admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-19 17:32:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-03-17 21:55:35 +00:00
parent 7190b90988
commit e20d1f8ede
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
52 changed files with 3886 additions and 3886 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

104
2006/2xxx/CVE-2006-2007.json
View File

@ -1,96 +1,96 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-2007", "ID": "CVE-2006-2007",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Heap-based buffer overflow in Winny 2.0 b7.1 and earlier allows remote attackers to execute arbitrary code via long strings to certain commands sent to the file transfer port." "value": "Heap-based buffer overflow in Winny 2.0 b7.1 and earlier allows remote attackers to execute arbitrary code via long strings to certain commands sent to the file transfer port."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.eeye.com/html/research/advisories/AD20060421.html", "name": "24883",
"refsource" : "MISC", "refsource": "OSVDB",
"url" : "http://www.eeye.com/html/research/advisories/AD20060421.html" "url": "http://www.osvdb.org/24883"
}, },
{ {
"name" : "VU#167033", "name": "JVN#74294680",
"refsource" : "CERT-VN", "refsource": "JVN",
"url" : "http://www.kb.cert.org/vuls/id/167033" "url": "http://jvn.jp/jp/JVN%2374294680/index.html"
}, },
{ {
"name" : "JVN#74294680", "name": "winny-file-transfer-bo(25986)",
"refsource" : "JVN", "refsource": "XF",
"url" : "http://jvn.jp/jp/JVN%2374294680/index.html" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25986"
}, },
{ {
"name" : "17666", "name": "http://www.eeye.com/html/research/advisories/AD20060421.html",
"refsource" : "BID", "refsource": "MISC",
"url" : "http://www.securityfocus.com/bid/17666" "url": "http://www.eeye.com/html/research/advisories/AD20060421.html"
}, },
{ {
"name" : "ADV-2006-1486", "name": "17666",
"refsource" : "VUPEN", "refsource": "BID",
"url" : "http://www.vupen.com/english/advisories/2006/1486" "url": "http://www.securityfocus.com/bid/17666"
}, },
{ {
"name" : "24883", "name": "VU#167033",
"refsource" : "OSVDB", "refsource": "CERT-VN",
"url" : "http://www.osvdb.org/24883" "url": "http://www.kb.cert.org/vuls/id/167033"
}, },
{ {
"name" : "19795", "name": "19795",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/19795" "url": "http://secunia.com/advisories/19795"
}, },
{ {
"name" : "winny-file-transfer-bo(25986)", "name": "ADV-2006-1486",
"refsource" : "XF", "refsource": "VUPEN",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/25986" "url": "http://www.vupen.com/english/advisories/2006/1486"
} }
] ]
} }

122
2006/2xxx/CVE-2006-2094.json
View File

@ -1,111 +1,111 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-2094", "ID": "CVE-2006-2094",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Microsoft Internet Explorer before Windows XP Service Pack 2 and Windows Server 2003 Service Pack 1, when Prompt is configured in Security Settings, uses modal dialogs to verify that a user wishes to run an ActiveX control or perform other risky actions, which allows user-assisted remote attackers to construct a race condition that tricks a user into clicking an object or pressing keys that are actually applied to a \"Yes\" approval for executing the control." "value": "Microsoft Internet Explorer before Windows XP Service Pack 2 and Windows Server 2003 Service Pack 1, when Prompt is configured in Security Settings, uses modal dialogs to verify that a user wishes to run an ActiveX control or perform other risky actions, which allows user-assisted remote attackers to construct a race condition that tricks a user into clicking an object or pressing keys that are actually applied to a \"Yes\" approval for executing the control."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20040407 Race conditions in security dialogs", "name": "ADV-2006-1559",
"refsource" : "FULLDISC", "refsource": "VUPEN",
"url" : "http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0264.html" "url": "http://www.vupen.com/english/advisories/2006/1559"
}, },
{ {
"name" : "20060426 Internet Explorer User Interface Races, Redeux", "name": "20060426 Internet Explorer User Interface Races, Redeux",
"refsource" : "FULLDISC", "refsource": "FULLDISC",
"url" : "http://archives.neohapsis.com/archives/fulldisclosure/2006-04/0759.html" "url": "http://archives.neohapsis.com/archives/fulldisclosure/2006-04/0759.html"
}, },
{ {
"name" : "20060427 PoC for Internet Explorer Modal Dialog Issue", "name": "17713",
"refsource" : "FULLDISC", "refsource": "BID",
"url" : "http://lists.grok.org.uk/pipermail/full-disclosure/2006-April/045589.html" "url": "http://www.securityfocus.com/bid/17713"
}, },
{ {
"name" : "20060427 PoC for Internet Explorer Modal Dialog Issue", "name": "1015720",
"refsource" : "VULNWATCH", "refsource": "SECTRACK",
"url" : "http://archives.neohapsis.com/archives/vulnwatch/2006-q2/0019.html" "url": "http://securitytracker.com/id?1015720"
}, },
{ {
"name" : "http://student.missouristate.edu/m/matthew007/advisories.asp?adv=2006-02", "name": "22351",
"refsource" : "MISC", "refsource": "OSVDB",
"url" : "http://student.missouristate.edu/m/matthew007/advisories.asp?adv=2006-02" "url": "http://www.osvdb.org/22351"
}, },
{ {
"name" : "http://www.squarefree.com/2004/07/01/race-conditions-in-security-dialogs/", "name": "http://student.missouristate.edu/m/matthew007/advisories.asp?adv=2006-02",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://www.squarefree.com/2004/07/01/race-conditions-in-security-dialogs/" "url": "http://student.missouristate.edu/m/matthew007/advisories.asp?adv=2006-02"
}, },
{ {
"name" : "17713", "name": "20060427 PoC for Internet Explorer Modal Dialog Issue",
"refsource" : "BID", "refsource": "FULLDISC",
"url" : "http://www.securityfocus.com/bid/17713" "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-April/045589.html"
}, },
{ {
"name" : "ADV-2006-1559", "name": "ie-modal-dialog-code-execution(26111)",
"refsource" : "VUPEN", "refsource": "XF",
"url" : "http://www.vupen.com/english/advisories/2006/1559" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26111"
}, },
{ {
"name" : "22351", "name": "20060427 PoC for Internet Explorer Modal Dialog Issue",
"refsource" : "OSVDB", "refsource": "VULNWATCH",
"url" : "http://www.osvdb.org/22351" "url": "http://archives.neohapsis.com/archives/vulnwatch/2006-q2/0019.html"
}, },
{ {
"name" : "1015720", "name": "http://www.squarefree.com/2004/07/01/race-conditions-in-security-dialogs/",
"refsource" : "SECTRACK", "refsource": "MISC",
"url" : "http://securitytracker.com/id?1015720" "url": "http://www.squarefree.com/2004/07/01/race-conditions-in-security-dialogs/"
}, },
{ {
"name" : "ie-modal-dialog-code-execution(26111)", "name": "20040407 Race conditions in security dialogs",
"refsource" : "XF", "refsource": "FULLDISC",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/26111" "url": "http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0264.html"
} }
] ]
} }

92
2006/2xxx/CVE-2006-2361.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-2361", "ID": "CVE-2006-2361",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "PHP remote file inclusion vulnerability in pafiledb_constants.php in Download Manager (mxBB pafiledb) integration, as used with phpBB, allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter." "value": "PHP remote file inclusion vulnerability in pafiledb_constants.php in Download Manager (mxBB pafiledb) integration, as used with phpBB, allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "1774", "name": "25507",
"refsource" : "EXPLOIT-DB", "refsource": "OSVDB",
"url" : "https://www.exploit-db.com/exploits/1774" "url": "http://www.osvdb.org/25507"
}, },
{ {
"name" : "17930", "name": "17930",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/17930" "url": "http://www.securityfocus.com/bid/17930"
}, },
{ {
"name" : "ADV-2006-1776", "name": "20062",
"refsource" : "VUPEN", "refsource": "SECUNIA",
"url" : "http://www.vupen.com/english/advisories/2006/1776" "url": "http://secunia.com/advisories/20062"
}, },
{ {
"name" : "25507", "name": "1774",
"refsource" : "OSVDB", "refsource": "EXPLOIT-DB",
"url" : "http://www.osvdb.org/25507" "url": "https://www.exploit-db.com/exploits/1774"
}, },
{ {
"name" : "20062", "name": "pafiledb-pafiledbconstants-file-include(26496)",
"refsource" : "SECUNIA", "refsource": "XF",
"url" : "http://secunia.com/advisories/20062" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26496"
}, },
{ {
"name" : "pafiledb-pafiledbconstants-file-include(26496)", "name": "ADV-2006-1776",
"refsource" : "XF", "refsource": "VUPEN",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/26496" "url": "http://www.vupen.com/english/advisories/2006/1776"
} }
] ]
} }

68
2006/2xxx/CVE-2006-2805.json
View File

@ -1,66 +1,66 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-2805", "ID": "CVE-2006-2805",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "SQL injection vulnerability in VBulletin 3.0.10 allows remote attackers to execute arbitrary SQL commands via the featureid parameter." "value": "SQL injection vulnerability in VBulletin 3.0.10 allows remote attackers to execute arbitrary SQL commands via the featureid parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://downloads.securityfocus.com/vulnerabilities/exploits/vbulletin-3.0.10-sql-inj.txt", "name": "http://downloads.securityfocus.com/vulnerabilities/exploits/vbulletin-3.0.10-sql-inj.txt",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://downloads.securityfocus.com/vulnerabilities/exploits/vbulletin-3.0.10-sql-inj.txt" "url": "http://downloads.securityfocus.com/vulnerabilities/exploits/vbulletin-3.0.10-sql-inj.txt"
}, },
{ {
"name" : "18197", "name": "18197",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/18197" "url": "http://www.securityfocus.com/bid/18197"
} }
] ]
} }

92
2006/3xxx/CVE-2006-3215.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-3215", "ID": "CVE-2006-3215",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to bypass the \"text analysis\", possibly bypassing SPAM and other filters, by sending an e-mail specifying a non-existent or unrecognized character set." "value": "Clearswift MAILsweeper for SMTP before 4.3.20 and MAILsweeper for Exchange before 4.3.20 allows remote attackers to bypass the \"text analysis\", possibly bypassing SPAM and other filters, by sending an e-mail specifying a non-existent or unrecognized character set."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4,3,20.htm", "name": "26737",
"refsource" : "CONFIRM", "refsource": "OSVDB",
"url" : "http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4,3,20.htm" "url": "http://www.osvdb.org/26737"
}, },
{ {
"name" : "18584", "name": "http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4,3,20.htm",
"refsource" : "BID", "refsource": "CONFIRM",
"url" : "http://www.securityfocus.com/bid/18584" "url": "http://download.mimesweeper.com/www/TechnicalDocumentation/ReadMe_MSW_4,3,20.htm"
}, },
{ {
"name" : "ADV-2006-2473", "name": "18584",
"refsource" : "VUPEN", "refsource": "BID",
"url" : "http://www.vupen.com/english/advisories/2006/2473" "url": "http://www.securityfocus.com/bid/18584"
}, },
{ {
"name" : "26737", "name": "mailsweeper-charcter-set-security-bypass(27301)",
"refsource" : "OSVDB", "refsource": "XF",
"url" : "http://www.osvdb.org/26737" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27301"
}, },
{ {
"name" : "20756", "name": "20756",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/20756" "url": "http://secunia.com/advisories/20756"
}, },
{ {
"name" : "mailsweeper-charcter-set-security-bypass(27301)", "name": "ADV-2006-2473",
"refsource" : "XF", "refsource": "VUPEN",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/27301" "url": "http://www.vupen.com/english/advisories/2006/2473"
} }
] ]
} }

