" "url": "https://www.exploit-db.com/exploits/3809"
}, },
{ {
"name" : "23691", "name": "35617",
"refsource" : "BID", "refsource": "OSVDB",
"url" : "http://www.securityfocus.com/bid/23691" "url": "http://osvdb.org/35617"
}, },
{ {
"name" : "ADV-2007-1557", "name": "23691",
"refsource" : "VUPEN", "refsource": "BID",
"url" : "http://www.vupen.com/english/advisories/2007/1557" "url": "http://www.securityfocus.com/bid/23691"
}, },
{ {
"name" : "35617", "name": "ADV-2007-1557",
"refsource" : "OSVDB", "refsource": "VUPEN",
"url" : "http://osvdb.org/35617" "url": "http://www.vupen.com/english/advisories/2007/1557"
}, },
{ {
"name" : "burncms-multiple-script-file-include(33938)", "name": "burncms-multiple-script-file-include(33938)",
"refsource" : "XF", "refsource": "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/33938" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33938"
} }
] ]
} }

104
2007/2xxx/CVE-2007-2526.json
View File

@ -1,96 +1,96 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2007-2526", "ID": "CVE-2007-2526",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Heap-based buffer overflow in the ConnectAsyncEx function in VNC Viewer ActiveX control (scvncctrl.dll) in the SmartCode VNC Manager 3.6 allows remote attackers to execute arbitrary code via a long argument." "value": "Heap-based buffer overflow in the ConnectAsyncEx function in VNC Viewer ActiveX control (scvncctrl.dll) in the SmartCode VNC Manager 3.6 allows remote attackers to execute arbitrary code via a long argument."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "3873", "name": "23869",
"refsource" : "EXPLOIT-DB", "refsource": "BID",
"url" : "http://www.exploit-db.com/exploits/3873" "url": "http://www.securityfocus.com/bid/23869"
}, },
{ {
"name" : "http://moaxb.blogspot.com/2007/05/moaxb-08-smartcode-vnc-manager-36.html", "name": "34340",
"refsource" : "MISC", "refsource": "OSVDB",
"url" : "http://moaxb.blogspot.com/2007/05/moaxb-08-smartcode-vnc-manager-36.html" "url": "http://osvdb.org/34340"
}, },
{ {
"name" : "http://www.shinnai.altervista.org/moaxb/20070508/scvncctrl.txt", "name": "http://www.shinnai.altervista.org/moaxb/20070508/scvncctrl.txt",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://www.shinnai.altervista.org/moaxb/20070508/scvncctrl.txt" "url": "http://www.shinnai.altervista.org/moaxb/20070508/scvncctrl.txt"
}, },
{ {
"name" : "23869", "name": "smartcode-vnc-scvncctrl-bo(34149)",
"refsource" : "BID", "refsource": "XF",
"url" : "http://www.securityfocus.com/bid/23869" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34149"
}, },
{ {
"name" : "34340", "name": "3873",
"refsource" : "OSVDB", "refsource": "EXPLOIT-DB",
"url" : "http://osvdb.org/34340" "url": "http://www.exploit-db.com/exploits/3873"
}, },
{ {
"name" : "ADV-2007-1704", "name": "http://moaxb.blogspot.com/2007/05/moaxb-08-smartcode-vnc-manager-36.html",
"refsource" : "VUPEN", "refsource": "MISC",
"url" : "http://www.vupen.com/english/advisories/2007/1704" "url": "http://moaxb.blogspot.com/2007/05/moaxb-08-smartcode-vnc-manager-36.html"
}, },
{ {
"name" : "25203", "name": "ADV-2007-1704",
"refsource" : "SECUNIA", "refsource": "VUPEN",
"url" : "http://secunia.com/advisories/25203" "url": "http://www.vupen.com/english/advisories/2007/1704"
}, },
{ {
"name" : "smartcode-vnc-scvncctrl-bo(34149)", "name": "25203",
"refsource" : "XF", "refsource": "SECUNIA",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/34149" "url": "http://secunia.com/advisories/25203"
} }
] ]
} }

92
2007/2xxx/CVE-2007-2594.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2007-2594", "ID": "CVE-2007-2594",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "PHP remote file inclusion vulnerability in inc/articles.inc.php in phpMyPortal 3.0.0 RC3 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[CHEMINMODULES] parameter." "value": "PHP remote file inclusion vulnerability in inc/articles.inc.php in phpMyPortal 3.0.0 RC3 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[CHEMINMODULES] parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "3879", "name": "35908",
"refsource" : "EXPLOIT-DB", "refsource": "OSVDB",
"url" : "https://www.exploit-db.com/exploits/3879" "url": "http://osvdb.org/35908"
}, },
{ {
"name" : "23898", "name": "ADV-2007-1738",
"refsource" : "BID", "refsource": "VUPEN",
"url" : "http://www.securityfocus.com/bid/23898" "url": "http://www.vupen.com/english/advisories/2007/1738"
}, },
{ {
"name" : "ADV-2007-1738", "name": "3879",
"refsource" : "VUPEN", "refsource": "EXPLOIT-DB",
"url" : "http://www.vupen.com/english/advisories/2007/1738" "url": "https://www.exploit-db.com/exploits/3879"
}, },
{ {
"name" : "35908", "name": "25210",
"refsource" : "OSVDB", "refsource": "SECUNIA",
"url" : "http://osvdb.org/35908" "url": "http://secunia.com/advisories/25210"
}, },
{ {
"name" : "25210", "name": "phpmyportal-articles-file-include(34186)",
"refsource" : "SECUNIA", "refsource": "XF",
"url" : "http://secunia.com/advisories/25210" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34186"
}, },
{ {
"name" : "phpmyportal-articles-file-include(34186)", "name": "23898",
"refsource" : "XF", "refsource": "BID",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/34186" "url": "http://www.securityfocus.com/bid/23898"
} }
] ]
} }

122
2010/0xxx/CVE-2010-0221.json
View File

@ -1,111 +1,111 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2010-0221", "ID": "CVE-2010-0221",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Kingston DataTraveler BlackBox (DTBB), DataTraveler Secure Privacy Edition (DTSP), and DataTraveler Elite Privacy Edition (DTEP) USB flash drives validate passwords with a program running on the host computer rather than the device hardware, which allows physically proximate attackers to access the cleartext drive contents via a modified program." "value": "Kingston DataTraveler BlackBox (DTBB), DataTraveler Secure Privacy Edition (DTSP), and DataTraveler Elite Privacy Edition (DTEP) USB flash drives validate passwords with a program running on the host computer rather than the device hardware, which allows physically proximate attackers to access the cleartext drive contents via a modified program."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://blogs.zdnet.com/hardware/?p=6655", "name": "http://www.kingston.com/driveupdate/",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://blogs.zdnet.com/hardware/?p=6655" "url": "http://www.kingston.com/driveupdate/"
}, },
{ {
"name" : "http://it.slashdot.org/story/10/01/05/1734242/", "name": "http://www.syss.de/index.php?id=108&tx_ttnews[tt_news]=528&cHash=8d16fa63d9",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://it.slashdot.org/story/10/01/05/1734242/" "url": "http://www.syss.de/index.php?id=108&tx_ttnews[tt_news]=528&cHash=8d16fa63d9"
}, },
{ {
"name" : "http://news.zdnet.co.uk/security/0,1000000189,39963327,00.htm", "name": "1023410",
"refsource" : "MISC", "refsource": "SECTRACK",
"url" : "http://news.zdnet.co.uk/security/0,1000000189,39963327,00.htm" "url": "http://securitytracker.com/id?1023410"
}, },
{ {
"name" : "http://www.h-online.com/security/news/item/NIST-certified-USB-Flash-drives-with-hardware-encryption-cracked-895308.html", "name": "http://it.slashdot.org/story/10/01/05/1734242/",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://www.h-online.com/security/news/item/NIST-certified-USB-Flash-drives-with-hardware-encryption-cracked-895308.html" "url": "http://it.slashdot.org/story/10/01/05/1734242/"
}, },
{ {
"name" : "http://www.kingston.com/driveupdate/", "name": "http://news.zdnet.co.uk/security/0,1000000189,39963327,00.htm",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://www.kingston.com/driveupdate/" "url": "http://news.zdnet.co.uk/security/0,1000000189,39963327,00.htm"
}, },
{ {
"name" : "http://www.syss.de/fileadmin/ressources/040_veroeffentlichungen/dokumente/SySS_knackt_Kingston_USB-Stick.pdf", "name": "http://www.h-online.com/security/news/item/NIST-certified-USB-Flash-drives-with-hardware-encryption-cracked-895308.html",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://www.syss.de/fileadmin/ressources/040_veroeffentlichungen/dokumente/SySS_knackt_Kingston_USB-Stick.pdf" "url": "http://www.h-online.com/security/news/item/NIST-certified-USB-Flash-drives-with-hardware-encryption-cracked-895308.html"
}, },
{ {
"name" : "http://www.syss.de/index.php?id=108&tx_ttnews[tt_news]=528&cHash=8d16fa63d9", "name": "http://blogs.zdnet.com/hardware/?p=6655",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://www.syss.de/index.php?id=108&tx_ttnews[tt_news]=528&cHash=8d16fa63d9" "url": "http://blogs.zdnet.com/hardware/?p=6655"
}, },
{ {
"name" : "https://www.ironkey.com/usb-flash-drive-flaw-exposed", "name": "kingston-access-control-sec-bypass(55477)",
"refsource" : "MISC", "refsource": "XF",
"url" : "https://www.ironkey.com/usb-flash-drive-flaw-exposed" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/55477"
}, },
{ {
"name" : "1023410", "name": "http://www.syss.de/fileadmin/ressources/040_veroeffentlichungen/dokumente/SySS_knackt_Kingston_USB-Stick.pdf",
"refsource" : "SECTRACK", "refsource": "MISC",
"url" : "http://securitytracker.com/id?1023410" "url": "http://www.syss.de/fileadmin/ressources/040_veroeffentlichungen/dokumente/SySS_knackt_Kingston_USB-Stick.pdf"
}, },
{ {
"name" : "ADV-2010-0080", "name": "ADV-2010-0080",
"refsource" : "VUPEN", "refsource": "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2010/0080" "url": "http://www.vupen.com/english/advisories/2010/0080"
}, },
{ {
"name" : "kingston-access-control-sec-bypass(55477)", "name": "https://www.ironkey.com/usb-flash-drive-flaw-exposed",
"refsource" : "XF", "refsource": "MISC",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/55477" "url": "https://www.ironkey.com/usb-flash-drive-flaw-exposed"
} }
] ]
} }

