|
|
CVE Reference Map for Source SREASONRES
| Source | SREASONRES |
| Description | SecurityReason Research Advisory |
| URL | http://securityreason.com/research |
| Notes |
This reference map lists the various references for SREASONRES and provides the associated CVE entries or candidates. It uses data from CVE version 20061101 and candidates that were active as of 2024-06-25.
Note that the list of references may not be complete.
| SREASONRES:20051217 phpBB 2.0.18 XSS and Full Path Disclosure | CVE-2005-4357 CVE-2005-4358 |
| SREASONRES:20060105 phpBB 2.0.19 XSS | CVE-2006-0063 |
| SREASONRES:20060203 phpBB 2.0.19 Cross Site Request Forgeries and XSS Admin | CVE-2006-0437 CVE-2006-0438 |
| SREASONRES:20060216 Critical SQL Injection PHPNuke <= 7.8 - Your_Account module | CVE-2006-0679 |
| SREASONRES:20060408 copy() Safe Mode Bypass PHP 4.4.2 and 5.1.2 | CVE-2006-1608 |
| SREASONRES:20060408 function *() php/apache Crash PHP 4.4.2 and 5.1.2 | CVE-2006-1549 |
| SREASONRES:20060408 phpinfo() Cross Site Scripting PHP 5.1.2 and 4.4.2 | CVE-2006-0996 |
| SREASONRES:20060408 tempnam() open_basedir bypass PHP 4.4.2 and 5.1.2 | CVE-2006-1494 |
| SREASONRES:20060526 cURL Safe Mode Bypass PHP 4.4.2 and 5.1.4 | CVE-2006-2563 |
| SREASONRES:20060625 error_log() Safe Mode Bypass PHP 5.1.4 and 4.4.2 | CVE-2006-3011 |
| SREASONRES:20060909 PHP 5.1.6 / 4.4.4 Critical php_admin* bypass by ini_restore() | CVE-2006-4625 |
| SREASONRES:20061208 PHP 5.2.0 session.save_path safe_mode and open_basedir bypass | CVE-2006-6383 |
| SREASONRES:20070125 PHP 5.2.0 safe_mode bypass (by Writing Mode) | CVE-2007-0448 |
| SREASONRES:20070627 PHP 5.2.3 PHP 4.4.7, htaccess safemode and open_basedir Bypass | CVE-2007-3378 |
| SREASONRES:20070912 Apache2 Undefined Charset UTF-7 XSS Vulnerability | CVE-2007-4465 |
| SREASONRES:20080110 Apache (mod_proxy_ftp) Undefined Charset UTF-7 XSS Vulnerability | CVE-2008-0005 |
| SREASONRES:20080122 PHP 5.2.5 cURL safe_mode bypass | CVE-2007-4850 |
| SREASONRES:20080320 PHP 5.2.5 and prior : *printf() functions Integer Overflow | CVE-2008-1384 |
| SREASONRES:20080325 *BSD libc (strfmon) Multiple vulnerabilities | CVE-2008-1391 |
| SREASONRES:20080617 PHP 5.2.6 chdir(),ftok() (standard ext) safe_mode bypass | CVE-2008-2666 |
| SREASONRES:20080617 PHP 5.2.6 posix_access() (posix ext) safe_mode bypass | CVE-2008-2665 |
| SREASONRES:20080926 multiple vendor ftpd - Cross-site request forgery | CVE-2008-4242 CVE-2008-4247 |
| SREASONRES:20081120 PHP 5.2.6 (error_log) safe_mode bypass | CVE-2008-5625 |
| SREASONRES:20081127 PHP 5.2.6 dba_replace() destroying file | CVE-2008-7068 |
| SREASONRES:20081205 PHP 5.2.6 SAPI php_getuid() overload | CVE-2008-5624 |
| SREASONRES:20090304 libc:fts_*():multiple vendors, Denial-of-service | CVE-2009-0537 |
| SREASONRES:20090522 IPFilter (ippool) 4.1.31 lib/load_http.c buffer overflow | CVE-2009-1476 |
| SREASONRES:20090625 Multiple Vendors libc/gdtoa printf(3) Array Overrun | CVE-2009-0689 |
| SREASONRES:20090806 PHP 5.2.10/5.3.0 (zend_ini.c) Memory Disclosure | CVE-2009-2626 |
| SREASONRES:20090819 Kaspersky AV/IS 2010 (avp.exe) Denial-of-Service | CVE-2009-2966 |
| SREASONRES:20090917 glibc x<=2.10.1 stdio/strfmon.c Multiple Vulnerabilities | CVE-2009-4880 |
| SREASONRES:20091030 Multiple BSD printf(1) and multiple dtoa/*printf(3) vulnerabilities | CVE-2009-0689 |
| SREASONRES:20091120 K-Meleon 1.5.3 Remote Array Overrun (Arbitrary code execution) | CVE-2009-0689 |
| SREASONRES:20091120 Opera 10.01 Remote Array Overrun (Arbitrary code execution) | CVE-2009-0689 |
| SREASONRES:20091120 SeaMonkey 1.1.8 Remote Array Overrun (Arbitrary code execution) | CVE-2009-0689 |
| SREASONRES:20091211 Camino 1.6.10 Remote Array Overrun (Arbitrary code execution) | CVE-2009-0689 |
| SREASONRES:20091211 Flock 2.5.2 Remote Array Overrun (Arbitrary code execution) | CVE-2009-0689 |
| SREASONRES:20091211 Sunbird 0.9 Array Overrun (code execution) | CVE-2009-0689 |
| SREASONRES:20091211 Thunderbird 2.0.0.23 (lib) Remote Array Overrun (Arbitrary code execution) | CVE-2009-0689 |
| SREASONRES:20100108 MacOS X 10.5/10.6 libc/strtod(3) buffer overflow | CVE-2009-0689 |
| SREASONRES:20100211 PHP 5.2.12/5.3.1 session.save_path safe_mode and open_basedir bypass | CVE-2010-1130 |
| SREASONRES:20100423 MacOS X 10.6.3 filesystem hfs Denial of Service Vulnerability | CVE-2010-0105 |
| SREASONRES:20100527 libopie __readrec() off-by one (FreeBSD ftpd remote PoC) | CVE-2010-1938 |
| SREASONRES:20101007 Multiple Vendors libc/glob(3) resource exhaustion (+0day remote ftpd-anon) | CVE-2010-2632 CVE-2010-4754 CVE-2010-4755 CVE-2010-4756 |
| SREASONRES:20110107 GNU libc/regcomp(3) Multiple Vulnerabilities | CVE-2010-4051 CVE-2010-4052 |
| SREASONRES:20110217 PHP 5.3.5 grapheme_extract() NULL Pointer Dereference | CVE-2011-0420 |
| SREASONRES:20110301 vsftpd 2.3.2 remote denial-of-service | CVE-2011-0762 |
| SREASONRES:20110318 libzip 0.9.3 _zip_name_locate NULL Pointer Dereference (incl PHP 5.3.5) | CVE-2011-0421 |
| SREASONRES:20110502 Multiple Vendors libc/glob(3) GLOB_BRACE|GLOB_LIMIT memory exhaustion | CVE-2010-2632 CVE-2011-0418 CVE-2011-2168 |
| SREASONRES:20110512 Multiple Vendors libc/fnmatch(3) DoS (incl apache) | CVE-2011-0419 |
| SREASONRES:20110819 PHP 5.3.6 ZipArchive invalid use glob(3) | CVE-2011-1657 |