86
2006/3xxx/CVE-2006-3308.json
View File

@ -1,81 +1,81 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-3308", "ID": "CVE-2006-3308",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Unspecified vulnerability in the wpprop code for Project EROS bbsengine before 20060622-0315 has unknown impact and remote attack vectors via [img] tags, possibly cross-site scripting (XSS)." "value": "Unspecified vulnerability in the wpprop code for Project EROS bbsengine before 20060622-0315 has unknown impact and remote attack vectors via [img] tags, possibly cross-site scripting (XSS)."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://sourceforge.net/project/shownotes.php?release_id=427430&group_id=86388", "name": "project-eros-img-xss(27488)",
"refsource" : "CONFIRM", "refsource": "XF",
"url" : "http://sourceforge.net/project/shownotes.php?release_id=427430&group_id=86388" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27488"
}, },
{ {
"name" : "18627", "name": "20760",
"refsource" : "BID", "refsource": "SECUNIA",
"url" : "http://www.securityfocus.com/bid/18627" "url": "http://secunia.com/advisories/20760"
}, },
{ {
"name" : "ADV-2006-2503", "name": "http://sourceforge.net/project/shownotes.php?release_id=427430&group_id=86388",
"refsource" : "VUPEN", "refsource": "CONFIRM",
"url" : "http://www.vupen.com/english/advisories/2006/2503" "url": "http://sourceforge.net/project/shownotes.php?release_id=427430&group_id=86388"
}, },
{ {
"name" : "20760", "name": "ADV-2006-2503",
"refsource" : "SECUNIA", "refsource": "VUPEN",
"url" : "http://secunia.com/advisories/20760" "url": "http://www.vupen.com/english/advisories/2006/2503"
}, },
{ {
"name" : "project-eros-img-xss(27488)", "name": "18627",
"refsource" : "XF", "refsource": "BID",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/27488" "url": "http://www.securityfocus.com/bid/18627"
} }
] ]
} }

80
2006/3xxx/CVE-2006-3343.json
View File

@ -1,76 +1,76 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-3343", "ID": "CVE-2006-3343",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "PHP remote file inclusion vulnerability in recipe/cookbook.php in CrisoftRicette 1.0pre15b allows remote attackers to execute arbitrary PHP code via a URL in the crisoftricette parameter." "value": "PHP remote file inclusion vulnerability in recipe/cookbook.php in CrisoftRicette 1.0pre15b allows remote attackers to execute arbitrary PHP code via a URL in the crisoftricette parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20060627 CrisoftRicette<<--1.0pre15b Remote File Inclusion", "name": "crisoftricette-cookbook-file-include(27472)",
"refsource" : "BUGTRAQ", "refsource": "XF",
"url" : "http://www.securityfocus.com/archive/1/438459/100/0/threaded" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27472"
}, },
{ {
"name" : "18674", "name": "1184",
"refsource" : "BID", "refsource": "SREASON",
"url" : "http://www.securityfocus.com/bid/18674" "url": "http://securityreason.com/securityalert/1184"
}, },
{ {
"name" : "1184", "name": "20060627 CrisoftRicette<<--1.0pre15b Remote File Inclusion",
"refsource" : "SREASON", "refsource": "BUGTRAQ",
"url" : "http://securityreason.com/securityalert/1184" "url": "http://www.securityfocus.com/archive/1/438459/100/0/threaded"
}, },
{ {
"name" : "crisoftricette-cookbook-file-include(27472)", "name": "18674",
"refsource" : "XF", "refsource": "BID",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/27472" "url": "http://www.securityfocus.com/bid/18674"
} }
] ]
} }

344
2006/3xxx/CVE-2006-3677.json
View File

@ -1,296 +1,296 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-3677", "ID": "CVE-2006-3677",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to code execution." "value": "Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to code execution."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20060727 rPSA-2006-0137-1 firefox", "name": "20060726 ZDI-06-025: Mozilla Firefox Javascript navigator Object Vulnerability",
"refsource" : "BUGTRAQ", "refsource": "BUGTRAQ",
"url" : "http://www.securityfocus.com/archive/1/441333/100/0/threaded" "url": "http://www.securityfocus.com/archive/1/441332/100/0/threaded"
}, },
{ {
"name" : "20060726 ZDI-06-025: Mozilla Firefox Javascript navigator Object Vulnerability", "name": "21243",
"refsource" : "BUGTRAQ", "refsource": "SECUNIA",
"url" : "http://www.securityfocus.com/archive/1/441332/100/0/threaded" "url": "http://secunia.com/advisories/21243"
}, },
{ {
"name" : "http://www.mozilla.org/security/announce/2006/mfsa2006-45.html", "name": "RHSA-2006:0608",
"refsource" : "CONFIRM", "refsource": "REDHAT",
"url" : "http://www.mozilla.org/security/announce/2006/mfsa2006-45.html" "url": "http://www.redhat.com/support/errata/RHSA-2006-0608.html"
}, },
{ {
"name" : "http://www.zerodayinitiative.com/advisories/ZDI-06-025.html", "name": "GLSA-200608-02",
"refsource" : "MISC", "refsource": "GENTOO",
"url" : "http://www.zerodayinitiative.com/advisories/ZDI-06-025.html" "url": "http://security.gentoo.org/glsa/glsa-200608-02.xml"
}, },
{ {
"name" : "https://issues.rpath.com/browse/RPL-536", "name": "MDKSA-2006:145",
"refsource" : "CONFIRM", "refsource": "MANDRIVA",
"url" : "https://issues.rpath.com/browse/RPL-536" "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:145"
}, },
{ {
"name" : "GLSA-200608-02", "name": "ADV-2006-3748",
"refsource" : "GENTOO", "refsource": "VUPEN",
"url" : "http://security.gentoo.org/glsa/glsa-200608-02.xml" "url": "http://www.vupen.com/english/advisories/2006/3748"
}, },
{ {
"name" : "GLSA-200608-03", "name": "iphone-mobilesafari-dos(39998)",
"refsource" : "GENTOO", "refsource": "XF",
"url" : "http://www.gentoo.org/security/en/glsa/glsa-200608-03.xml" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39998"
}, },
{ {
"name" : "HPSBUX02153", "name": "19181",
"refsource" : "HP", "refsource": "BID",
"url" : "http://www.securityfocus.com/archive/1/446658/100/200/threaded" "url": "http://www.securityfocus.com/bid/19181"
}, },
{ {
"name" : "SSRT061181", "name": "mozilla-javascript-navigator-code-excecution(27981)",
"refsource" : "HP", "refsource": "XF",
"url" : "http://www.securityfocus.com/archive/1/446658/100/200/threaded" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27981"
}, },
{ {
"name" : "MDKSA-2006:143", "name": "TA06-208A",
"refsource" : "MANDRIVA", "refsource": "CERT",
"url" : "http://www.mandriva.com/security/advisories?name=MDKSA-2006:143" "url": "http://www.us-cert.gov/cas/techalerts/TA06-208A.html"
}, },
{ {
"name" : "MDKSA-2006:145", "name": "ADV-2006-2998",
"refsource" : "MANDRIVA", "refsource": "VUPEN",
"url" : "http://www.mandriva.com/security/advisories?name=MDKSA-2006:145" "url": "http://www.vupen.com/english/advisories/2006/2998"
}, },
{ {
"name" : "RHSA-2006:0608", "name": "20060727 rPSA-2006-0137-1 firefox",
"refsource" : "REDHAT", "refsource": "BUGTRAQ",
"url" : "http://www.redhat.com/support/errata/RHSA-2006-0608.html" "url": "http://www.securityfocus.com/archive/1/441333/100/0/threaded"
}, },
{ {
"name" : "RHSA-2006:0610", "name": "21529",
"refsource" : "REDHAT", "refsource": "SECUNIA",
"url" : "http://www.redhat.com/support/errata/RHSA-2006-0610.html" "url": "http://secunia.com/advisories/21529"
}, },
{ {
"name" : "RHSA-2006:0611", "name": "http://www.zerodayinitiative.com/advisories/ZDI-06-025.html",
"refsource" : "REDHAT", "refsource": "MISC",
"url" : "http://www.redhat.com/support/errata/RHSA-2006-0611.html" "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-025.html"
}, },
{ {
"name" : "RHSA-2006:0609", "name": "oval:org.mitre.oval:def:10745",
"refsource" : "REDHAT", "refsource": "OVAL",
"url" : "http://rhn.redhat.com/errata/RHSA-2006-0609.html" "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10745"
}, },
{ {
"name" : "RHSA-2006:0594", "name": "21216",
"refsource" : "REDHAT", "refsource": "SECUNIA",
"url" : "http://www.redhat.com/support/errata/RHSA-2006-0594.html" "url": "http://secunia.com/advisories/21216"
}, },
{ {
"name" : "20060703-01-P", "name": "GLSA-200608-03",
"refsource" : "SGI", "refsource": "GENTOO",
"url" : "ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc" "url": "http://www.gentoo.org/security/en/glsa/glsa-200608-03.xml"
}, },
{ {
"name" : "SUSE-SA:2006:048", "name": "RHSA-2006:0594",
"refsource" : "SUSE", "refsource": "REDHAT",
"url" : "http://www.novell.com/linux/security/advisories/2006_48_seamonkey.html" "url": "http://www.redhat.com/support/errata/RHSA-2006-0594.html"
}, },
{ {
"name" : "USN-327-1", "name": "21336",
"refsource" : "UBUNTU", "refsource": "SECUNIA",
"url" : "https://usn.ubuntu.com/327-1/" "url": "http://secunia.com/advisories/21336"
}, },
{ {
"name" : "USN-354-1", "name": "RHSA-2006:0610",
"refsource" : "UBUNTU", "refsource": "REDHAT",
"url" : "http://www.ubuntu.com/usn/usn-354-1" "url": "http://www.redhat.com/support/errata/RHSA-2006-0610.html"
}, },
{ {
"name" : "TA06-208A", "name": "VU#670060",
"refsource" : "CERT", "refsource": "CERT-VN",
"url" : "http://www.us-cert.gov/cas/techalerts/TA06-208A.html" "url": "http://www.kb.cert.org/vuls/id/670060"
}, },
{ {
"name" : "VU#670060", "name": "RHSA-2006:0609",
"refsource" : "CERT-VN", "refsource": "REDHAT",
"url" : "http://www.kb.cert.org/vuls/id/670060" "url": "http://rhn.redhat.com/errata/RHSA-2006-0609.html"
}, },
{ {
"name" : "19181", "name": "22210",
"refsource" : "BID", "refsource": "SECUNIA",
"url" : "http://www.securityfocus.com/bid/19181" "url": "http://secunia.com/advisories/22210"
}, },
{ {
"name" : "19192", "name": "1016586",
"refsource" : "BID", "refsource": "SECTRACK",
"url" : "http://www.securityfocus.com/bid/19192" "url": "http://securitytracker.com/id?1016586"
}, },
{ {
"name" : "oval:org.mitre.oval:def:10745", "name": "19873",
"refsource" : "OVAL", "refsource": "SECUNIA",
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10745" "url": "http://secunia.com/advisories/19873"
}, },
{ {
"name" : "ADV-2006-2998", "name": "21262",
"refsource" : "VUPEN", "refsource": "SECUNIA",
"url" : "http://www.vupen.com/english/advisories/2006/2998" "url": "http://secunia.com/advisories/21262"
}, },
{ {
"name" : "ADV-2006-3748", "name": "http://www.mozilla.org/security/announce/2006/mfsa2006-45.html",
"refsource" : "VUPEN", "refsource": "CONFIRM",
"url" : "http://www.vupen.com/english/advisories/2006/3748" "url": "http://www.mozilla.org/security/announce/2006/mfsa2006-45.html"
}, },
{ {
"name" : "ADV-2008-0083", "name": "21532",
"refsource" : "VUPEN", "refsource": "SECUNIA",
"url" : "http://www.vupen.com/english/advisories/2008/0083" "url": "http://secunia.com/advisories/21532"
}, },
{ {
"name" : "1016586", "name": "21270",
"refsource" : "SECTRACK", "refsource": "SECUNIA",
"url" : "http://securitytracker.com/id?1016586" "url": "http://secunia.com/advisories/21270"
}, },
{ {
"name" : "1016587", "name": "ADV-2008-0083",
"refsource" : "SECTRACK", "refsource": "VUPEN",
"url" : "http://securitytracker.com/id?1016587" "url": "http://www.vupen.com/english/advisories/2008/0083"
}, },
{ {
"name" : "19873", "name": "USN-327-1",
"refsource" : "SECUNIA", "refsource": "UBUNTU",
"url" : "http://secunia.com/advisories/19873" "url": "https://usn.ubuntu.com/327-1/"
}, },
{ {
"name" : "21216", "name": "21361",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/21216" "url": "http://secunia.com/advisories/21361"
}, },
{ {
"name" : "21229", "name": "21631",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/21229" "url": "http://secunia.com/advisories/21631"
}, },
{ {
"name" : "21246", "name": "SSRT061181",
"refsource" : "SECUNIA", "refsource": "HP",
"url" : "http://secunia.com/advisories/21246" "url": "http://www.securityfocus.com/archive/1/446658/100/200/threaded"
}, },
{ {
"name" : "21243", "name": "21246",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/21243" "url": "http://secunia.com/advisories/21246"
}, },
{ {
"name" : "21269", "name": "SUSE-SA:2006:048",
"refsource" : "SECUNIA", "refsource": "SUSE",
"url" : "http://secunia.com/advisories/21269" "url": "http://www.novell.com/linux/security/advisories/2006_48_seamonkey.html"
}, },
{ {
"name" : "21270", "name": "21229",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/21270" "url": "http://secunia.com/advisories/21229"
}, },
{ {
"name" : "21336", "name": "1016587",
"refsource" : "SECUNIA", "refsource": "SECTRACK",
"url" : "http://secunia.com/advisories/21336" "url": "http://securitytracker.com/id?1016587"
}, },
{ {
"name" : "21361", "name": "HPSBUX02153",
"refsource" : "SECUNIA", "refsource": "HP",
"url" : "http://secunia.com/advisories/21361" "url": "http://www.securityfocus.com/archive/1/446658/100/200/threaded"
}, },
{ {
"name" : "21262", "name": "RHSA-2006:0611",
"refsource" : "SECUNIA", "refsource": "REDHAT",
"url" : "http://secunia.com/advisories/21262" "url": "http://www.redhat.com/support/errata/RHSA-2006-0611.html"
}, },
{ {
"name" : "21343", "name": "https://issues.rpath.com/browse/RPL-536",
"refsource" : "SECUNIA", "refsource": "CONFIRM",
"url" : "http://secunia.com/advisories/21343" "url": "https://issues.rpath.com/browse/RPL-536"
}, },
{ {
"name" : "21529", "name": "22066",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/21529" "url": "http://secunia.com/advisories/22066"
}, },
{ {
"name" : "21532", "name": "21269",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/21532" "url": "http://secunia.com/advisories/21269"
}, },
{ {
"name" : "21631", "name": "21343",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/21631" "url": "http://secunia.com/advisories/21343"
}, },
{ {
"name" : "22210", "name": "MDKSA-2006:143",
"refsource" : "SECUNIA", "refsource": "MANDRIVA",
"url" : "http://secunia.com/advisories/22210" "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:143"
}, },
{ {
"name" : "22066", "name": "19192",
"refsource" : "SECUNIA", "refsource": "BID",
"url" : "http://secunia.com/advisories/22066" "url": "http://www.securityfocus.com/bid/19192"
}, },
{ {
"name" : "mozilla-javascript-navigator-code-excecution(27981)", "name": "USN-354-1",
"refsource" : "XF", "refsource": "UBUNTU",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/27981" "url": "http://www.ubuntu.com/usn/usn-354-1"
}, },
{ {
"name" : "iphone-mobilesafari-dos(39998)", "name": "20060703-01-P",
"refsource" : "XF", "refsource": "SGI",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/39998" "url": "ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc"
} }
] ]
} }