110
2010/0xxx/CVE-2010-0447.json
View File

@ -1,101 +1,101 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "hp-security-alert@hp.com",
"ID" : "CVE-2010-0447", "ID": "CVE-2010-0447",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbitrary commands via vectors involving upload of a JSP document." "value": "The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbitrary commands via vectors involving upload of a JSP document."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20100309 ZDI-10-026: Hewlett-Packard OVPI helpmanager Servlet Remote Code Execution Vulnerability", "name": "20100309 ZDI-10-026: Hewlett-Packard OVPI helpmanager Servlet Remote Code Execution Vulnerability",
"refsource" : "BUGTRAQ", "refsource": "BUGTRAQ",
"url" : "http://www.securityfocus.com/archive/1/509984/100/0/threaded" "url": "http://www.securityfocus.com/archive/1/509984/100/0/threaded"
}, },
{ {
"name" : "http://www.zerodayinitiative.com/advisories/ZDI-10-026", "name": "38899",
"refsource" : "MISC", "refsource": "SECUNIA",
"url" : "http://www.zerodayinitiative.com/advisories/ZDI-10-026" "url": "http://secunia.com/advisories/38899"
}, },
{ {
"name" : "HPSBMA02489", "name": "38611",
"refsource" : "HP", "refsource": "BID",
"url" : "http://marc.info/?l=bugtraq&m=126815897824020&w=2" "url": "http://www.securityfocus.com/bid/38611"
}, },
{ {
"name" : "SSRT090065", "name": "hp-performance-unspec-command-exec(56757)",
"refsource" : "HP", "refsource": "XF",
"url" : "http://marc.info/?l=bugtraq&m=126815897824020&w=2" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/56757"
}, },
{ {
"name" : "38611", "name": "http://www.zerodayinitiative.com/advisories/ZDI-10-026",
"refsource" : "BID", "refsource": "MISC",
"url" : "http://www.securityfocus.com/bid/38611" "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-026"
}, },
{ {
"name" : "62797", "name": "62797",
"refsource" : "OSVDB", "refsource": "OSVDB",
"url" : "http://osvdb.org/62797" "url": "http://osvdb.org/62797"
}, },
{ {
"name" : "38899", "name": "HPSBMA02489",
"refsource" : "SECUNIA", "refsource": "HP",
"url" : "http://secunia.com/advisories/38899" "url": "http://marc.info/?l=bugtraq&m=126815897824020&w=2"
}, },
{ {
"name" : "ADV-2010-0555", "name": "SSRT090065",
"refsource" : "VUPEN", "refsource": "HP",
"url" : "http://www.vupen.com/english/advisories/2010/0555" "url": "http://marc.info/?l=bugtraq&m=126815897824020&w=2"
}, },
{ {
"name" : "hp-performance-unspec-command-exec(56757)", "name": "ADV-2010-0555",
"refsource" : "XF", "refsource": "VUPEN",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/56757" "url": "http://www.vupen.com/english/advisories/2010/0555"
} }
] ]
} }

86
2010/0xxx/CVE-2010-0469.json
View File

@ -1,81 +1,81 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2010-0469", "ID": "CVE-2010-0469",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "SQL injection vulnerability in Files2Links F2L 3000 appliance 4.0.0, and possibly other versions and models, allows remote attackers to execute arbitrary SQL commands via unspecified parameters to the login page." "value": "SQL injection vulnerability in Files2Links F2L 3000 appliance 4.0.0, and possibly other versions and models, allows remote attackers to execute arbitrary SQL commands via unspecified parameters to the login page."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20100125 DDIVRT-2009-27 F2L-3000 files2links SQL Injection Vulnerability", "name": "38310",
"refsource" : "FULLDISC", "refsource": "SECUNIA",
"url" : "http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0499.html" "url": "http://secunia.com/advisories/38310"
}, },
{ {
"name" : "http://packetstormsecurity.org/1001-advisories/DDIVRT-2009-27.txt", "name": "f2l3000-login-sql-injection(55950)",
"refsource" : "MISC", "refsource": "XF",
"url" : "http://packetstormsecurity.org/1001-advisories/DDIVRT-2009-27.txt" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/55950"
}, },
{ {
"name" : "61976", "name": "20100125 DDIVRT-2009-27 F2L-3000 files2links SQL Injection Vulnerability",
"refsource" : "OSVDB", "refsource": "FULLDISC",
"url" : "http://osvdb.org/61976" "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0499.html"
}, },
{ {
"name" : "38310", "name": "61976",
"refsource" : "SECUNIA", "refsource": "OSVDB",
"url" : "http://secunia.com/advisories/38310" "url": "http://osvdb.org/61976"
}, },
{ {
"name" : "f2l3000-login-sql-injection(55950)", "name": "http://packetstormsecurity.org/1001-advisories/DDIVRT-2009-27.txt",
"refsource" : "XF", "refsource": "MISC",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/55950" "url": "http://packetstormsecurity.org/1001-advisories/DDIVRT-2009-27.txt"
} }
] ]
} }

74
2010/0xxx/CVE-2010-0619.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2010-0619", "ID": "CVE-2010-0619",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Stack-based buffer overflow in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser printers and multi-function printers allows remote attackers to execute arbitrary code or cause a denial of service (device hang) via a long argument to a PJL INQUIRE command." "value": "Stack-based buffer overflow in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser printers and multi-function printers allows remote attackers to execute arbitrary code or cause a denial of service (device hang) via a long argument to a PJL INQUIRE command."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20100322 {PRL} Lexmark Multiple Laser Printer Remote Stack Overflow", "name": "20100322 {PRL} Lexmark Multiple Laser Printer Remote Stack Overflow",
"refsource" : "BUGTRAQ", "refsource": "BUGTRAQ",
"url" : "http://www.securityfocus.com/archive/1/510251/100/0/threaded" "url": "http://www.securityfocus.com/archive/1/510251/100/0/threaded"
}, },
{ {
"name" : "http://support.lexmark.com/index?page=content&id=TE84&locale=EN&userlocale=EN_US", "name": "http://support.lexmark.com/index?page=content&id=TE84&locale=EN&userlocale=EN_US",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://support.lexmark.com/index?page=content&id=TE84&locale=EN&userlocale=EN_US" "url": "http://support.lexmark.com/index?page=content&id=TE84&locale=EN&userlocale=EN_US"
}, },
{ {
"name" : "38901", "name": "38901",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/38901" "url": "http://www.securityfocus.com/bid/38901"
} }
] ]
} }

