juven · August 9, 2011 14:36
diff --git a/gistfile1.txt b/gistfile1.txt
 a|CVE-2011-0245|Buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted pict file.|9.3
 b|CVE-2011-0245|VENDOR_ADVISORY|APPLE|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
 a|CVE-2011-0246|Heap-based buffer overflow in Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted GIF file.|9.3
 b|CVE-2011-0246|VENDOR_ADVISORY|APPLE|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
 a|CVE-2011-0247|Multiple stack-based buffer overflows in Apple QuickTime before 7.7 on Windows allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted H.264 movie.|9.3
 b|CVE-2011-0247|VENDOR_ADVISORY|APPLE|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
 a|CVE-2011-0248|Stack-based buffer overflow in the QuickTime ActiveX control in Apple QuickTime before 7.7 on Windows, when Internet Explorer is used, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted QTL file.|9.3
 b|CVE-2011-0248|VENDOR_ADVISORY|APPLE|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
 a|CVE-2011-0249|Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSC atoms in a QuickTime movie file.|9.3
 b|CVE-2011-0249|VENDOR_ADVISORY|APPLE|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
 a|CVE-2011-0250|Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSS atoms in a QuickTime movie file.|9.3
 b|CVE-2011-0250|VENDOR_ADVISORY|APPLE|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
 a|CVE-2011-0251|Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSZ atoms in a QuickTime movie file.|9.3
 b|CVE-2011-0251|VENDOR_ADVISORY|APPLE|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
 a|CVE-2011-0252|Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STTS atoms in a QuickTime movie file.|9.3
 b|CVE-2011-0252|VENDOR_ADVISORY|APPLE|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
 a|CVE-2011-1340|Cross-site scripting (XSS) vulnerability in skins/plone_templates/default_error_message.pt in Plone before 2.5.3 allows remote attackers to inject arbitrary web script or HTML via the type_name parameter to Members/ipa/createObject.|4.3
 b|CVE-2011-1340|PATCH|CONFIRM|http://dev.plone.org/plone/changeset/12262
 b|CVE-2011-1340|UNKNOWN|JVNDB|http://jvndb.jvn.jp/jvndb/JVNDB-2011-000056
 b|CVE-2011-1340|UNKNOWN|JVN|http://jvn.jp/en/jp/JVN41222793/index.html
 b|CVE-2011-1340|UNKNOWN|CONFIRM|http://dev.plone.org/plone/ticket/6110
 a|CVE-2011-1412|sys/sys_unix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game servers to execute arbitrary commands via shell metacharacters in a long fs_game variable.|7.5
 b|CVE-2011-1412|PATCH|CONFIRM|https://bugzilla.redhat.com/show_bug.cgi?id=725951
 b|CVE-2011-1412|PATCH|CONFIRM|http://worldofpadman.com/website/news/en/article/266/wop-1-5-1-1-hotfix-released-for-linux.html
 b|CVE-2011-1412|PATCH|CONFIRM|http://thilo.tjps.eu/download/patches/ioq3-svn-r2097.diff
 b|CVE-2011-1412|PATCH|CONFIRM|http://svn.icculus.org/quake3?view=rev&amp;revision=2097
 b|CVE-2011-1412|UNKNOWN|XF|http://xforce.iss.net/xforce/xfdb/68869
 b|CVE-2011-1412|UNKNOWN|BID|http://www.securityfocus.com/bid/48915
 b|CVE-2011-1412|UNKNOWN|BUGTRAQ|http://www.securityfocus.com/archive/1/archive/1/519051/100/0/threaded
 b|CVE-2011-1412|UNKNOWN|OSVDB|http://www.osvdb.org/74137
 b|CVE-2011-1412|VENDOR_ADVISORY|SECUNIA|http://secunia.com/advisories/45468
 b|CVE-2011-1412|VENDOR_ADVISORY|SECUNIA|http://secunia.com/advisories/45417
 b|CVE-2011-1412|UNKNOWN|FULLDISC|http://archives.neohapsis.com/archives/fulldisclosure/2011-07/0338.html
 a|CVE-2011-1742|EMC Data Protection Advisor before 5.8.1 places cleartext account credentials in the DPA configuration file in unspecified circumstances, which might allow local users to obtain sensitive information by reading this file.|2.1
 b|CVE-2011-1742|UNKNOWN|BUGTRAQ|http://www.securityfocus.com/archive/1/archive/1/519012/100/0/threaded