98
2006/3xxx/CVE-2006-3819.json
View File

@ -1,91 +1,91 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-3819", "ID": "CVE-2006-3819",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Eval injection vulnerability in the configure script in TWiki 4.0.0 through 4.0.4 allows remote attackers to execute arbitrary Perl code via an HTTP POST request containing a parameter name starting with \"TYPEOF\"." "value": "Eval injection vulnerability in the configure script in TWiki 4.0.0 through 4.0.4 allows remote attackers to execute arbitrary Perl code via an HTTP POST request containing a parameter name starting with \"TYPEOF\"."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://twiki.org/cgi-bin/view/Codev/SecurityAlertCmdExecWithConfigure", "name": "twiki-configure-command-injection(28049)",
"refsource" : "CONFIRM", "refsource": "XF",
"url" : "http://twiki.org/cgi-bin/view/Codev/SecurityAlertCmdExecWithConfigure" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28049"
}, },
{ {
"name" : "19188", "name": "1016603",
"refsource" : "BID", "refsource": "SECTRACK",
"url" : "http://www.securityfocus.com/bid/19188" "url": "http://securitytracker.com/id?1016603"
}, },
{ {
"name" : "ADV-2006-2995", "name": "21235",
"refsource" : "VUPEN", "refsource": "SECUNIA",
"url" : "http://www.vupen.com/english/advisories/2006/2995" "url": "http://secunia.com/advisories/21235"
}, },
{ {
"name" : "27556", "name": "http://twiki.org/cgi-bin/view/Codev/SecurityAlertCmdExecWithConfigure",
"refsource" : "OSVDB", "refsource": "CONFIRM",
"url" : "http://www.osvdb.org/displayvuln.php?osvdb_id=27556" "url": "http://twiki.org/cgi-bin/view/Codev/SecurityAlertCmdExecWithConfigure"
}, },
{ {
"name" : "1016603", "name": "19188",
"refsource" : "SECTRACK", "refsource": "BID",
"url" : "http://securitytracker.com/id?1016603" "url": "http://www.securityfocus.com/bid/19188"
}, },
{ {
"name" : "21235", "name": "27556",
"refsource" : "SECUNIA", "refsource": "OSVDB",
"url" : "http://secunia.com/advisories/21235" "url": "http://www.osvdb.org/displayvuln.php?osvdb_id=27556"
}, },
{ {
"name" : "twiki-configure-command-injection(28049)", "name": "ADV-2006-2995",
"refsource" : "XF", "refsource": "VUPEN",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/28049" "url": "http://www.vupen.com/english/advisories/2006/2995"
} }
] ]
} }

80
2006/6xxx/CVE-2006-6146.json
View File

@ -1,76 +1,76 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-6146", "ID": "CVE-2006-6146",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Buffer overflow in the HPDF_Page_Circle function in hpdf_page_operator.c in Takeshi Kanno Haru Free PDF Library (libharu2, aka libharu) 2.0.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via certain arguments that yield a large amount of PDF data, as demonstrated by a filled circle." "value": "Buffer overflow in the HPDF_Page_Circle function in hpdf_page_operator.c in Takeshi Kanno Haru Free PDF Library (libharu2, aka libharu) 2.0.7 and earlier allows context-dependent attackers to cause a denial of service (application crash) via certain arguments that yield a large amount of PDF data, as demonstrated by a filled circle."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://sourceforge.net/project/shownotes.php?release_id=465886", "name": "21259",
"refsource" : "CONFIRM", "refsource": "BID",
"url" : "http://sourceforge.net/project/shownotes.php?release_id=465886" "url": "http://www.securityfocus.com/bid/21259"
}, },
{ {
"name" : "http://sourceforge.net/tracker/index.php?func=detail&aid=1597538&group_id=83044&atid=568129", "name": "http://sourceforge.net/tracker/index.php?func=detail&aid=1597538&group_id=83044&atid=568129",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://sourceforge.net/tracker/index.php?func=detail&aid=1597538&group_id=83044&atid=568129" "url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1597538&group_id=83044&atid=568129"
}, },
{ {
"name" : "21259", "name": "ADV-2006-4675",
"refsource" : "BID", "refsource": "VUPEN",
"url" : "http://www.securityfocus.com/bid/21259" "url": "http://www.vupen.com/english/advisories/2006/4675"
}, },
{ {
"name" : "ADV-2006-4675", "name": "http://sourceforge.net/project/shownotes.php?release_id=465886",
"refsource" : "VUPEN", "refsource": "CONFIRM",
"url" : "http://www.vupen.com/english/advisories/2006/4675" "url": "http://sourceforge.net/project/shownotes.php?release_id=465886"
} }
] ]
} }

68
2006/6xxx/CVE-2006-6163.json
View File

@ -1,66 +1,66 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-6163", "ID": "CVE-2006-6163",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Cross-site scripting (XSS) vulnerability in tiki-setup_base.php in TikiWiki before 1.9.7 allows remote attackers to inject arbitrary JavaScript via unspecified parameters." "value": "Cross-site scripting (XSS) vulnerability in tiki-setup_base.php in TikiWiki before 1.9.7 allows remote attackers to inject arbitrary JavaScript via unspecified parameters."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://tikiwiki.cvs.sourceforge.net/tikiwiki/tiki/changelog.txt?r1=1.157.2.50&r2=1.157.2.51", "name": "http://tikiwiki.cvs.sourceforge.net/tikiwiki/tiki/changelog.txt?r1=1.157.2.50&r2=1.157.2.51",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://tikiwiki.cvs.sourceforge.net/tikiwiki/tiki/changelog.txt?r1=1.157.2.50&r2=1.157.2.51" "url": "http://tikiwiki.cvs.sourceforge.net/tikiwiki/tiki/changelog.txt?r1=1.157.2.50&r2=1.157.2.51"
}, },
{ {
"name" : "ADV-2006-4709", "name": "ADV-2006-4709",
"refsource" : "VUPEN", "refsource": "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2006/4709" "url": "http://www.vupen.com/english/advisories/2006/4709"
} }
] ]
} }

62
2006/6xxx/CVE-2006-6689.json
View File

@ -1,61 +1,61 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-6689", "ID": "CVE-2006-6689",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Multiple PHP remote file inclusion vulnerabilities in Paristemi 0.8.3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the SERVER_DIRECTORY parameter to unspecified scripts, a different vector than CVE-2006-6739. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information." "value": "Multiple PHP remote file inclusion vulnerabilities in Paristemi 0.8.3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the SERVER_DIRECTORY parameter to unspecified scripts, a different vector than CVE-2006-6739. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "ADV-2006-5086", "name": "ADV-2006-5086",
"refsource" : "VUPEN", "refsource": "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2006/5086" "url": "http://www.vupen.com/english/advisories/2006/5086"
} }
] ]
} }