92
2010/1xxx/CVE-2010-1379.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "product-security@apple.com",
"ID" : "CVE-2010-1379", "ID": "CVE-2010-1379",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Printer Setup in Apple Mac OS X 10.6 before 10.6.4 does not properly interpret character encoding, which allows remote attackers to cause a denial of service (printing failure) by deploying a printing device that has a Unicode character in its printing-service name." "value": "Printer Setup in Apple Mac OS X 10.6 before 10.6.4 does not properly interpret character encoding, which allows remote attackers to cause a denial of service (printing failure) by deploying a printing device that has a Unicode character in its printing-service name."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://support.apple.com/kb/HT4188", "name": "APPLE-SA-2010-06-15-1",
"refsource" : "CONFIRM", "refsource": "APPLE",
"url" : "http://support.apple.com/kb/HT4188" "url": "http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html"
}, },
{ {
"name" : "APPLE-SA-2010-06-15-1", "name": "ADV-2010-1481",
"refsource" : "APPLE", "refsource": "VUPEN",
"url" : "http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html" "url": "http://www.vupen.com/english/advisories/2010/1481"
}, },
{ {
"name" : "40871", "name": "40871",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/40871" "url": "http://www.securityfocus.com/bid/40871"
}, },
{ {
"name" : "1024103", "name": "1024103",
"refsource" : "SECTRACK", "refsource": "SECTRACK",
"url" : "http://securitytracker.com/id?1024103" "url": "http://securitytracker.com/id?1024103"
}, },
{ {
"name" : "40220", "name": "http://support.apple.com/kb/HT4188",
"refsource" : "SECUNIA", "refsource": "CONFIRM",
"url" : "http://secunia.com/advisories/40220" "url": "http://support.apple.com/kb/HT4188"
}, },
{ {
"name" : "ADV-2010-1481", "name": "40220",
"refsource" : "VUPEN", "refsource": "SECUNIA",
"url" : "http://www.vupen.com/english/advisories/2010/1481" "url": "http://secunia.com/advisories/40220"
} }
] ]
} }

80
2010/1xxx/CVE-2010-1754.json
View File

@ -1,76 +1,76 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "product-security@apple.com",
"ID" : "CVE-2010-1754", "ID": "CVE-2010-1754",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch does not properly handle alert-based unlocks in conjunction with subsequent Remote Lock operations through MobileMe, which allows physically proximate attackers to bypass intended passcode requirements via unspecified vectors." "value": "Passcode Lock in Apple iOS before 4 on the iPhone and iPod touch does not properly handle alert-based unlocks in conjunction with subsequent Remote Lock operations through MobileMe, which allows physically proximate attackers to bypass intended passcode requirements via unspecified vectors."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://support.apple.com/kb/HT4225", "name": "http://support.apple.com/kb/HT4225",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://support.apple.com/kb/HT4225" "url": "http://support.apple.com/kb/HT4225"
}, },
{ {
"name" : "APPLE-SA-2010-06-21-1", "name": "appleios-passcodelock-security-bypass(59633)",
"refsource" : "APPLE", "refsource": "XF",
"url" : "http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/59633"
}, },
{ {
"name" : "41016", "name": "41016",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/41016" "url": "http://www.securityfocus.com/bid/41016"
}, },
{ {
"name" : "appleios-passcodelock-security-bypass(59633)", "name": "APPLE-SA-2010-06-21-1",
"refsource" : "XF", "refsource": "APPLE",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/59633" "url": "http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html"
} }
] ]
} }

74
2010/1xxx/CVE-2010-1803.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "product-security@apple.com",
"ID" : "CVE-2010-1803", "ID": "CVE-2010-1803",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Time Machine in Apple Mac OS X 10.6.x before 10.6.5 does not verify the unique identifier of its remote AFP volume, which allows remote attackers to obtain sensitive information by spoofing this volume." "value": "Time Machine in Apple Mac OS X 10.6.x before 10.6.5 does not verify the unique identifier of its remote AFP volume, which allows remote attackers to obtain sensitive information by spoofing this volume."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://support.apple.com/kb/HT4435", "name": "1024723",
"refsource" : "CONFIRM", "refsource": "SECTRACK",
"url" : "http://support.apple.com/kb/HT4435" "url": "http://www.securitytracker.com/id?1024723"
}, },
{ {
"name" : "APPLE-SA-2010-11-10-1", "name": "http://support.apple.com/kb/HT4435",
"refsource" : "APPLE", "refsource": "CONFIRM",
"url" : "http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html" "url": "http://support.apple.com/kb/HT4435"
}, },
{ {
"name" : "1024723", "name": "APPLE-SA-2010-11-10-1",
"refsource" : "SECTRACK", "refsource": "APPLE",
"url" : "http://www.securitytracker.com/id?1024723" "url": "http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html"
} }
] ]
} }

86
2010/1xxx/CVE-2010-1937.json
View File

@ -1,81 +1,81 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2010-1937", "ID": "CVE-2010-1937",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Heap-based buffer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB before 1.3.8 might allow remote attackers to execute arbitrary code via a Content-Length HTTP header that specifies a value too small for the amount of POST data, aka bug #3001896." "value": "Heap-based buffer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB before 1.3.8 might allow remote attackers to execute arbitrary code via a Content-Length HTTP header that specifies a value too small for the amount of POST data, aka bug #3001896."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "[oss-security] 20100601 SFCB vulnerabilities", "name": "http://sblim.cvs.sourceforge.net/viewvc/sblim/sfcb/httpAdapter.c?r1=1.84&r2=1.85",
"refsource" : "MLIST", "refsource": "CONFIRM",
"url" : "http://marc.info/?l=bugtraq&m=127549079109192&w=2" "url": "http://sblim.cvs.sourceforge.net/viewvc/sblim/sfcb/httpAdapter.c?r1=1.84&r2=1.85"
}, },
{ {
"name" : "http://sblim.cvs.sourceforge.net/viewvc/sblim/sfcb/httpAdapter.c?r1=1.84&r2=1.85", "name": "http://sourceforge.net/tracker/index.php?func=detail&aid=3001896&group_id=128809&atid=712784",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://sblim.cvs.sourceforge.net/viewvc/sblim/sfcb/httpAdapter.c?r1=1.84&r2=1.85" "url": "http://sourceforge.net/tracker/index.php?func=detail&aid=3001896&group_id=128809&atid=712784"
}, },
{ {
"name" : "http://sourceforge.net/tracker/index.php?func=detail&aid=3001896&group_id=128809&atid=712784", "name": "40018",
"refsource" : "CONFIRM", "refsource": "SECUNIA",
"url" : "http://sourceforge.net/tracker/index.php?func=detail&aid=3001896&group_id=128809&atid=712784" "url": "http://secunia.com/advisories/40018"
}, },
{ {
"name" : "40018", "name": "ADV-2010-1312",
"refsource" : "SECUNIA", "refsource": "VUPEN",
"url" : "http://secunia.com/advisories/40018" "url": "http://www.vupen.com/english/advisories/2010/1312"
}, },
{ {
"name" : "ADV-2010-1312", "name": "[oss-security] 20100601 SFCB vulnerabilities",
"refsource" : "VUPEN", "refsource": "MLIST",
"url" : "http://www.vupen.com/english/advisories/2010/1312" "url": "http://marc.info/?l=bugtraq&m=127549079109192&w=2"
} }
] ]
} }

92
2010/4xxx/CVE-2010-4419.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "secalert_us@oracle.com",
"ID" : "CVE-2010-4419", "ID": "CVE-2010-4419",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Unspecified vulnerability in the PeopleSoft Enterprise CRM component in Oracle PeopleSoft and JDEdwards Suite 9.0 Bundle #31 and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Order Capture." "value": "Unspecified vulnerability in the PeopleSoft Enterprise CRM component in Oracle PeopleSoft and JDEdwards Suite 9.0 Bundle #31 and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Order Capture."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html", "name": "ADV-2011-0147",
"refsource" : "CONFIRM", "refsource": "VUPEN",
"url" : "http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html" "url": "http://www.vupen.com/english/advisories/2011/0147"
}, },
{ {
"name" : "45879", "name": "45879",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/45879" "url": "http://www.securityfocus.com/bid/45879"
}, },
{ {
"name" : "1024978", "name": "peoplesoft-ordercapture-unauth-access(64792)",
"refsource" : "SECTRACK", "refsource": "XF",
"url" : "http://www.securitytracker.com/id?1024978" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64792"
}, },
{ {
"name" : "42981", "name": "1024978",
"refsource" : "SECUNIA", "refsource": "SECTRACK",
"url" : "http://secunia.com/advisories/42981" "url": "http://www.securitytracker.com/id?1024978"
}, },
{ {
"name" : "ADV-2011-0147", "name": "http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html",
"refsource" : "VUPEN", "refsource": "CONFIRM",
"url" : "http://www.vupen.com/english/advisories/2011/0147" "url": "http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html"
}, },
{ {
"name" : "peoplesoft-ordercapture-unauth-access(64792)", "name": "42981",
"refsource" : "XF", "refsource": "SECUNIA",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/64792" "url": "http://secunia.com/advisories/42981"
} }
] ]
} }