80
2006/6xxx/CVE-2006-6838.json
View File

@ -1,76 +1,76 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-6838", "ID": "CVE-2006-6838",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Rediff Bol Downloader ActiveX (OCX) control allows remote attackers to execute arbitrary files, and obtain sensitive information (usernames and pathnames), via a URL in the url vbscript parameter." "value": "Rediff Bol Downloader ActiveX (OCX) control allows remote attackers to execute arbitrary files, and obtain sensitive information (usernames and pathnames), via a URL in the url vbscript parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20061231 Rediff Bol Downloader Allows Downloading and Spawning Arbitary Files", "name": "http://www.infogreg.com/security/misc/rediff-bol-downloader-allows-downloading-and-spawning-arbitary-files.html",
"refsource" : "BUGTRAQ", "refsource": "MISC",
"url" : "http://www.securityfocus.com/archive/1/455611/100/0/threaded" "url": "http://www.infogreg.com/security/misc/rediff-bol-downloader-allows-downloading-and-spawning-arbitary-files.html"
}, },
{ {
"name" : "http://www.infogreg.com/security/misc/rediff-bol-downloader-allows-downloading-and-spawning-arbitary-files.html", "name": "20061231 Rediff Bol Downloader Allows Downloading and Spawning Arbitary Files",
"refsource" : "MISC", "refsource": "BUGTRAQ",
"url" : "http://www.infogreg.com/security/misc/rediff-bol-downloader-allows-downloading-and-spawning-arbitary-files.html" "url": "http://www.securityfocus.com/archive/1/455611/100/0/threaded"
}, },
{ {
"name" : "21831", "name": "2089",
"refsource" : "BID", "refsource": "SREASON",
"url" : "http://www.securityfocus.com/bid/21831" "url": "http://securityreason.com/securityalert/2089"
}, },
{ {
"name" : "2089", "name": "21831",
"refsource" : "SREASON", "refsource": "BID",
"url" : "http://securityreason.com/securityalert/2089" "url": "http://www.securityfocus.com/bid/21831"
} }
] ]
} }

74
2006/6xxx/CVE-2006-6893.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-6893", "ID": "CVE-2006-6893",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Tor allows remote attackers to discover the IP address of a hidden service by accessing this service at a high rate, thereby changing the server's CPU temperature and consequently changing the pattern of time values visible through (1) ICMP timestamps, (2) TCP sequence numbers, and (3) TCP timestamps, a different vulnerability than CVE-2006-0414. NOTE: it could be argued that this is a laws-of-physics vulnerability that is a fundamental design limitation of certain hardware implementations, so perhaps this issue should not be included in CVE." "value": "Tor allows remote attackers to discover the IP address of a hidden service by accessing this service at a high rate, thereby changing the server's CPU temperature and consequently changing the pattern of time values visible through (1) ICMP timestamps, (2) TCP sequence numbers, and (3) TCP timestamps, a different vulnerability than CVE-2006-0414. NOTE: it could be argued that this is a laws-of-physics vulnerability that is a fundamental design limitation of certain hardware implementations, so perhaps this issue should not be included in CVE."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://events.ccc.de/congress/2006/Fahrplan/events/1513.en.html", "name": "http://events.ccc.de/congress/2006/Fahrplan/events/1513.en.html",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://events.ccc.de/congress/2006/Fahrplan/events/1513.en.html" "url": "http://events.ccc.de/congress/2006/Fahrplan/events/1513.en.html"
}, },
{ {
"name" : "http://www.cl.cam.ac.uk/~sjm217/papers/ccs06hotornot.pdf", "name": "http://www.lightbluetouchpaper.org/2006/09/04/hot-or-not-revealing-hidden-services-by-their-clock-skew/",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://www.cl.cam.ac.uk/~sjm217/papers/ccs06hotornot.pdf" "url": "http://www.lightbluetouchpaper.org/2006/09/04/hot-or-not-revealing-hidden-services-by-their-clock-skew/"
}, },
{ {
"name" : "http://www.lightbluetouchpaper.org/2006/09/04/hot-or-not-revealing-hidden-services-by-their-clock-skew/", "name": "http://www.cl.cam.ac.uk/~sjm217/papers/ccs06hotornot.pdf",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://www.lightbluetouchpaper.org/2006/09/04/hot-or-not-revealing-hidden-services-by-their-clock-skew/" "url": "http://www.cl.cam.ac.uk/~sjm217/papers/ccs06hotornot.pdf"
} }
] ]
} }

86
2006/6xxx/CVE-2006-6912.json
View File

@ -1,81 +1,81 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-6912", "ID": "CVE-2006-6912",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "SQL injection vulnerability in phpMyFAQ 1.6.7 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the userfile or filename parameter." "value": "SQL injection vulnerability in phpMyFAQ 1.6.7 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the userfile or filename parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.phpmyfaq.de/advisory_2006-12-15.php", "name": "23651",
"refsource" : "CONFIRM", "refsource": "SECUNIA",
"url" : "http://www.phpmyfaq.de/advisory_2006-12-15.php" "url": "http://secunia.com/advisories/23651"
}, },
{ {
"name" : "21944", "name": "http://www.phpmyfaq.de/advisory_2006-12-15.php",
"refsource" : "BID", "refsource": "CONFIRM",
"url" : "http://www.securityfocus.com/bid/21944" "url": "http://www.phpmyfaq.de/advisory_2006-12-15.php"
}, },
{ {
"name" : "ADV-2007-0077", "name": "ADV-2007-0077",
"refsource" : "VUPEN", "refsource": "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2007/0077" "url": "http://www.vupen.com/english/advisories/2007/0077"
}, },
{ {
"name" : "23651", "name": "phpmyfaq-attachment-sql-injection(32802)",
"refsource" : "SECUNIA", "refsource": "XF",
"url" : "http://secunia.com/advisories/23651" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32802"
}, },
{ {
"name" : "phpmyfaq-attachment-sql-injection(32802)", "name": "21944",
"refsource" : "XF", "refsource": "BID",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/32802" "url": "http://www.securityfocus.com/bid/21944"
} }
] ]
} }

80
2006/7xxx/CVE-2006-7161.json
View File

@ -1,76 +1,76 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2006-7161", "ID": "CVE-2006-7161",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "SQL injection vulnerability in giris_yap.asp in Hazir Site 2.0 allows remote attackers to bypass authentication via the (1) k_a class or (2) sifre parameter." "value": "SQL injection vulnerability in giris_yap.asp in Hazir Site 2.0 allows remote attackers to bypass authentication via the (1) k_a class or (2) sifre parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20061006 Hazir Site v2.0 Admin SQL Injection", "name": "20375",
"refsource" : "BUGTRAQ", "refsource": "BID",
"url" : "http://www.securityfocus.com/archive/1/447829/100/0/threaded" "url": "http://www.securityfocus.com/bid/20375"
}, },
{ {
"name" : "20375", "name": "20061006 Hazir Site v2.0 Admin SQL Injection",
"refsource" : "BID", "refsource": "BUGTRAQ",
"url" : "http://www.securityfocus.com/bid/20375" "url": "http://www.securityfocus.com/archive/1/447829/100/0/threaded"
}, },
{ {
"name" : "2374", "name": "hazir-site-giris-sql-injection(29371)",
"refsource" : "SREASON", "refsource": "XF",
"url" : "http://securityreason.com/securityalert/2374" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29371"
}, },
{ {
"name" : "hazir-site-giris-sql-injection(29371)", "name": "2374",
"refsource" : "XF", "refsource": "SREASON",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/29371" "url": "http://securityreason.com/securityalert/2374"
} }
] ]
} }

92
2011/0xxx/CVE-2011-0893.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "hp-security-alert@hp.com",
"ID" : "CVE-2011-0893", "ID": "CVE-2011-0893",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Cross-site scripting (XSS) vulnerability in HP Operations 9.10 on UNIX platforms allows remote attackers to inject arbitrary web script or HTML via unspecified vectors." "value": "Cross-site scripting (XSS) vulnerability in HP Operations 9.10 on UNIX platforms allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "HPSBMA02650", "name": "8174",
"refsource" : "HP", "refsource": "SREASON",
"url" : "http://marc.info/?l=bugtraq&m=130166433409257&w=2" "url": "http://securityreason.com/securityalert/8174"
}, },
{ {
"name" : "SSRT100429", "name": "HPSBMA02650",
"refsource" : "HP", "refsource": "HP",
"url" : "http://marc.info/?l=bugtraq&m=130166433409257&w=2" "url": "http://marc.info/?l=bugtraq&m=130166433409257&w=2"
}, },
{ {
"name" : "1025281", "name": "ADV-2011-0837",
"refsource" : "SECTRACK", "refsource": "VUPEN",
"url" : "http://www.securitytracker.com/id?1025281" "url": "http://www.vupen.com/english/advisories/2011/0837"
}, },
{ {
"name" : "43985", "name": "SSRT100429",
"refsource" : "SECUNIA", "refsource": "HP",
"url" : "http://secunia.com/advisories/43985" "url": "http://marc.info/?l=bugtraq&m=130166433409257&w=2"
}, },
{ {
"name" : "8174", "name": "43985",
"refsource" : "SREASON", "refsource": "SECUNIA",
"url" : "http://securityreason.com/securityalert/8174" "url": "http://secunia.com/advisories/43985"
}, },
{ {
"name" : "ADV-2011-0837", "name": "1025281",
"refsource" : "VUPEN", "refsource": "SECTRACK",
"url" : "http://www.vupen.com/english/advisories/2011/0837" "url": "http://www.securitytracker.com/id?1025281"
} }
] ]
} }

62
2011/0xxx/CVE-2011-0908.json
View File

@ -1,61 +1,61 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2011-0908", "ID": "CVE-2011-0908",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Open redirect vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the Target parameter to an unspecified component, a different vulnerability than CVE-2011-0526." "value": "Open redirect vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the Target parameter to an unspecified component, a different vulnerability than CVE-2011-0526."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.vanillaforums.org/discussion/comment/134729/#Comment_134729", "name": "http://www.vanillaforums.org/discussion/comment/134729/#Comment_134729",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www.vanillaforums.org/discussion/comment/134729/#Comment_134729" "url": "http://www.vanillaforums.org/discussion/comment/134729/#Comment_134729"
} }
] ]
} }

62
2011/0xxx/CVE-2011-0920.json
View File

@ -1,61 +1,61 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2011-0920", "ID": "CVE-2011-0920",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The Remote Console in IBM Lotus Domino, when a certain unsupported configuration involving UNC share pathnames is used, allows remote attackers to bypass authentication and execute arbitrary code via unspecified vectors, aka SPR PRAD89WGRS." "value": "The Remote Console in IBM Lotus Domino, when a certain unsupported configuration involving UNC share pathnames is used, allows remote attackers to bypass authentication and execute arbitrary code via unspecified vectors, aka SPR PRAD89WGRS."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www-01.ibm.com/support/docview.wss?uid=swg21461514", "name": "http://www-01.ibm.com/support/docview.wss?uid=swg21461514",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21461514" "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21461514"
} }
] ]
} }

92
2011/1xxx/CVE-2011-1061.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2011-1061", "ID": "CVE-2011-1061",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "SQL injection vulnerability in memberlist.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the time parameter." "value": "SQL injection vulnerability in memberlist.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the time parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20110221 www.eVuln.com : \"time\" SQL Injection vulnerability in WSN Guest", "name": "8102",
"refsource" : "BUGTRAQ", "refsource": "SREASON",
"url" : "http://www.securityfocus.com/archive/1/516562/100/0/threaded" "url": "http://securityreason.com/securityalert/8102"
}, },
{ {
"name" : "http://evuln.com/vulns/175/summary.html", "name": "http://packetstormsecurity.org/files/view/98573/wsnguest124-sql.txt",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://evuln.com/vulns/175/summary.html" "url": "http://packetstormsecurity.org/files/view/98573/wsnguest124-sql.txt"
}, },
{ {
"name" : "http://packetstormsecurity.org/files/view/98573/wsnguest124-sql.txt", "name": "http://evuln.com/vulns/175/summary.html",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://packetstormsecurity.org/files/view/98573/wsnguest124-sql.txt" "url": "http://evuln.com/vulns/175/summary.html"
}, },
{ {
"name" : "46465", "name": "wsnguest-index-sql-injection(65550)",
"refsource" : "BID", "refsource": "XF",
"url" : "http://www.securityfocus.com/bid/46465" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65550"
}, },
{ {
"name" : "8102", "name": "46465",
"refsource" : "SREASON", "refsource": "BID",
"url" : "http://securityreason.com/securityalert/8102" "url": "http://www.securityfocus.com/bid/46465"
}, },
{ {
"name" : "wsnguest-index-sql-injection(65550)", "name": "20110221 www.eVuln.com : \"time\" SQL Injection vulnerability in WSN Guest",
"refsource" : "XF", "refsource": "BUGTRAQ",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/65550" "url": "http://www.securityfocus.com/archive/1/516562/100/0/threaded"
} }
] ]
} }

68
2011/1xxx/CVE-2011-1906.json
View File

@ -1,66 +1,66 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2011-1906", "ID": "CVE-2011-1906",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756." "value": "Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://www.trustwave.com/spiderlabs/advisories/TWSL2011-001.txt", "name": "https://www.trustwave.com/spiderlabs/advisories/TWSL2011-001.txt",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://www.trustwave.com/spiderlabs/advisories/TWSL2011-001.txt" "url": "https://www.trustwave.com/spiderlabs/advisories/TWSL2011-001.txt"
}, },
{ {
"name" : "1025447", "name": "1025447",
"refsource" : "SECTRACK", "refsource": "SECTRACK",
"url" : "http://securitytracker.com/id?1025447" "url": "http://securitytracker.com/id?1025447"
} }
] ]
} }

92
2011/3xxx/CVE-2011-3099.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2011-3099", "ID": "CVE-2011-3099",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a malformed name for the font encoding." "value": "Use-after-free vulnerability in the PDF functionality in Google Chrome before 19.0.1084.46 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a malformed name for the font encoding."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://code.google.com/p/chromium/issues/detail?id=124479", "name": "1027067",
"refsource" : "CONFIRM", "refsource": "SECTRACK",
"url" : "http://code.google.com/p/chromium/issues/detail?id=124479" "url": "http://www.securitytracker.com/id?1027067"
}, },
{ {
"name" : "http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html", "name": "http://code.google.com/p/chromium/issues/detail?id=124479",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html" "url": "http://code.google.com/p/chromium/issues/detail?id=124479"
}, },
{ {
"name" : "53540", "name": "oval:org.mitre.oval:def:15208",
"refsource" : "BID", "refsource": "OVAL",
"url" : "http://www.securityfocus.com/bid/53540" "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15208"
}, },
{ {
"name" : "oval:org.mitre.oval:def:15208", "name": "http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html",
"refsource" : "OVAL", "refsource": "CONFIRM",
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15208" "url": "http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html"
}, },
{ {
"name" : "1027067", "name": "53540",
"refsource" : "SECTRACK", "refsource": "BID",
"url" : "http://www.securitytracker.com/id?1027067" "url": "http://www.securityfocus.com/bid/53540"
}, },
{ {
"name" : "chrome-corrupt-font-code-exec(75604)", "name": "chrome-corrupt-font-code-exec(75604)",
"refsource" : "XF", "refsource": "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/75604" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75604"
} }
] ]
} }

74
2011/3xxx/CVE-2011-3903.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "security@google.com",
"ID" : "CVE-2011-3903", "ID": "CVE-2011-3903",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Google Chrome before 16.0.912.63 does not properly perform regex matching, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors." "value": "Google Chrome before 16.0.912.63 does not properly perform regex matching, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://code.google.com/p/chromium/issues/detail?id=81753", "name": "oval:org.mitre.oval:def:14704",
"refsource" : "CONFIRM", "refsource": "OVAL",
"url" : "http://code.google.com/p/chromium/issues/detail?id=81753" "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14704"
}, },
{ {
"name" : "http://googlechromereleases.blogspot.com/2011/12/stable-channel-update.html", "name": "http://googlechromereleases.blogspot.com/2011/12/stable-channel-update.html",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://googlechromereleases.blogspot.com/2011/12/stable-channel-update.html" "url": "http://googlechromereleases.blogspot.com/2011/12/stable-channel-update.html"
}, },
{ {
"name" : "oval:org.mitre.oval:def:14704", "name": "http://code.google.com/p/chromium/issues/detail?id=81753",
"refsource" : "OVAL", "refsource": "CONFIRM",
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14704" "url": "http://code.google.com/p/chromium/issues/detail?id=81753"
} }
] ]
} }

74
2011/4xxx/CVE-2011-4033.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cert@cert.org",
"ID" : "CVE-2011-4033", "ID": "CVE-2011-4033",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier, allows remote attackers to cause a denial of service via unspecified vectors." "value": "Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier, allows remote attackers to cause a denial of service via unspecified vectors."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.us-cert.gov/control_systems/pdf/ICSA-11-307-01.pdf", "name": "http://www.scada.schneider-electric.com/sites/scada/en/login/historian-vulnerability.page",
"refsource" : "MISC", "refsource": "CONFIRM",
"url" : "http://www.us-cert.gov/control_systems/pdf/ICSA-11-307-01.pdf" "url": "http://www.scada.schneider-electric.com/sites/scada/en/login/historian-vulnerability.page"
}, },
{ {
"name" : "http://www.citect.com/index.php?option=com_content&view=article&id=1656&Itemid=1695", "name": "http://www.us-cert.gov/control_systems/pdf/ICSA-11-307-01.pdf",
"refsource" : "CONFIRM", "refsource": "MISC",
"url" : "http://www.citect.com/index.php?option=com_content&view=article&id=1656&Itemid=1695" "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-11-307-01.pdf"
}, },
{ {
"name" : "http://www.scada.schneider-electric.com/sites/scada/en/login/historian-vulnerability.page", "name": "http://www.citect.com/index.php?option=com_content&view=article&id=1656&Itemid=1695",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www.scada.schneider-electric.com/sites/scada/en/login/historian-vulnerability.page" "url": "http://www.citect.com/index.php?option=com_content&view=article&id=1656&Itemid=1695"
} }
] ]
} }

74
2011/4xxx/CVE-2011-4686.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2011-4686", "ID": "CVE-2011-4686",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Unspecified vulnerability in the Web Workers implementation in Opera before 11.60 allows remote attackers to cause a denial of service (application crash) via unknown vectors." "value": "Unspecified vulnerability in the Web Workers implementation in Opera before 11.60 allows remote attackers to cause a denial of service (application crash) via unknown vectors."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.opera.com/docs/changelogs/mac/1160/", "name": "http://www.opera.com/docs/changelogs/mac/1160/",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www.opera.com/docs/changelogs/mac/1160/" "url": "http://www.opera.com/docs/changelogs/mac/1160/"
}, },
{ {
"name" : "http://www.opera.com/docs/changelogs/unix/1160/", "name": "http://www.opera.com/docs/changelogs/windows/1160/",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www.opera.com/docs/changelogs/unix/1160/" "url": "http://www.opera.com/docs/changelogs/windows/1160/"
}, },
{ {
"name" : "http://www.opera.com/docs/changelogs/windows/1160/", "name": "http://www.opera.com/docs/changelogs/unix/1160/",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www.opera.com/docs/changelogs/windows/1160/" "url": "http://www.opera.com/docs/changelogs/unix/1160/"
} }
] ]
} }

22
2013/5xxx/CVE-2013-5261.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2013-5261", "ID": "CVE-2013-5261",
"STATE" : "RESERVED" "STATE": "RESERVED"
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
} }
] ]
} }

86
2013/5xxx/CVE-2013-5382.json
View File

@ -1,81 +1,81 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "psirt@us.ibm.com",
"ID" : "CVE-2013-5382", "ID": "CVE-2013-5382",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to gain privileges via unspecified vectors, a different vulnerability than CVE-2013-5383." "value": "IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to gain privileges via unspecified vectors, a different vulnerability than CVE-2013-5383."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www-01.ibm.com/support/docview.wss?uid=swg21651085", "name": "55070",
"refsource" : "CONFIRM", "refsource": "SECUNIA",
"url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21651085" "url": "http://secunia.com/advisories/55070"
}, },
{ {
"name" : "IV40210", "name": "maximo-cve20135382-priv-esc(86933)",
"refsource" : "AIXAPAR", "refsource": "XF",
"url" : "http://www-01.ibm.com/support/docview.wss?uid=swg1IV40210" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86933"
}, },
{ {
"name" : "55068", "name": "55068",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/55068" "url": "http://secunia.com/advisories/55068"
}, },
{ {
"name" : "55070", "name": "http://www-01.ibm.com/support/docview.wss?uid=swg21651085",
"refsource" : "SECUNIA", "refsource": "CONFIRM",
"url" : "http://secunia.com/advisories/55070" "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21651085"
}, },
{ {
"name" : "maximo-cve20135382-priv-esc(86933)", "name": "IV40210",
"refsource" : "XF", "refsource": "AIXAPAR",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/86933" "url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV40210"
} }
] ]
} }

104
2013/5xxx/CVE-2013-5720.json
View File

@ -1,96 +1,96 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2013-5720", "ID": "CVE-2013-5720",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Buffer overflow in the RTPS dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a denial of service (application crash) via a crafted packet." "value": "Buffer overflow in the RTPS dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 allows remote attackers to cause a denial of service (application crash) via a crafted packet."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9019", "name": "openSUSE-SU-2013:1481",
"refsource" : "CONFIRM", "refsource": "SUSE",
"url" : "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9019" "url": "http://lists.opensuse.org/opensuse-updates/2013-09/msg00050.html"
}, },
{ {
"name" : "https://www.wireshark.org/security/wnpa-sec-2013-57.html", "name": "55022",
"refsource" : "CONFIRM", "refsource": "SECUNIA",
"url" : "https://www.wireshark.org/security/wnpa-sec-2013-57.html" "url": "http://secunia.com/advisories/55022"
}, },
{ {
"name" : "DSA-2756", "name": "https://www.wireshark.org/security/wnpa-sec-2013-57.html",
"refsource" : "DEBIAN", "refsource": "CONFIRM",
"url" : "http://www.debian.org/security/2013/dsa-2756" "url": "https://www.wireshark.org/security/wnpa-sec-2013-57.html"
}, },
{ {
"name" : "openSUSE-SU-2013:1481", "name": "DSA-2756",
"refsource" : "SUSE", "refsource": "DEBIAN",
"url" : "http://lists.opensuse.org/opensuse-updates/2013-09/msg00050.html" "url": "http://www.debian.org/security/2013/dsa-2756"
}, },
{ {
"name" : "openSUSE-SU-2013:1483", "name": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9019",
"refsource" : "SUSE", "refsource": "CONFIRM",
"url" : "http://lists.opensuse.org/opensuse-updates/2013-09/msg00052.html" "url": "https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9019"
}, },
{ {
"name" : "oval:org.mitre.oval:def:18416", "name": "54812",
"refsource" : "OVAL", "refsource": "SECUNIA",
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18416" "url": "http://secunia.com/advisories/54812"
}, },
{ {
"name" : "54812", "name": "oval:org.mitre.oval:def:18416",
"refsource" : "SECUNIA", "refsource": "OVAL",
"url" : "http://secunia.com/advisories/54812" "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18416"
}, },
{ {
"name" : "55022", "name": "openSUSE-SU-2013:1483",
"refsource" : "SECUNIA", "refsource": "SUSE",
"url" : "http://secunia.com/advisories/55022" "url": "http://lists.opensuse.org/opensuse-updates/2013-09/msg00052.html"
} }
] ]
} }