68
2010/4xxx/CVE-2010-4601.json
View File

@ -1,66 +1,66 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2010-4601", "ID": "CVE-2010-4601",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Multiple unspecified vulnerabilities in IBM Rational ClearQuest 7.0.x before 7.0.1.11, 7.1.1.x before 7.1.1.4, and 7.1.2.x before 7.1.2.1 allow attackers to have an unknown impact via vectors related to third-party .ocx files." "value": "Multiple unspecified vulnerabilities in IBM Rational ClearQuest 7.0.x before 7.0.1.11, 7.1.1.x before 7.1.1.4, and 7.1.2.x before 7.1.2.1 allow attackers to have an unknown impact via vectors related to third-party .ocx files."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "PM01811", "name": "PM01811",
"refsource" : "AIXAPAR", "refsource": "AIXAPAR",
"url" : "http://www-01.ibm.com/support/docview.wss?uid=swg1PM01811" "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1PM01811"
}, },
{ {
"name" : "42624", "name": "42624",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/42624" "url": "http://secunia.com/advisories/42624"
} }
] ]
} }

98
2010/4xxx/CVE-2010-4963.json
View File

@ -1,91 +1,91 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2010-4963", "ID": "CVE-2010-4963",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "SQL injection vulnerability in folder/list in Hulihan BXR 0.6.8 allows remote attackers to execute arbitrary SQL commands via the order_by parameter." "value": "SQL injection vulnerability in folder/list in Hulihan BXR 0.6.8 allows remote attackers to execute arbitrary SQL commands via the order_by parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20100805 SQL injection vulnerability in BXR", "name": "http://www.htbridge.ch/advisory/sql_injection_vulnerability_in_bxr.html",
"refsource" : "BUGTRAQ", "refsource": "MISC",
"url" : "http://www.securityfocus.com/archive/1/512887/100/0/threaded" "url": "http://www.htbridge.ch/advisory/sql_injection_vulnerability_in_bxr.html"
}, },
{ {
"name" : "http://packetstormsecurity.org/1008-exploits/bxr-sqlxssxsrf.txt", "name": "40875",
"refsource" : "MISC", "refsource": "SECUNIA",
"url" : "http://packetstormsecurity.org/1008-exploits/bxr-sqlxssxsrf.txt" "url": "http://secunia.com/advisories/40875"
}, },
{ {
"name" : "http://www.htbridge.ch/advisory/sql_injection_vulnerability_in_bxr.html", "name": "20100805 SQL injection vulnerability in BXR",
"refsource" : "MISC", "refsource": "BUGTRAQ",
"url" : "http://www.htbridge.ch/advisory/sql_injection_vulnerability_in_bxr.html" "url": "http://www.securityfocus.com/archive/1/512887/100/0/threaded"
}, },
{ {
"name" : "http://dev.hulihanapplications.com/issues/show/203", "name": "http://dev.hulihanapplications.com/issues/show/203",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://dev.hulihanapplications.com/issues/show/203" "url": "http://dev.hulihanapplications.com/issues/show/203"
}, },
{ {
"name" : "40875", "name": "8470",
"refsource" : "SECUNIA", "refsource": "SREASON",
"url" : "http://secunia.com/advisories/40875" "url": "http://securityreason.com/securityalert/8470"
}, },
{ {
"name" : "8470", "name": "http://packetstormsecurity.org/1008-exploits/bxr-sqlxssxsrf.txt",
"refsource" : "SREASON", "refsource": "MISC",
"url" : "http://securityreason.com/securityalert/8470" "url": "http://packetstormsecurity.org/1008-exploits/bxr-sqlxssxsrf.txt"
}, },
{ {
"name" : "ADV-2010-2023", "name": "ADV-2010-2023",
"refsource" : "VUPEN", "refsource": "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2010/2023" "url": "http://www.vupen.com/english/advisories/2010/2023"
} }
] ]
} }

116
2010/5xxx/CVE-2010-5328.json
View File

@ -1,106 +1,106 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2010-5328", "ID": "CVE-2010-5328",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "include/linux/init_task.h in the Linux kernel before 2.6.35 does not prevent signals with a process group ID of zero from reaching the swapper process, which allows local users to cause a denial of service (system crash) by leveraging access to this process group." "value": "include/linux/init_task.h in the Linux kernel before 2.6.35 does not prevent signals with a process group ID of zero from reaching the swapper process, which allows local users to cause a denial of service (system crash) by leveraging access to this process group."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "[oss-security] 20170120 Re: CVE REQUEST: linux kernel: process with pgid zero able to crash", "name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fa2755e20ab0c7215d99c2dc7c262e98a09b01df",
"refsource" : "MLIST", "refsource": "CONFIRM",
"url" : "http://www.openwall.com/lists/oss-security/2017/01/21/2" "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fa2755e20ab0c7215d99c2dc7c262e98a09b01df"
}, },
{ {
"name" : "http://ftp.naist.jp/pub/linux/kernel/v2.6/ChangeLog-2.6.35", "name": "https://github.com/torvalds/linux/commit/fa2755e20ab0c7215d99c2dc7c262e98a09b01df",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://ftp.naist.jp/pub/linux/kernel/v2.6/ChangeLog-2.6.35" "url": "https://github.com/torvalds/linux/commit/fa2755e20ab0c7215d99c2dc7c262e98a09b01df"
}, },
{ {
"name" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f106eee10038c2ee5b6056aaf3f6d5229be6dcdd", "name": "https://github.com/torvalds/linux/commit/f20011457f41c11edb5ea5038ad0c8ea9f392023",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f106eee10038c2ee5b6056aaf3f6d5229be6dcdd" "url": "https://github.com/torvalds/linux/commit/f20011457f41c11edb5ea5038ad0c8ea9f392023"
}, },
{ {
"name" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f20011457f41c11edb5ea5038ad0c8ea9f392023", "name": "http://ftp.naist.jp/pub/linux/kernel/v2.6/ChangeLog-2.6.35",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f20011457f41c11edb5ea5038ad0c8ea9f392023" "url": "http://ftp.naist.jp/pub/linux/kernel/v2.6/ChangeLog-2.6.35"
}, },
{ {
"name" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fa2755e20ab0c7215d99c2dc7c262e98a09b01df", "name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f106eee10038c2ee5b6056aaf3f6d5229be6dcdd",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fa2755e20ab0c7215d99c2dc7c262e98a09b01df" "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f106eee10038c2ee5b6056aaf3f6d5229be6dcdd"
}, },
{ {
"name" : "https://bugzilla.redhat.com/show_bug.cgi?id=1358840", "name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f20011457f41c11edb5ea5038ad0c8ea9f392023",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1358840" "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f20011457f41c11edb5ea5038ad0c8ea9f392023"
}, },
{ {
"name" : "https://github.com/torvalds/linux/commit/f106eee10038c2ee5b6056aaf3f6d5229be6dcdd", "name": "[oss-security] 20170120 Re: CVE REQUEST: linux kernel: process with pgid zero able to crash",
"refsource" : "CONFIRM", "refsource": "MLIST",
"url" : "https://github.com/torvalds/linux/commit/f106eee10038c2ee5b6056aaf3f6d5229be6dcdd" "url": "http://www.openwall.com/lists/oss-security/2017/01/21/2"
}, },
{ {
"name" : "https://github.com/torvalds/linux/commit/f20011457f41c11edb5ea5038ad0c8ea9f392023", "name": "https://github.com/torvalds/linux/commit/f106eee10038c2ee5b6056aaf3f6d5229be6dcdd",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://github.com/torvalds/linux/commit/f20011457f41c11edb5ea5038ad0c8ea9f392023" "url": "https://github.com/torvalds/linux/commit/f106eee10038c2ee5b6056aaf3f6d5229be6dcdd"
}, },
{ {
"name" : "https://github.com/torvalds/linux/commit/fa2755e20ab0c7215d99c2dc7c262e98a09b01df", "name": "97103",
"refsource" : "CONFIRM", "refsource": "BID",
"url" : "https://github.com/torvalds/linux/commit/fa2755e20ab0c7215d99c2dc7c262e98a09b01df" "url": "http://www.securityfocus.com/bid/97103"
}, },
{ {
"name" : "97103", "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1358840",
"refsource" : "BID", "refsource": "CONFIRM",
"url" : "http://www.securityfocus.com/bid/97103" "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1358840"
} }
] ]
} }

62
2014/0xxx/CVE-2014-0587.json
View File

@ -1,61 +1,61 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "psirt@adobe.com",
"ID" : "CVE-2014-0587", "ID": "CVE-2014-0587",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9164." "value": "Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9164."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://helpx.adobe.com/security/products/flash-player/apsb14-27.html", "name": "http://helpx.adobe.com/security/products/flash-player/apsb14-27.html",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://helpx.adobe.com/security/products/flash-player/apsb14-27.html" "url": "http://helpx.adobe.com/security/products/flash-player/apsb14-27.html"
} }
] ]
} }