22
2013/5xxx/CVE-2013-5941.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2013-5941", "ID": "CVE-2013-5941",
"STATE" : "RESERVED" "STATE": "RESERVED"
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
} }
] ]
} }

74
2013/5xxx/CVE-2013-5966.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2013-5966", "ID": "CVE-2013-5966",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Cross-site scripting (XSS) vulnerability in ZK Framework before 5.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors." "value": "Cross-site scripting (XSS) vulnerability in ZK Framework before 5.0.13 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20131115 CVE-2013-5966 - XSS in ZK Framework", "name": "20131115 CVE-2013-5966 - XSS in ZK Framework",
"refsource" : "FULLDISC", "refsource": "FULLDISC",
"url" : "http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0101.html" "url": "http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0101.html"
}, },
{ {
"name" : "https://github.com/zkoss/zk/blob/v5.0.13/zkdoc/release-note", "name": "https://github.com/zkoss/zk/blob/v5.0.13/zkdoc/release-note",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://github.com/zkoss/zk/blob/v5.0.13/zkdoc/release-note" "url": "https://github.com/zkoss/zk/blob/v5.0.13/zkdoc/release-note"
}, },
{ {
"name" : "55690", "name": "55690",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/55690" "url": "http://secunia.com/advisories/55690"
} }
] ]
} }

22
2014/2xxx/CVE-2014-2123.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2014-2123", "ID": "CVE-2014-2123",
"STATE" : "RESERVED" "STATE": "RESERVED"
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
} }
] ]
} }

68
2014/2xxx/CVE-2014-2155.json
View File

@ -1,66 +1,66 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "psirt@cisco.com",
"ID" : "CVE-2014-2155", "ID": "CVE-2014-2155",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The DHCPv6 server module in Cisco CNS Network Registrar 7.1 allows remote attackers to cause a denial of service (daemon reload) via a malformed DHCPv6 packet, aka Bug ID CSCuo07437." "value": "The DHCPv6 server module in Cisco CNS Network Registrar 7.1 allows remote attackers to cause a denial of service (daemon reload) via a malformed DHCPv6 packet, aka Bug ID CSCuo07437."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://tools.cisco.com/security/center/viewAlert.x?alertId=33850", "name": "20140417 Cisco Network Registrar DHCPv6 Denial of Service Vulnerability",
"refsource" : "CONFIRM", "refsource": "CISCO",
"url" : "http://tools.cisco.com/security/center/viewAlert.x?alertId=33850" "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2155"
}, },
{ {
"name" : "20140417 Cisco Network Registrar DHCPv6 Denial of Service Vulnerability", "name": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33850",
"refsource" : "CISCO", "refsource": "CONFIRM",
"url" : "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2155" "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=33850"
} }
] ]
} }

62
2014/2xxx/CVE-2014-2407.json
View File

@ -1,61 +1,61 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "secalert_us@oracle.com",
"ID" : "CVE-2014-2407", "ID": "CVE-2014-2407",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality, a different vulnerability than CVE-2014-2415, CVE-2014-2416, CVE-2014-2417, and CVE-2014-2418." "value": "Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Data Quality, a different vulnerability than CVE-2014-2415, CVE-2014-2416, CVE-2014-2417, and CVE-2014-2418."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html", "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html" "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html"
} }
] ]
} }

68
2014/2xxx/CVE-2014-2638.json
View File

@ -1,66 +1,66 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "hp-security-alert@hp.com",
"ID" : "CVE-2014-2638", "ID": "CVE-2014-2638",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2344." "value": "Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2344."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "HPSBMU03110", "name": "SSRT101587",
"refsource" : "HP", "refsource": "HP",
"url" : "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04454636" "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04454636"
}, },
{ {
"name" : "SSRT101587", "name": "HPSBMU03110",
"refsource" : "HP", "refsource": "HP",
"url" : "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04454636" "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04454636"
} }
] ]
} }

86
2014/2xxx/CVE-2014-2808.json
View File

@ -1,81 +1,81 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "secure@microsoft.com",
"ID" : "CVE-2014-2808", "ID": "CVE-2014-2808",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka \"Internet Explorer Memory Corruption Vulnerability,\" a different vulnerability than CVE-2014-2796, CVE-2014-2825, CVE-2014-4050, CVE-2014-4055, and CVE-2014-4067." "value": "Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka \"Internet Explorer Memory Corruption Vulnerability,\" a different vulnerability than CVE-2014-2796, CVE-2014-2825, CVE-2014-4050, CVE-2014-4055, and CVE-2014-4067."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "MS14-051", "name": "1030715",
"refsource" : "MS", "refsource": "SECTRACK",
"url" : "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-051" "url": "http://www.securitytracker.com/id/1030715"
}, },
{ {
"name" : "69103", "name": "69103",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/69103" "url": "http://www.securityfocus.com/bid/69103"
}, },
{ {
"name" : "1030715", "name": "ms-ie-cve20142808-code-exec(94971)",
"refsource" : "SECTRACK", "refsource": "XF",
"url" : "http://www.securitytracker.com/id/1030715" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/94971"
}, },
{ {
"name" : "60670", "name": "MS14-051",
"refsource" : "SECUNIA", "refsource": "MS",
"url" : "http://secunia.com/advisories/60670" "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-051"
}, },
{ {
"name" : "ms-ie-cve20142808-code-exec(94971)", "name": "60670",
"refsource" : "XF", "refsource": "SECUNIA",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/94971" "url": "http://secunia.com/advisories/60670"
} }
] ]
} }

74
2014/2xxx/CVE-2014-2959.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cert@cert.org",
"ID" : "CVE-2014-2959", "ID": "CVE-2014-2959",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote attackers to execute arbitrary commands via shell metacharacters in a pathname parameter." "value": "logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote attackers to execute arbitrary commands via shell metacharacters in a pathname parameter."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "VU#124908", "name": "67751",
"refsource" : "CERT-VN", "refsource": "BID",
"url" : "http://www.kb.cert.org/vuls/id/124908" "url": "http://www.securityfocus.com/bid/67751"
}, },
{ {
"name" : "67751", "name": "VU#124908",
"refsource" : "BID", "refsource": "CERT-VN",
"url" : "http://www.securityfocus.com/bid/67751" "url": "http://www.kb.cert.org/vuls/id/124908"
}, },
{ {
"name" : "59019", "name": "59019",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/59019" "url": "http://secunia.com/advisories/59019"
} }
] ]
} }

80
2014/2xxx/CVE-2014-2988.json
View File

@ -1,76 +1,76 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2014-2988", "ID": "CVE-2014-2988",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "EGroupware Enterprise Line (EPL) before 1.1.20140505, EGroupware Community Edition before 1.8.007.20140506, and EGroupware before 14.1 beta allows remote authenticated administrators to execute arbitrary PHP code via crafted callback values to the call_user_func PHP function, as demonstrated using the newsettings[system] parameter. NOTE: this can be exploited by remote attackers by leveraging CVE-2014-2987." "value": "EGroupware Enterprise Line (EPL) before 1.1.20140505, EGroupware Community Edition before 1.8.007.20140506, and EGroupware before 14.1 beta allows remote authenticated administrators to execute arbitrary PHP code via crafted callback values to the call_user_func PHP function, as demonstrated using the newsettings[system] parameter. NOTE: this can be exploited by remote attackers by leveraging CVE-2014-2987."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "20140514 CSRF and Remote Code Execution in EGroupware", "name": "http://advisories.mageia.org/MGASA-2014-0221.html",
"refsource" : "BUGTRAQ", "refsource": "CONFIRM",
"url" : "http://www.securityfocus.com/archive/1/532103/100/0/threaded" "url": "http://advisories.mageia.org/MGASA-2014-0221.html"
}, },
{ {
"name" : "https://www.htbridge.com/advisory/HTB23212", "name": "MDVSA-2015:087",
"refsource" : "MISC", "refsource": "MANDRIVA",
"url" : "https://www.htbridge.com/advisory/HTB23212" "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:087"
}, },
{ {
"name" : "http://advisories.mageia.org/MGASA-2014-0221.html", "name": "https://www.htbridge.com/advisory/HTB23212",
"refsource" : "CONFIRM", "refsource": "MISC",
"url" : "http://advisories.mageia.org/MGASA-2014-0221.html" "url": "https://www.htbridge.com/advisory/HTB23212"
}, },
{ {
"name" : "MDVSA-2015:087", "name": "20140514 CSRF and Remote Code Execution in EGroupware",
"refsource" : "MANDRIVA", "refsource": "BUGTRAQ",
"url" : "http://www.mandriva.com/security/advisories?name=MDVSA-2015:087" "url": "http://www.securityfocus.com/archive/1/532103/100/0/threaded"
} }
] ]
} }

68
2014/6xxx/CVE-2014-6168.json
View File

@ -1,66 +1,66 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "psirt@us.ibm.com",
"ID" : "CVE-2014-6168", "ID": "CVE-2014-6168",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager 5.1 before 5.1.0.15 IF0056 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences." "value": "Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager 5.1 before 5.1.0.15 IF0056 allows remote authenticated users to hijack the authentication of arbitrary users for requests that insert XSS sequences."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www-01.ibm.com/support/docview.wss?uid=swg21692907", "name": "http://www-01.ibm.com/support/docview.wss?uid=swg21692907",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21692907" "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21692907"
}, },
{ {
"name" : "ibm-sim-cve20146168-csrf(97752)", "name": "ibm-sim-cve20146168-csrf(97752)",
"refsource" : "XF", "refsource": "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/97752" "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/97752"
} }
] ]
} }

68
2014/6xxx/CVE-2014-6260.json
View File

@ -1,66 +1,66 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2014-6260", "ID": "CVE-2014-6260",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Zenoss Core through 5 Beta 3 does not require a password for modifying the pager command string, which allows remote attackers to execute arbitrary commands or cause a denial of service (paging outage) by leveraging an unattended workstation, aka ZEN-15412." "value": "Zenoss Core through 5 Beta 3 does not require a password for modifying the pager command string, which allows remote attackers to execute arbitrary commands or cause a denial of service (paging outage) by leveraging an unattended workstation, aka ZEN-15412."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://docs.google.com/spreadsheets/d/1dHAc4PxUbs-4Dxzm1wSCE0sMz5UCMY6SW3PlMHSyuuQ/edit?usp=sharing", "name": "VU#449452",
"refsource" : "CONFIRM", "refsource": "CERT-VN",
"url" : "https://docs.google.com/spreadsheets/d/1dHAc4PxUbs-4Dxzm1wSCE0sMz5UCMY6SW3PlMHSyuuQ/edit?usp=sharing" "url": "http://www.kb.cert.org/vuls/id/449452"
}, },
{ {
"name" : "VU#449452", "name": "https://docs.google.com/spreadsheets/d/1dHAc4PxUbs-4Dxzm1wSCE0sMz5UCMY6SW3PlMHSyuuQ/edit?usp=sharing",
"refsource" : "CERT-VN", "refsource": "CONFIRM",
"url" : "http://www.kb.cert.org/vuls/id/449452" "url": "https://docs.google.com/spreadsheets/d/1dHAc4PxUbs-4Dxzm1wSCE0sMz5UCMY6SW3PlMHSyuuQ/edit?usp=sharing"
} }
] ]
} }

22
2014/7xxx/CVE-2014-7220.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2014-7220", "ID": "CVE-2014-7220",
"STATE" : "RESERVED" "STATE": "RESERVED"
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
} }
] ]
} }

74
2014/7xxx/CVE-2014-7263.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "vultures@jpcert.or.jp",
"ID" : "CVE-2014-7263", "ID": "CVE-2014-7263",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Cross-site scripting (XSS) vulnerability in ULTRAPOP.JP i-HTTPD allows remote attackers to inject arbitrary web script or HTML via a crafted HTTP header, a different vulnerability than CVE-2014-7261." "value": "Cross-site scripting (XSS) vulnerability in ULTRAPOP.JP i-HTTPD allows remote attackers to inject arbitrary web script or HTML via a crafted HTTP header, a different vulnerability than CVE-2014-7261."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://jvn.jp/en/jp/JVN87910097/360573/index.html", "name": "http://jvn.jp/en/jp/JVN87910097/360573/index.html",
"refsource" : "MISC", "refsource": "MISC",
"url" : "http://jvn.jp/en/jp/JVN87910097/360573/index.html" "url": "http://jvn.jp/en/jp/JVN87910097/360573/index.html"
}, },
{ {
"name" : "JVN#87910097", "name": "JVNDB-2014-000146",
"refsource" : "JVN", "refsource": "JVNDB",
"url" : "http://jvn.jp/en/jp/JVN87910097/index.html" "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2014-000146"
}, },
{ {
"name" : "JVNDB-2014-000146", "name": "JVN#87910097",
"refsource" : "JVNDB", "refsource": "JVN",
"url" : "http://jvndb.jvn.jp/jvndb/JVNDB-2014-000146" "url": "http://jvn.jp/en/jp/JVN87910097/index.html"
} }
] ]
} }

74
2014/7xxx/CVE-2014-7526.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cert@cert.org",
"ID" : "CVE-2014-7526", "ID": "CVE-2014-7526",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The Immunize Canada (aka ca.ohri.immunizeapp) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate." "value": "The Immunize Canada (aka ca.ohri.immunizeapp) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing", "name": "VU#582497",
"refsource" : "MISC", "refsource": "CERT-VN",
"url" : "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing" "url": "http://www.kb.cert.org/vuls/id/582497"
}, },
{ {
"name" : "VU#310577", "name": "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing",
"refsource" : "CERT-VN", "refsource": "MISC",
"url" : "http://www.kb.cert.org/vuls/id/310577" "url": "https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJb2w0zi3FoLRIkfGPc7AMjRF0r4/edit?usp=sharing"
}, },
{ {
"name" : "VU#582497", "name": "VU#310577",
"refsource" : "CERT-VN", "refsource": "CERT-VN",
"url" : "http://www.kb.cert.org/vuls/id/582497" "url": "http://www.kb.cert.org/vuls/id/310577"
} }
] ]
} }

122
2014/7xxx/CVE-2014-7942.json
View File

@ -1,111 +1,111 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "security@google.com",
"ID" : "CVE-2014-7942", "ID": "CVE-2014-7942",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The Fonts implementation in Google Chrome before 40.0.2214.91 does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors." "value": "The Fonts implementation in Google Chrome before 40.0.2214.91 does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://googlechromereleases.blogspot.com/2015/01/stable-update.html", "name": "62665",
"refsource" : "CONFIRM", "refsource": "SECUNIA",
"url" : "http://googlechromereleases.blogspot.com/2015/01/stable-update.html" "url": "http://secunia.com/advisories/62665"
}, },
{ {
"name" : "https://code.google.com/p/chromium/issues/detail?id=426762", "name": "https://code.google.com/p/chromium/issues/detail?id=426762",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://code.google.com/p/chromium/issues/detail?id=426762" "url": "https://code.google.com/p/chromium/issues/detail?id=426762"
}, },
{ {
"name" : "GLSA-201502-13", "name": "http://googlechromereleases.blogspot.com/2015/01/stable-update.html",
"refsource" : "GENTOO", "refsource": "CONFIRM",
"url" : "http://security.gentoo.org/glsa/glsa-201502-13.xml" "url": "http://googlechromereleases.blogspot.com/2015/01/stable-update.html"
}, },
{ {
"name" : "RHSA-2015:0093", "name": "62575",
"refsource" : "REDHAT", "refsource": "SECUNIA",
"url" : "http://rhn.redhat.com/errata/RHSA-2015-0093.html" "url": "http://secunia.com/advisories/62575"
}, },
{ {
"name" : "openSUSE-SU-2015:0441", "name": "USN-2476-1",
"refsource" : "SUSE", "refsource": "UBUNTU",
"url" : "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00005.html" "url": "http://www.ubuntu.com/usn/USN-2476-1"
}, },
{ {
"name" : "USN-2476-1", "name": "72288",
"refsource" : "UBUNTU", "refsource": "BID",
"url" : "http://www.ubuntu.com/usn/USN-2476-1" "url": "http://www.securityfocus.com/bid/72288"
}, },
{ {
"name" : "72288", "name": "GLSA-201502-13",
"refsource" : "BID", "refsource": "GENTOO",
"url" : "http://www.securityfocus.com/bid/72288" "url": "http://security.gentoo.org/glsa/glsa-201502-13.xml"
}, },
{ {
"name" : "1031623", "name": "1031623",
"refsource" : "SECTRACK", "refsource": "SECTRACK",
"url" : "http://www.securitytracker.com/id/1031623" "url": "http://www.securitytracker.com/id/1031623"
}, },
{ {
"name" : "62575", "name": "openSUSE-SU-2015:0441",
"refsource" : "SECUNIA", "refsource": "SUSE",
"url" : "http://secunia.com/advisories/62575" "url": "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00005.html"
}, },
{ {
"name" : "62383", "name": "RHSA-2015:0093",
"refsource" : "SECUNIA", "refsource": "REDHAT",
"url" : "http://secunia.com/advisories/62383" "url": "http://rhn.redhat.com/errata/RHSA-2015-0093.html"
}, },
{ {
"name" : "62665", "name": "62383",
"refsource" : "SECUNIA", "refsource": "SECUNIA",
"url" : "http://secunia.com/advisories/62665" "url": "http://secunia.com/advisories/62383"
} }
] ]
} }

74
2017/0xxx/CVE-2017-0155.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "secure@microsoft.com", "ASSIGNER": "secure@microsoft.com",
"ID" : "CVE-2017-0155", "ID": "CVE-2017-0155",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "Windows Graphics Component", "product_name": "Windows Graphics Component",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "Windows Vista SP2, Windows Server 2008 SP2, Windows Server 2008 R2 SP1, and Windows 7 SP1" "version_value": "Windows Vista SP2, Windows Server 2008 SP2, Windows Server 2008 R2 SP1, and Windows 7 SP1"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "Microsoft Corporation" "vendor_name": "Microsoft Corporation"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The Graphics component in the kernel in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka \"Windows Graphics Elevation of Privilege Vulnerability.\"" "value": "The Graphics component in the kernel in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka \"Windows Graphics Elevation of Privilege Vulnerability.\""
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Elevation of Privilege" "value": "Elevation of Privilege"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0155", "name": "1038237",
"refsource" : "CONFIRM", "refsource": "SECTRACK",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0155" "url": "http://www.securitytracker.com/id/1038237"
}, },
{ {
"name" : "97471", "name": "97471",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/97471" "url": "http://www.securityfocus.com/bid/97471"
}, },
{ {
"name" : "1038237", "name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0155",
"refsource" : "SECTRACK", "refsource": "CONFIRM",
"url" : "http://www.securitytracker.com/id/1038237" "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0155"
} }
] ]
} }

22
2017/0xxx/CVE-2017-0993.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2017-0993", "ID": "CVE-2017-0993",
"STATE" : "RESERVED" "STATE": "RESERVED"
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
} }
] ]
} }

66
2017/1000xxx/CVE-2017-1000155.json
View File

@ -1,63 +1,63 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve-assign@distributedweaknessfiling.org", "ASSIGNER": "cve@mitre.org",
"DATE_ASSIGNED" : "2017-08-22T17:29:33.366861", "DATE_ASSIGNED": "2017-08-22T17:29:33.366861",
"ID" : "CVE-2017-1000155", "ID": "CVE-2017-1000155",
"REQUESTER" : "info@mahara.org", "REQUESTER": "info@mahara.org",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "Mahara", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "<15.04.8, <15.10.4, <16.04.2" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "Mahara" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to profile pictures being accessed without any access control checks consequently allowing any of a user's uploaded profile pictures to be viewable by anyone, whether or not they were currently selected as the \"default\" or used in any pages." "value": "Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to profile pictures being accessed without any access control checks consequently allowing any of a user's uploaded profile pictures to be viewable by anyone, whether or not they were currently selected as the \"default\" or used in any pages."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Incorrect Access Control" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://bugs.launchpad.net/mahara/+bug/1600069", "name": "https://bugs.launchpad.net/mahara/+bug/1600069",
"refsource" : "MISC", "refsource": "MISC",
"url" : "https://bugs.launchpad.net/mahara/+bug/1600069" "url": "https://bugs.launchpad.net/mahara/+bug/1600069"
} }
] ]
} }

140
2017/1xxx/CVE-2017-1124.json
View File

@ -1,174 +1,174 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "psirt@us.ibm.com", "ASSIGNER": "psirt@us.ibm.com",
"ID" : "CVE-2017-1124", "ID": "CVE-2017-1124",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "Maximo Asset Management", "product_name": "Maximo Asset Management",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "6.2" "version_value": "6.2"
}, },
{ {
"version_value" : "7.1" "version_value": "7.1"
}, },
{ {
"version_value" : "7.5" "version_value": "7.5"
}, },
{ {
"version_value" : "7.5.0.0" "version_value": "7.5.0.0"
}, },
{ {
"version_value" : "7.5.0.10" "version_value": "7.5.0.10"
}, },
{ {
"version_value" : "7.1.0.0" "version_value": "7.1.0.0"
}, },
{ {
"version_value" : "6.2.0.0" "version_value": "6.2.0.0"
}, },
{ {
"version_value" : "7.2" "version_value": "7.2"
}, },
{ {
"version_value" : "7.1.1" "version_value": "7.1.1"
}, },
{ {
"version_value" : "7.1.2" "version_value": "7.1.2"
}, },
{ {
"version_value" : "7.2.1" "version_value": "7.2.1"
}, },
{ {
"version_value" : "6.2.1" "version_value": "6.2.1"
}, },
{ {
"version_value" : "6.2.2" "version_value": "6.2.2"
}, },
{ {
"version_value" : "6.2.3" "version_value": "6.2.3"
}, },
{ {
"version_value" : "6.2.4" "version_value": "6.2.4"
}, },
{ {
"version_value" : "6.2.5" "version_value": "6.2.5"
}, },
{ {
"version_value" : "6.2.6" "version_value": "6.2.6"
}, },
{ {
"version_value" : "6.2.7" "version_value": "6.2.7"
}, },
{ {
"version_value" : "6.2.8" "version_value": "6.2.8"
}, },
{ {
"version_value" : "7.1.1.1" "version_value": "7.1.1.1"
}, },
{ {
"version_value" : "7.1.1.10" "version_value": "7.1.1.10"
}, },
{ {
"version_value" : "7.1.1.11" "version_value": "7.1.1.11"
}, },
{ {
"version_value" : "7.1.1.12" "version_value": "7.1.1.12"
}, },
{ {
"version_value" : "7.1.1.2" "version_value": "7.1.1.2"
}, },
{ {
"version_value" : "7.1.1.5" "version_value": "7.1.1.5"
}, },
{ {
"version_value" : "7.1.1.6" "version_value": "7.1.1.6"
}, },
{ {
"version_value" : "7.1.1.7" "version_value": "7.1.1.7"
}, },
{ {
"version_value" : "7.1.1.8" "version_value": "7.1.1.8"
}, },
{ {
"version_value" : "7.1.1.9" "version_value": "7.1.1.9"
}, },
{ {
"version_value" : "7.5.0.1" "version_value": "7.5.0.1"
}, },
{ {
"version_value" : "7.5.0.2" "version_value": "7.5.0.2"
}, },
{ {
"version_value" : "7.5.0.3" "version_value": "7.5.0.3"
}, },
{ {
"version_value" : "7.5.0.4" "version_value": "7.5.0.4"
}, },
{ {
"version_value" : "7.5.0.5" "version_value": "7.5.0.5"
}, },
{ {
"version_value" : "7.6" "version_value": "7.6"
}, },
{ {
"version_value" : "7.5.0" "version_value": "7.5.0"
}, },
{ {
"version_value" : "7.6.0" "version_value": "7.6.0"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "IBM Corporation" "vendor_name": "IBM Corporation"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local attacker to obtain sensitive information using HTTP Header Injection. IBM Reference #: 1998053." "value": "IBM Maximo Asset Management 7.1, 7.5, and 7.6 could allow a local attacker to obtain sensitive information using HTTP Header Injection. IBM Reference #: 1998053."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Obtain Information" "value": "Obtain Information"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "http://www.ibm.com/support/docview.wss?uid=swg21998053", "name": "http://www.ibm.com/support/docview.wss?uid=swg21998053",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "http://www.ibm.com/support/docview.wss?uid=swg21998053" "url": "http://www.ibm.com/support/docview.wss?uid=swg21998053"
}, },
{ {
"name" : "96536", "name": "96536",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/96536" "url": "http://www.securityfocus.com/bid/96536"
} }
] ]
} }