62
2014/1xxx/CVE-2014-1258.json
View File

@ -1,61 +1,61 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "product-security@apple.com",
"ID" : "CVE-2014-1258", "ID": "CVE-2014-1258",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Heap-based buffer overflow in CoreAnimation in Apple OS X before 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted image." "value": "Heap-based buffer overflow in CoreAnimation in Apple OS X before 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted image."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://support.apple.com/kb/HT6150", "name": "http://support.apple.com/kb/HT6150",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://support.apple.com/kb/HT6150" "url": "http://support.apple.com/kb/HT6150"
} }
] ]
} }

98
2014/1xxx/CVE-2014-1635.json
View File

@ -1,91 +1,91 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2014-1635", "ID": "CVE-2014-1635",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Buffer overflow in login.cgi in MiniHttpd in Belkin N750 Router with firmware before F9K1103_WW_1.10.17m allows remote attackers to execute arbitrary code via a long string in the jump parameter." "value": "Buffer overflow in login.cgi in MiniHttpd in Belkin N750 Router with firmware before F9K1103_WW_1.10.17m allows remote attackers to execute arbitrary code via a long string in the jump parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "35184", "name": "https://labs.integrity.pt/articles/from-0-day-to-exploit-buffer-overflow-in-belkin-n750-cve-2014-1635/",
"refsource" : "EXPLOIT-DB", "refsource": "MISC",
"url" : "http://www.exploit-db.com/exploits/35184" "url": "https://labs.integrity.pt/articles/from-0-day-to-exploit-buffer-overflow-in-belkin-n750-cve-2014-1635/"
}, },
{ {
"name" : "https://labs.integrity.pt/advisories/cve-2014-1635/", "name": "35184",
"refsource" : "MISC", "refsource": "EXPLOIT-DB",
"url" : "https://labs.integrity.pt/advisories/cve-2014-1635/" "url": "http://www.exploit-db.com/exploits/35184"
}, },
{ {
"name" : "https://labs.integrity.pt/articles/from-0-day-to-exploit-buffer-overflow-in-belkin-n750-cve-2014-1635/", "name": "http://www.belkin.com/us/support-article?articleNum=4831",
"refsource" : "MISC", "refsource": "CONFIRM",
"url" : "https://labs.integrity.pt/articles/from-0-day-to-exploit-buffer-overflow-in-belkin-n750-cve-2014-1635/" "url": "http://www.belkin.com/us/support-article?articleNum=4831"
}, },
{ {
"name" : "http://www.belkin.com/us/support-article?articleNum=4831", "name": "https://labs.integrity.pt/advisories/cve-2014-1635/",
"refsource" : "CONFIRM", "refsource": "MISC",
"url" : "http://www.belkin.com/us/support-article?articleNum=4831" "url": "https://labs.integrity.pt/advisories/cve-2014-1635/"
}, },
{ {
"name" : "70977", "name": "114345",
"refsource" : "BID", "refsource": "OSVDB",
"url" : "http://www.securityfocus.com/bid/70977" "url": "http://osvdb.org/show/osvdb/114345"
}, },
{ {
"name" : "114345", "name": "1031210",
"refsource" : "OSVDB", "refsource": "SECTRACK",
"url" : "http://osvdb.org/show/osvdb/114345" "url": "http://www.securitytracker.com/id/1031210"
}, },
{ {
"name" : "1031210", "name": "70977",
"refsource" : "SECTRACK", "refsource": "BID",
"url" : "http://www.securitytracker.com/id/1031210" "url": "http://www.securityfocus.com/bid/70977"
} }
] ]
} }

80
2014/1xxx/CVE-2014-1929.json
View File

@ -1,76 +1,76 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2014-1929", "ID": "CVE-2014-1929",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "python-gnupg 0.3.5 and 0.3.6 allows context-dependent attackers to have an unspecified impact via vectors related to \"option injection through positional arguments.\" NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7323." "value": "python-gnupg 0.3.5 and 0.3.6 allows context-dependent attackers to have an unspecified impact via vectors related to \"option injection through positional arguments.\" NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7323."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "[oss-security] 20140204 Re: CVE request: python-gnupg before 0.3.5 shell injection", "name": "DSA-2946",
"refsource" : "MLIST", "refsource": "DEBIAN",
"url" : "http://seclists.org/oss-sec/2014/q1/245" "url": "http://www.debian.org/security/2014/dsa-2946"
}, },
{ {
"name" : "[oss-security] 20140212 Re: CVE request: python-gnupg before 0.3.5 shell injection", "name": "[oss-security] 20140204 Re: CVE request: python-gnupg before 0.3.5 shell injection",
"refsource" : "MLIST", "refsource": "MLIST",
"url" : "http://seclists.org/oss-sec/2014/q1/335" "url": "http://seclists.org/oss-sec/2014/q1/245"
}, },
{ {
"name" : "DSA-2946", "name": "[oss-security] 20140212 Re: CVE request: python-gnupg before 0.3.5 shell injection",
"refsource" : "DEBIAN", "refsource": "MLIST",
"url" : "http://www.debian.org/security/2014/dsa-2946" "url": "http://seclists.org/oss-sec/2014/q1/335"
}, },
{ {
"name" : "59031", "name": "59031",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/59031" "url": "http://secunia.com/advisories/59031"
} }
] ]
} }

146
2014/4xxx/CVE-2014-4341.json
View File

@ -1,131 +1,131 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2014-4341", "ID": "CVE-2014-4341",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session." "value": "MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://krbdev.mit.edu/rt/Ticket/Display.html?id=7949", "name": "https://github.com/krb5/krb5/commit/e6ae703ae597d798e310368d52b8f38ee11c6a73",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://krbdev.mit.edu/rt/Ticket/Display.html?id=7949" "url": "https://github.com/krb5/krb5/commit/e6ae703ae597d798e310368d52b8f38ee11c6a73"
}, },
{ {
"name" : "https://github.com/krb5/krb5/commit/e6ae703ae597d798e310368d52b8f38ee11c6a73", "name": "mit-kerberos-cve20144341-dos(94904)",
"refsource" : "CONFIRM", "refsource": "XF",
"url" : "https://github.com/krb5/krb5/commit/e6ae703ae597d798e310368d52b8f38ee11c6a73" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94904"
}, },
{ {
"name" : "http://advisories.mageia.org/MGASA-2014-0345.html", "name": "http://aix.software.ibm.com/aix/efixes/security/nas_advisory1.asc",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://advisories.mageia.org/MGASA-2014-0345.html" "url": "http://aix.software.ibm.com/aix/efixes/security/nas_advisory1.asc"
}, },
{ {
"name" : "http://aix.software.ibm.com/aix/efixes/security/nas_advisory1.asc", "name": "RHSA-2015:0439",
"refsource" : "CONFIRM", "refsource": "REDHAT",
"url" : "http://aix.software.ibm.com/aix/efixes/security/nas_advisory1.asc" "url": "http://rhn.redhat.com/errata/RHSA-2015-0439.html"
}, },
{ {
"name" : "DSA-3000", "name": "60448",
"refsource" : "DEBIAN", "refsource": "SECUNIA",
"url" : "http://www.debian.org/security/2014/dsa-3000" "url": "http://secunia.com/advisories/60448"
}, },
{ {
"name" : "FEDORA-2014-8189", "name": "FEDORA-2014-8189",
"refsource" : "FEDORA", "refsource": "FEDORA",
"url" : "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136360.html" "url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136360.html"
}, },
{ {
"name" : "GLSA-201412-53", "name": "68909",
"refsource" : "GENTOO", "refsource": "BID",
"url" : "http://security.gentoo.org/glsa/glsa-201412-53.xml" "url": "http://www.securityfocus.com/bid/68909"
}, },
{ {
"name" : "MDVSA-2014:165", "name": "http://krbdev.mit.edu/rt/Ticket/Display.html?id=7949",
"refsource" : "MANDRIVA", "refsource": "CONFIRM",
"url" : "http://www.mandriva.com/security/advisories?name=MDVSA-2014:165" "url": "http://krbdev.mit.edu/rt/Ticket/Display.html?id=7949"
}, },
{ {
"name" : "RHSA-2015:0439", "name": "DSA-3000",
"refsource" : "REDHAT", "refsource": "DEBIAN",
"url" : "http://rhn.redhat.com/errata/RHSA-2015-0439.html" "url": "http://www.debian.org/security/2014/dsa-3000"
}, },
{ {
"name" : "68909", "name": "MDVSA-2014:165",
"refsource" : "BID", "refsource": "MANDRIVA",
"url" : "http://www.securityfocus.com/bid/68909" "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:165"
}, },
{ {
"name" : "1030706", "name": "GLSA-201412-53",
"refsource" : "SECTRACK", "refsource": "GENTOO",
"url" : "http://www.securitytracker.com/id/1030706" "url": "http://security.gentoo.org/glsa/glsa-201412-53.xml"
}, },
{ {
"name" : "60448", "name": "1030706",
"refsource" : "SECUNIA", "refsource": "SECTRACK",
"url" : "http://secunia.com/advisories/60448" "url": "http://www.securitytracker.com/id/1030706"
}, },
{ {
"name" : "59102", "name": "60082",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/59102" "url": "http://secunia.com/advisories/60082"
}, },
{ {
"name" : "60082", "name": "http://advisories.mageia.org/MGASA-2014-0345.html",
"refsource" : "SECUNIA", "refsource": "CONFIRM",
"url" : "http://secunia.com/advisories/60082" "url": "http://advisories.mageia.org/MGASA-2014-0345.html"
}, },
{ {
"name" : "mit-kerberos-cve20144341-dos(94904)", "name": "59102",
"refsource" : "XF", "refsource": "SECUNIA",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/94904" "url": "http://secunia.com/advisories/59102"
} }
] ]
} }

104
2014/4xxx/CVE-2014-4369.json
View File

@ -1,96 +1,96 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "product-security@apple.com",
"ID" : "CVE-2014-4369", "ID": "CVE-2014-4369",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The IOAcceleratorFamily API implementation in Apple iOS before 8 and Apple TV before 7 allows attackers to cause a denial of service (NULL pointer dereference and device crash) via an application that uses crafted arguments." "value": "The IOAcceleratorFamily API implementation in Apple iOS before 8 and Apple TV before 7 allows attackers to cause a denial of service (NULL pointer dereference and device crash) via an application that uses crafted arguments."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://support.apple.com/kb/HT6441", "name": "http://support.apple.com/kb/HT6441",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://support.apple.com/kb/HT6441" "url": "http://support.apple.com/kb/HT6441"
}, },
{ {
"name" : "http://support.apple.com/kb/HT6442", "name": "1030866",
"refsource" : "CONFIRM", "refsource": "SECTRACK",
"url" : "http://support.apple.com/kb/HT6442" "url": "http://www.securitytracker.com/id/1030866"
}, },
{ {
"name" : "APPLE-SA-2014-09-17-1", "name": "69929",
"refsource" : "APPLE", "refsource": "BID",
"url" : "http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html" "url": "http://www.securityfocus.com/bid/69929"
}, },
{ {
"name" : "APPLE-SA-2014-09-17-2", "name": "http://support.apple.com/kb/HT6442",
"refsource" : "APPLE", "refsource": "CONFIRM",
"url" : "http://archives.neohapsis.com/archives/bugtraq/2014-09/0107.html" "url": "http://support.apple.com/kb/HT6442"
}, },
{ {
"name" : "69882", "name": "APPLE-SA-2014-09-17-2",
"refsource" : "BID", "refsource": "APPLE",
"url" : "http://www.securityfocus.com/bid/69882" "url": "http://archives.neohapsis.com/archives/bugtraq/2014-09/0107.html"
}, },
{ {
"name" : "69929", "name": "69882",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/69929" "url": "http://www.securityfocus.com/bid/69882"
}, },
{ {
"name" : "1030866", "name": "appleios-cve20144369-dos(96106)",
"refsource" : "SECTRACK", "refsource": "XF",
"url" : "http://www.securitytracker.com/id/1030866" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/96106"
}, },
{ {
"name" : "appleios-cve20144369-dos(96106)", "name": "APPLE-SA-2014-09-17-1",
"refsource" : "XF", "refsource": "APPLE",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/96106" "url": "http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html"
} }
] ]
} }

92
2014/4xxx/CVE-2014-4664.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2014-4664", "ID": "CVE-2014-4664",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Cross-site scripting (XSS) vulnerability in the Wordfence Security plugin before 5.1.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the whoisval parameter on the WordfenceWhois page to wp-admin/admin.php." "value": "Cross-site scripting (XSS) vulnerability in the Wordfence Security plugin before 5.1.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the whoisval parameter on the WordfenceWhois page to wp-admin/admin.php."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20141105 WordPress Wordfence Firewall 5.1.2 Cross Site Scripting", "name": "70911",
"refsource" : "BUGTRAQ", "refsource": "BID",
"url" : "http://www.securityfocus.com/archive/1/533907/100/0/threaded" "url": "http://www.securityfocus.com/bid/70911"
}, },
{ {
"name" : "http://hacktivity.websecgeeks.com/word-press-firewall-plugin-xss/", "name": "20141105 WordPress Wordfence Firewall 5.1.2 Cross Site Scripting",
"refsource" : "MISC", "refsource": "BUGTRAQ",
"url" : "http://hacktivity.websecgeeks.com/word-press-firewall-plugin-xss/" "url": "http://www.securityfocus.com/archive/1/533907/100/0/threaded"
}, },
{ {
"name" : "http://www.wordfence.com/blog/2014/06/security-fix-wordfence-5-1-4/", "name": "http://www.wordfence.com/blog/2014/06/security-fix-wordfence-5-1-4/",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www.wordfence.com/blog/2014/06/security-fix-wordfence-5-1-4/" "url": "http://www.wordfence.com/blog/2014/06/security-fix-wordfence-5-1-4/"
}, },
{ {
"name" : "https://wordpress.org/plugins/wordfence/changelog/", "name": "http://hacktivity.websecgeeks.com/word-press-firewall-plugin-xss/",
"refsource" : "CONFIRM", "refsource": "MISC",
"url" : "https://wordpress.org/plugins/wordfence/changelog/" "url": "http://hacktivity.websecgeeks.com/word-press-firewall-plugin-xss/"
}, },
{ {
"name" : "70911", "name": "70915",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/70911" "url": "http://www.securityfocus.com/bid/70915"
}, },
{ {
"name" : "70915", "name": "https://wordpress.org/plugins/wordfence/changelog/",
"refsource" : "BID", "refsource": "CONFIRM",
"url" : "http://www.securityfocus.com/bid/70915" "url": "https://wordpress.org/plugins/wordfence/changelog/"
} }
] ]
} }

62
2014/4xxx/CVE-2014-4861.json
View File

@ -1,61 +1,61 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cert@cert.org",
"ID" : "CVE-2014-4861", "ID": "CVE-2014-4861",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The Remote Desktop Launcher in Thycotic Secret Server before 8.6.000010 does not properly cleanup a temporary file that contains an encrypted password once a session has ended." "value": "The Remote Desktop Launcher in Thycotic Secret Server before 8.6.000010 does not properly cleanup a temporary file that contains an encrypted password once a session has ended."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://thycotic.com/products/secret-server/resources/advisories/cve-2014-4861/", "name": "http://thycotic.com/products/secret-server/resources/advisories/cve-2014-4861/",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://thycotic.com/products/secret-server/resources/advisories/cve-2014-4861/" "url": "http://thycotic.com/products/secret-server/resources/advisories/cve-2014-4861/"
} }
] ]
} }

74
2014/4xxx/CVE-2014-4889.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cert@cert.org",
"ID" : "CVE-2014-4889", "ID": "CVE-2014-4889",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The Diabetic Diet Guide (aka com.wDiabeticDietGuide) application 2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate." "value": "The Diabetic Diet Guide (aka com.wDiabeticDietGuide) application 2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing", "name": "VU#771257",
"refsource" : "MISC", "refsource": "CERT-VN",
"url" : "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing" "url": "http://www.kb.cert.org/vuls/id/771257"
}, },
{ {
"name" : "VU#582497", "name": "VU#582497",
"refsource" : "CERT-VN", "refsource": "CERT-VN",
"url" : "http://www.kb.cert.org/vuls/id/582497" "url": "http://www.kb.cert.org/vuls/id/582497"
}, },
{ {
"name" : "VU#771257", "name": "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing",
"refsource" : "CERT-VN", "refsource": "MISC",
"url" : "http://www.kb.cert.org/vuls/id/771257" "url": "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing"
} }
] ]
} }

74
2014/4xxx/CVE-2014-4891.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cert@cert.org",
"ID" : "CVE-2014-4891", "ID": "CVE-2014-4891",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The CT iHub (aka com.concursive.ctihub) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate." "value": "The CT iHub (aka com.concursive.ctihub) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing", "name": "VU#587953",
"refsource" : "MISC", "refsource": "CERT-VN",
"url" : "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing" "url": "http://www.kb.cert.org/vuls/id/587953"
}, },
{ {
"name" : "VU#582497", "name": "VU#582497",
"refsource" : "CERT-VN", "refsource": "CERT-VN",
"url" : "http://www.kb.cert.org/vuls/id/582497" "url": "http://www.kb.cert.org/vuls/id/582497"
}, },
{ {
"name" : "VU#587953", "name": "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing",
"refsource" : "CERT-VN", "refsource": "MISC",
"url" : "http://www.kb.cert.org/vuls/id/587953" "url": "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing"
} }
] ]
} }

22
2014/9xxx/CVE-2014-9533.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2014-9533", "ID": "CVE-2014-9533",
"STATE" : "RESERVED" "STATE": "RESERVED"
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
} }
] ]
} }