92
2017/5xxx/CVE-2017-5102.json
View File

@ -1,86 +1,86 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "security@google.com", "ASSIGNER": "security@google.com",
"ID" : "CVE-2017-5102", "ID": "CVE-2017-5102",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux and Android", "product_name": "Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux and Android",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux and Android" "version_value": "Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux and Android"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Use of an uninitialized value in Skia in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page." "value": "Use of an uninitialized value in Skia in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Uninitialized Use" "value": "Uninitialized Use"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html", "name": "https://crbug.com/727678",
"refsource" : "MISC", "refsource": "MISC",
"url" : "https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html" "url": "https://crbug.com/727678"
}, },
{ {
"name" : "https://crbug.com/727678", "name": "GLSA-201709-15",
"refsource" : "MISC", "refsource": "GENTOO",
"url" : "https://crbug.com/727678" "url": "https://security.gentoo.org/glsa/201709-15"
}, },
{ {
"name" : "DSA-3926", "name": "DSA-3926",
"refsource" : "DEBIAN", "refsource": "DEBIAN",
"url" : "http://www.debian.org/security/2017/dsa-3926" "url": "http://www.debian.org/security/2017/dsa-3926"
}, },
{ {
"name" : "GLSA-201709-15", "name": "https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html",
"refsource" : "GENTOO", "refsource": "MISC",
"url" : "https://security.gentoo.org/glsa/201709-15" "url": "https://chromereleases.googleblog.com/2017/07/stable-channel-update-for-desktop.html"
}, },
{ {
"name" : "RHSA-2017:1833", "name": "99950",
"refsource" : "REDHAT", "refsource": "BID",
"url" : "https://access.redhat.com/errata/RHSA-2017:1833" "url": "http://www.securityfocus.com/bid/99950"
}, },
{ {
"name" : "99950", "name": "RHSA-2017:1833",
"refsource" : "BID", "refsource": "REDHAT",
"url" : "http://www.securityfocus.com/bid/99950" "url": "https://access.redhat.com/errata/RHSA-2017:1833"
} }
] ]
} }

22
2017/5xxx/CVE-2017-5322.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2017-5322", "ID": "CVE-2017-5322",
"STATE" : "RESERVED" "STATE": "RESERVED"
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
} }
] ]
} }

148
2017/5xxx/CVE-2017-5446.json
View File

@ -1,138 +1,138 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "security@mozilla.org", "ASSIGNER": "security@mozilla.org",
"ID" : "CVE-2017-5446", "ID": "CVE-2017-5446",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "Thunderbird", "product_name": "Thunderbird",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_affected" : "<", "version_affected": "<",
"version_value" : "52.1" "version_value": "52.1"
} }
] ]
} }
}, },
{ {
"product_name" : "Firefox ESR", "product_name": "Firefox ESR",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_affected" : "<", "version_affected": "<",
"version_value" : "45.9" "version_value": "45.9"
}, },
{ {
"version_affected" : "<", "version_affected": "<",
"version_value" : "52.1" "version_value": "52.1"
} }
] ]
} }
}, },
{ {
"product_name" : "Firefox", "product_name": "Firefox",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_affected" : "<", "version_affected": "<",
"version_value" : "53" "version_value": "53"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "Mozilla" "vendor_name": "Mozilla"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "An out-of-bounds read when an HTTP/2 connection to a servers sends \"DATA\" frames with incorrect data content. This leads to a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53." "value": "An out-of-bounds read when an HTTP/2 connection to a servers sends \"DATA\" frames with incorrect data content. This leads to a potentially exploitable crash. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "Out-of-bounds read when HTTP/2 DATA frames are sent with incorrect data" "value": "Out-of-bounds read when HTTP/2 DATA frames are sent with incorrect data"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://bugzilla.mozilla.org/show_bug.cgi?id=1343505", "name": "RHSA-2017:1106",
"refsource" : "CONFIRM", "refsource": "REDHAT",
"url" : "https://bugzilla.mozilla.org/show_bug.cgi?id=1343505" "url": "https://access.redhat.com/errata/RHSA-2017:1106"
}, },
{ {
"name" : "https://www.mozilla.org/security/advisories/mfsa2017-10/", "name": "https://www.mozilla.org/security/advisories/mfsa2017-12/",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://www.mozilla.org/security/advisories/mfsa2017-10/" "url": "https://www.mozilla.org/security/advisories/mfsa2017-12/"
}, },
{ {
"name" : "https://www.mozilla.org/security/advisories/mfsa2017-11/", "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=1343505",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://www.mozilla.org/security/advisories/mfsa2017-11/" "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1343505"
}, },
{ {
"name" : "https://www.mozilla.org/security/advisories/mfsa2017-12/", "name": "https://www.mozilla.org/security/advisories/mfsa2017-11/",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://www.mozilla.org/security/advisories/mfsa2017-12/" "url": "https://www.mozilla.org/security/advisories/mfsa2017-11/"
}, },
{ {
"name" : "https://www.mozilla.org/security/advisories/mfsa2017-13/", "name": "https://www.mozilla.org/security/advisories/mfsa2017-10/",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://www.mozilla.org/security/advisories/mfsa2017-13/" "url": "https://www.mozilla.org/security/advisories/mfsa2017-10/"
}, },
{ {
"name" : "DSA-3831", "name": "97940",
"refsource" : "DEBIAN", "refsource": "BID",
"url" : "https://www.debian.org/security/2017/dsa-3831" "url": "http://www.securityfocus.com/bid/97940"
}, },
{ {
"name" : "RHSA-2017:1104", "name": "DSA-3831",
"refsource" : "REDHAT", "refsource": "DEBIAN",
"url" : "https://access.redhat.com/errata/RHSA-2017:1104" "url": "https://www.debian.org/security/2017/dsa-3831"
}, },
{ {
"name" : "RHSA-2017:1106", "name": "https://www.mozilla.org/security/advisories/mfsa2017-13/",
"refsource" : "REDHAT", "refsource": "CONFIRM",
"url" : "https://access.redhat.com/errata/RHSA-2017:1106" "url": "https://www.mozilla.org/security/advisories/mfsa2017-13/"
}, },
{ {
"name" : "RHSA-2017:1201", "name": "1038320",
"refsource" : "REDHAT", "refsource": "SECTRACK",
"url" : "https://access.redhat.com/errata/RHSA-2017:1201" "url": "http://www.securitytracker.com/id/1038320"
}, },
{ {
"name" : "97940", "name": "RHSA-2017:1104",
"refsource" : "BID", "refsource": "REDHAT",
"url" : "http://www.securityfocus.com/bid/97940" "url": "https://access.redhat.com/errata/RHSA-2017:1104"
}, },
{ {
"name" : "1038320", "name": "RHSA-2017:1201",
"refsource" : "SECTRACK", "refsource": "REDHAT",
"url" : "http://www.securitytracker.com/id/1038320" "url": "https://access.redhat.com/errata/RHSA-2017:1201"
} }
] ]
} }

74
2017/5xxx/CVE-2017-5583.json
View File

@ -1,71 +1,71 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2017-5583", "ID": "CVE-2017-5583",
"STATE" : "PUBLIC" "STATE": "PUBLIC"
}, },
"affects" : { "affects": {
"vendor" : { "vendor": {
"vendor_data" : [ "vendor_data": [
{ {
"product" : { "product": {
"product_data" : [ "product_data": [
{ {
"product_name" : "n/a", "product_name": "n/a",
"version" : { "version": {
"version_data" : [ "version_data": [
{ {
"version_value" : "n/a" "version_value": "n/a"
} }
] ]
} }
} }
] ]
}, },
"vendor_name" : "n/a" "vendor_name": "n/a"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "The Management Web Interface in Palo Alto Networks PAN-OS before 6.1.16, 7.0.x before 7.0.13, and 7.1.x before 7.1.8 allows remote authenticated users to read arbitrary files via unspecified vectors." "value": "The Management Web Interface in Palo Alto Networks PAN-OS before 6.1.16, 7.0.x before 7.0.13, and 7.1.x before 7.1.8 allows remote authenticated users to read arbitrary files via unspecified vectors."
} }
] ]
}, },
"problemtype" : { "problemtype": {
"problemtype_data" : [ "problemtype_data": [
{ {
"description" : [ "description": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "n/a" "value": "n/a"
} }
] ]
} }
] ]
}, },
"references" : { "references": {
"reference_data" : [ "reference_data": [
{ {
"name" : "https://securityadvisories.paloaltonetworks.com/Home/Detail/75", "name": "https://securityadvisories.paloaltonetworks.com/Home/Detail/75",
"refsource" : "CONFIRM", "refsource": "CONFIRM",
"url" : "https://securityadvisories.paloaltonetworks.com/Home/Detail/75" "url": "https://securityadvisories.paloaltonetworks.com/Home/Detail/75"
}, },
{ {
"name" : "96370", "name": "96370",
"refsource" : "BID", "refsource": "BID",
"url" : "http://www.securityfocus.com/bid/96370" "url": "http://www.securityfocus.com/bid/96370"
}, },
{ {
"name" : "1037890", "name": "1037890",
"refsource" : "SECTRACK", "refsource": "SECTRACK",
"url" : "http://www.securitytracker.com/id/1037890" "url": "http://www.securitytracker.com/id/1037890"
} }
] ]
} }

22
2017/5xxx/CVE-2017-5730.json
View File

@ -1,17 +1,17 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "cve@mitre.org",
"ID" : "CVE-2017-5730", "ID": "CVE-2017-5730",
"STATE" : "RESERVED" "STATE": "RESERVED"
}, },
"data_format" : "MITRE", "data_format": "MITRE",
"data_type" : "CVE", "data_type": "CVE",
"data_version" : "4.0", "data_version": "4.0",
"description" : { "description": {
"description_data" : [ "description_data": [
{ {
"lang" : "eng", "lang": "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
} }
] ]
} }