74
2016/3xxx/CVE-2016-3416.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "secalert_us@oracle.com",
"ID" : "CVE-2016-3416", "ID": "CVE-2016-3416",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, 12.1.3, and 12.2.1 allows remote attackers to affect confidentiality and integrity via vectors related to Console." "value": "Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, 12.1.3, and 12.2.1 allows remote attackers to affect confidentiality and integrity via vectors related to Console."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", "name": "86461",
"refsource" : "CONFIRM", "refsource": "BID",
"url" : "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html" "url": "http://www.securityfocus.com/bid/86461"
}, },
{ {
"name" : "86461", "name": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html",
"refsource" : "BID", "refsource": "CONFIRM",
"url" : "http://www.securityfocus.com/bid/86461" "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
}, },
{ {
"name" : "1035615", "name": "1035615",
"refsource" : "SECTRACK", "refsource": "SECTRACK",
"url" : "http://www.securitytracker.com/id/1035615" "url": "http://www.securitytracker.com/id/1035615"
} }
] ]
} }

74
2016/3xxx/CVE-2016-3455.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "secalert_us@oracle.com",
"ID" : "CVE-2016-3455", "ID": "CVE-2016-3455",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Outside In Filters." "value": "Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Outside In Filters."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html", "name": "86437",
"refsource" : "CONFIRM", "refsource": "BID",
"url" : "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html" "url": "http://www.securityfocus.com/bid/86437"
}, },
{ {
"name" : "86437", "name": "1035618",
"refsource" : "BID", "refsource": "SECTRACK",
"url" : "http://www.securityfocus.com/bid/86437" "url": "http://www.securitytracker.com/id/1035618"
}, },
{ {
"name" : "1035618", "name": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html",
"refsource" : "SECTRACK", "refsource": "CONFIRM",
"url" : "http://www.securitytracker.com/id/1035618" "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html"
} }
] ]
} }

80
2016/3xxx/CVE-2016-3531.json
View File

@ -1,76 +1,76 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "secalert_us@oracle.com",
"ID" : "CVE-2016-3531", "ID": "CVE-2016-3531",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to PC / Notification." "value": "Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to PC / Notification."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html", "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html" "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
}, },
{ {
"name" : "91787", "name": "92018",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/91787" "url": "http://www.securityfocus.com/bid/92018"
}, },
{ {
"name" : "92018", "name": "1036402",
"refsource" : "BID", "refsource": "SECTRACK",
"url" : "http://www.securityfocus.com/bid/92018" "url": "http://www.securitytracker.com/id/1036402"
}, },
{ {
"name" : "1036402", "name": "91787",
"refsource" : "SECTRACK", "refsource": "BID",
"url" : "http://www.securitytracker.com/id/1036402" "url": "http://www.securityfocus.com/bid/91787"
} }
] ]
} }

22
2016/3xxx/CVE-2016-3665.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2016-3665", "ID": "CVE-2016-3665",
"STATE" : "RESERVED" "STATE": "RESERVED"
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
} }
] ]
} }

98
2016/3xxx/CVE-2016-3981.json
View File

@ -1,91 +1,91 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2016-3981", "ID": "CVE-2016-3981",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Heap-based buffer overflow in the bmp_read_rows function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file." "value": "Heap-based buffer overflow in the bmp_read_rows function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://bugs.fi/media/afl/optipng/1/", "name": "http://bugs.fi/media/afl/optipng/1/",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://bugs.fi/media/afl/optipng/1/" "url": "http://bugs.fi/media/afl/optipng/1/"
}, },
{ {
"name" : "https://sourceforge.net/p/optipng/bugs/56/", "name": "https://sourceforge.net/p/optipng/bugs/56/",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://sourceforge.net/p/optipng/bugs/56/" "url": "https://sourceforge.net/p/optipng/bugs/56/"
}, },
{ {
"name" : "DSA-3546", "name": "openSUSE-SU-2016:1082",
"refsource" : "DEBIAN", "refsource": "SUSE",
"url" : "http://www.debian.org/security/2016/dsa-3546" "url": "http://lists.opensuse.org/opensuse-updates/2016-04/msg00065.html"
}, },
{ {
"name" : "GLSA-201608-01", "name": "DSA-3546",
"refsource" : "GENTOO", "refsource": "DEBIAN",
"url" : "https://security.gentoo.org/glsa/201608-01" "url": "http://www.debian.org/security/2016/dsa-3546"
}, },
{ {
"name" : "openSUSE-SU-2016:1078", "name": "USN-2951-1",
"refsource" : "SUSE", "refsource": "UBUNTU",
"url" : "http://lists.opensuse.org/opensuse-updates/2016-04/msg00061.html" "url": "http://www.ubuntu.com/usn/USN-2951-1"
}, },
{ {
"name" : "openSUSE-SU-2016:1082", "name": "openSUSE-SU-2016:1078",
"refsource" : "SUSE", "refsource": "SUSE",
"url" : "http://lists.opensuse.org/opensuse-updates/2016-04/msg00065.html" "url": "http://lists.opensuse.org/opensuse-updates/2016-04/msg00061.html"
}, },
{ {
"name" : "USN-2951-1", "name": "GLSA-201608-01",
"refsource" : "UBUNTU", "refsource": "GENTOO",
"url" : "http://www.ubuntu.com/usn/USN-2951-1" "url": "https://security.gentoo.org/glsa/201608-01"
} }
] ]
} }

74
2016/6xxx/CVE-2016-6676.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "security@android.com",
"ID" : "CVE-2016-6676", "ID": "CVE-2016-6676",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Off-by-one error in CORE/HDD/src/wlan_hdd_cfg.c in the Qualcomm Wi-Fi driver in Android before 2016-10-05 on Nexus 5X and Android One devices allows attackers to gain privileges or cause a denial of service (buffer overflow) via a crafted application that makes a GET_CFG ioctl call, aka Android internal bug 30874066 and Qualcomm internal bug CR 1000853." "value": "Off-by-one error in CORE/HDD/src/wlan_hdd_cfg.c in the Qualcomm Wi-Fi driver in Android before 2016-10-05 on Nexus 5X and Android One devices allows attackers to gain privileges or cause a denial of service (buffer overflow) via a crafted application that makes a GET_CFG ioctl call, aka Android internal bug 30874066 and Qualcomm internal bug CR 1000853."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://source.android.com/security/bulletin/2016-10-01.html", "name": "https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=6ba9136879232442a182996427e5c88e5a7512a8",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://source.android.com/security/bulletin/2016-10-01.html" "url": "https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=6ba9136879232442a182996427e5c88e5a7512a8"
}, },
{ {
"name" : "https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=6ba9136879232442a182996427e5c88e5a7512a8", "name": "http://source.android.com/security/bulletin/2016-10-01.html",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://source.codeaurora.org/quic/la//platform/vendor/qcom-opensource/wlan/qcacld-2.0/commit/?id=6ba9136879232442a182996427e5c88e5a7512a8" "url": "http://source.android.com/security/bulletin/2016-10-01.html"
}, },
{ {
"name" : "93328", "name": "93328",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/93328" "url": "http://www.securityfocus.com/bid/93328"
} }
] ]
} }

22
2016/7xxx/CVE-2016-7720.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "data_type": "CVE",
"ASSIGNER" : "cve@mitre.org", "data_format": "MITRE",
"ID" : "CVE-2016-7720", "data_version": "4.0",
"STATE" : "REJECT" "CVE_data_meta": {
"ID": "CVE-2016-7720",
"ASSIGNER": "cve@mitre.org",
"STATE": "REJECT"
}, },
"data_format" : "MITRE", "description": {
"data_type" : "CVE", "description_data": [
"data_version" : "4.0",
"description" : {
"description_data" : [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none." "value": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none."
} }
] ]
} }

62
2016/7xxx/CVE-2016-7742.json
View File

@ -1,61 +1,61 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "product-security@apple.com", "ASSIGNER": "product-security@apple.com",
"ID" : "CVE-2016-7742", "ID": "CVE-2016-7742",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the \"xar\" component, which allows remote attackers to execute arbitrary code via a crafted archive that triggers use of uninitialized memory locations." "value": "An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the \"xar\" component, which allows remote attackers to execute arbitrary code via a crafted archive that triggers use of uninitialized memory locations."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://support.apple.com/HT207423", "name": "https://support.apple.com/HT207423",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://support.apple.com/HT207423" "url": "https://support.apple.com/HT207423"
} }
] ]
} }

98
2016/7xxx/CVE-2016-7857.json
View File

@ -1,91 +1,91 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "psirt@adobe.com", "ASSIGNER": "psirt@adobe.com",
"ID" : "CVE-2016-7857", "ID": "CVE-2016-7857",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "Adobe Flash Player 23.0.0.205 and earlier, 11.2.202.643 and earlier", "product_name": "Adobe Flash Player 23.0.0.205 and earlier, 11.2.202.643 and earlier",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "Adobe Flash Player 23.0.0.205 and earlier, 11.2.202.643 and earlier" "version_value": "Adobe Flash Player 23.0.0.205 and earlier, 11.2.202.643 and earlier"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution." "value": "Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Use after free" "value": "Use after free"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.zerodayinitiative.com/advisories/ZDI-16-596", "name": "MS16-141",
"refsource" : "MISC", "refsource": "MS",
"url" : "http://www.zerodayinitiative.com/advisories/ZDI-16-596" "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-141"
}, },
{ {
"name" : "https://helpx.adobe.com/security/products/flash-player/apsb16-37.html", "name": "https://helpx.adobe.com/security/products/flash-player/apsb16-37.html",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://helpx.adobe.com/security/products/flash-player/apsb16-37.html" "url": "https://helpx.adobe.com/security/products/flash-player/apsb16-37.html"
}, },
{ {
"name" : "GLSA-201611-18", "name": "94153",
"refsource" : "GENTOO", "refsource": "BID",
"url" : "https://security.gentoo.org/glsa/201611-18" "url": "http://www.securityfocus.com/bid/94153"
}, },
{ {
"name" : "MS16-141", "name": "RHSA-2016:2676",
"refsource" : "MS", "refsource": "REDHAT",
"url" : "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-141" "url": "http://rhn.redhat.com/errata/RHSA-2016-2676.html"
}, },
{ {
"name" : "RHSA-2016:2676", "name": "http://www.zerodayinitiative.com/advisories/ZDI-16-596",
"refsource" : "REDHAT", "refsource": "MISC",
"url" : "http://rhn.redhat.com/errata/RHSA-2016-2676.html" "url": "http://www.zerodayinitiative.com/advisories/ZDI-16-596"
}, },
{ {
"name" : "94153", "name": "1037240",
"refsource" : "BID", "refsource": "SECTRACK",
"url" : "http://www.securityfocus.com/bid/94153" "url": "http://www.securitytracker.com/id/1037240"
}, },
{ {
"name" : "1037240", "name": "GLSA-201611-18",
"refsource" : "SECTRACK", "refsource": "GENTOO",
"url" : "http://www.securitytracker.com/id/1037240" "url": "https://security.gentoo.org/glsa/201611-18"
} }
] ]
} }

22
2016/8xxx/CVE-2016-8088.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "data_type": "CVE",
"ASSIGNER" : "cve@mitre.org", "data_format": "MITRE",
"ID" : "CVE-2016-8088", "data_version": "4.0",
"STATE" : "REJECT" "CVE_data_meta": {
"ID": "CVE-2016-8088",
"ASSIGNER": "cve@mitre.org",
"STATE": "REJECT"
}, },
"data_format" : "MITRE", "description": {
"data_type" : "CVE", "description_data": [
"data_version" : "4.0",
"description" : {
"description_data" : [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none." "value": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none."
} }
] ]
} }

64
2016/8xxx/CVE-2016-8535.json
View File

@ -1,62 +1,62 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "security-alert@hpe.com", "ASSIGNER": "security-alert@hpe.com",
"DATE_PUBLIC" : "2017-02-03T00:00:00", "DATE_PUBLIC": "2017-02-03T00:00:00",
"ID" : "CVE-2016-8535", "ID": "CVE-2016-8535",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "Matrix Operating Environment", "product_name": "Matrix Operating Environment",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "v7.6" "version_value": "v7.6"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "Hewlett Packard Enterprise" "vendor_name": "Hewlett Packard Enterprise"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "A remote HTTP parameter Pollution vulnerability in HPE Matrix Operating Environment version 7.6 was found." "value": "A remote HTTP parameter Pollution vulnerability in HPE Matrix Operating Environment version 7.6 was found."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Http Parameter Pollutio" "value": "Http Parameter Pollutio"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05385680", "name": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05385680",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05385680" "url": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-c05385680"
} }
] ]
} }

96
2016/9xxx/CVE-2016-9494.json
View File

@ -1,94 +1,94 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cert@cert.org", "ASSIGNER": "cert@cert.org",
"ID" : "CVE-2016-9494", "ID": "CVE-2016-9494",
"STATE" : "PUBLIC", "STATE": "PUBLIC",
"TITLE" : "Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation, potentially leading to denial of service" "TITLE": "Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation, potentially leading to denial of service"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "HN7740S", "product_name": "HN7740S",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"affected" : "?", "affected": "?",
"version_value" : "N/A" "version_value": "N/A"
} }
] ]
} }
}, },
{ {
"product_name" : "DW7000", "product_name": "DW7000",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"affected" : "?", "affected": "?",
"version_value" : "N/A" "version_value": "N/A"
} }
] ]
} }
}, },
{ {
"product_name" : "HN7000S/SM", "product_name": "HN7000S/SM",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"affected" : "?", "affected": "?",
"version_value" : "N/A" "version_value": "N/A"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "Hughes Satellite Modem" "vendor_name": "Hughes Satellite Modem"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation. The device's advanced status web page that is linked to from the basic status web page does not appear to properly parse malformed GET requests. This may lead to a denial of service." "value": "Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation. The device's advanced status web page that is linked to from the basic status web page does not appear to properly parse malformed GET requests. This may lead to a denial of service."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "CWE-20" "value": "CWE-20"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "VU#614751", "name": "96244",
"refsource" : "CERT-VN", "refsource": "BID",
"url" : "https://www.kb.cert.org/vuls/id/614751" "url": "https://www.securityfocus.com/bid/96244"
}, },
{ {
"name" : "96244", "name": "VU#614751",
"refsource" : "BID", "refsource": "CERT-VN",
"url" : "https://www.securityfocus.com/bid/96244" "url": "https://www.kb.cert.org/vuls/id/614751"
} }
] ]
}, },
"source" : { "source": {
"discovery" : "UNKNOWN" "discovery": "UNKNOWN"
} }
} }

98
2016/9xxx/CVE-2016-9810.json
View File

@ -1,91 +1,91 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2016-9810", "ID": "CVE-2016-9810",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The gst_decode_chain_free_internal function in the flxdex decoder in gst-plugins-good in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (invalid memory read and crash) via an invalid file, which triggers an incorrect unref call." "value": "The gst_decode_chain_free_internal function in the flxdex decoder in gst-plugins-good in GStreamer before 1.10.2 allows remote attackers to cause a denial of service (invalid memory read and crash) via an invalid file, which triggers an incorrect unref call."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "[oss-security] 20161201 gstreamer multiple issues", "name": "95163",
"refsource" : "MLIST", "refsource": "BID",
"url" : "http://www.openwall.com/lists/oss-security/2016/12/01/2" "url": "http://www.securityfocus.com/bid/95163"
}, },
{ {
"name" : "[oss-security] 20161204 Re: gstreamer multiple issues", "name": "https://gstreamer.freedesktop.org/releases/1.10/#1.10.2",
"refsource" : "MLIST", "refsource": "CONFIRM",
"url" : "http://www.openwall.com/lists/oss-security/2016/12/05/8" "url": "https://gstreamer.freedesktop.org/releases/1.10/#1.10.2"
}, },
{ {
"name" : "https://bugzilla.gnome.org/show_bug.cgi?id=774897", "name": "RHSA-2017:2060",
"refsource" : "CONFIRM", "refsource": "REDHAT",
"url" : "https://bugzilla.gnome.org/show_bug.cgi?id=774897" "url": "https://access.redhat.com/errata/RHSA-2017:2060"
}, },
{ {
"name" : "https://gstreamer.freedesktop.org/releases/1.10/#1.10.2", "name": "https://bugzilla.gnome.org/show_bug.cgi?id=774897",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://gstreamer.freedesktop.org/releases/1.10/#1.10.2" "url": "https://bugzilla.gnome.org/show_bug.cgi?id=774897"
}, },
{ {
"name" : "GLSA-201705-10", "name": "[oss-security] 20161204 Re: gstreamer multiple issues",
"refsource" : "GENTOO", "refsource": "MLIST",
"url" : "https://security.gentoo.org/glsa/201705-10" "url": "http://www.openwall.com/lists/oss-security/2016/12/05/8"
}, },
{ {
"name" : "RHSA-2017:2060", "name": "GLSA-201705-10",
"refsource" : "REDHAT", "refsource": "GENTOO",
"url" : "https://access.redhat.com/errata/RHSA-2017:2060" "url": "https://security.gentoo.org/glsa/201705-10"
}, },
{ {
"name" : "95163", "name": "[oss-security] 20161201 gstreamer multiple issues",
"refsource" : "BID", "refsource": "MLIST",
"url" : "http://www.securityfocus.com/bid/95163" "url": "http://www.openwall.com/lists/oss-security/2016/12/01/2"
} }
] ]
} }