 a|CVE-2011-1743|Cross-site scripting (XSS) vulnerability in EMC Captiva eInput 2.1.1 before 2.1.1.37 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.|4.3
	a\|CVE-2011-0245\|Buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted pict file.\|9.3
	b\|CVE-2011-0245\|VENDOR_ADVISORY\|APPLE\|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
	a\|CVE-2011-0246\|Heap-based buffer overflow in Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted GIF file.\|9.3
	b\|CVE-2011-0246\|VENDOR_ADVISORY\|APPLE\|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
	a\|CVE-2011-0247\|Multiple stack-based buffer overflows in Apple QuickTime before 7.7 on Windows allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted H.264 movie.\|9.3
	b\|CVE-2011-0247\|VENDOR_ADVISORY\|APPLE\|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
	a\|CVE-2011-0248\|Stack-based buffer overflow in the QuickTime ActiveX control in Apple QuickTime before 7.7 on Windows, when Internet Explorer is used, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted QTL file.\|9.3
	b\|CVE-2011-0248\|VENDOR_ADVISORY\|APPLE\|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
	a\|CVE-2011-0249\|Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSC atoms in a QuickTime movie file.\|9.3
	b\|CVE-2011-0249\|VENDOR_ADVISORY\|APPLE\|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
	a\|CVE-2011-0250\|Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSS atoms in a QuickTime movie file.\|9.3
	b\|CVE-2011-0250\|VENDOR_ADVISORY\|APPLE\|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
	a\|CVE-2011-0251\|Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSZ atoms in a QuickTime movie file.\|9.3
	b\|CVE-2011-0251\|VENDOR_ADVISORY\|APPLE\|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
	a\|CVE-2011-0252\|Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STTS atoms in a QuickTime movie file.\|9.3
	b\|CVE-2011-0252\|VENDOR_ADVISORY\|APPLE\|http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html
	a\|CVE-2011-1340\|Cross-site scripting (XSS) vulnerability in skins/plone_templates/default_error_message.pt in Plone before 2.5.3 allows remote attackers to inject arbitrary web script or HTML via the type_name parameter to Members/ipa/createObject.\|4.3
	b\|CVE-2011-1340\|PATCH\|CONFIRM\|http://dev.plone.org/plone/changeset/12262
	b\|CVE-2011-1340\|UNKNOWN\|JVNDB\|http://jvndb.jvn.jp/jvndb/JVNDB-2011-000056
	b\|CVE-2011-1340\|UNKNOWN\|JVN\|http://jvn.jp/en/jp/JVN41222793/index.html
	b\|CVE-2011-1340\|UNKNOWN\|CONFIRM\|http://dev.plone.org/plone/ticket/6110
	a\|CVE-2011-1412\|sys/sys_unix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0.8.x-15 and 0.8.x-16, allows remote game servers to execute arbitrary commands via shell metacharacters in a long fs_game variable.\|7.5
	b\|CVE-2011-1412\|PATCH\|CONFIRM\|https://bugzilla.redhat.com/show_bug.cgi?id=725951
	b\|CVE-2011-1412\|PATCH\|CONFIRM\|http://worldofpadman.com/website/news/en/article/266/wop-1-5-1-1-hotfix-released-for-linux.html
	b\|CVE-2011-1412\|PATCH\|CONFIRM\|http://thilo.tjps.eu/download/patches/ioq3-svn-r2097.diff
	b\|CVE-2011-1412\|PATCH\|CONFIRM\|http://svn.icculus.org/quake3?view=rev&revision=2097
	b\|CVE-2011-1412\|UNKNOWN\|XF\|http://xforce.iss.net/xforce/xfdb/68869
	b\|CVE-2011-1412\|UNKNOWN\|BID\|http://www.securityfocus.com/bid/48915
	b\|CVE-2011-1412\|UNKNOWN\|BUGTRAQ\|http://www.securityfocus.com/archive/1/archive/1/519051/100/0/threaded
	b\|CVE-2011-1412\|UNKNOWN\|OSVDB\|http://www.osvdb.org/74137
	b\|CVE-2011-1412\|VENDOR_ADVISORY\|SECUNIA\|http://secunia.com/advisories/45468
	b\|CVE-2011-1412\|VENDOR_ADVISORY\|SECUNIA\|http://secunia.com/advisories/45417
	b\|CVE-2011-1412\|UNKNOWN\|FULLDISC\|http://archives.neohapsis.com/archives/fulldisclosure/2011-07/0338.html
	a\|CVE-2011-1742\|EMC Data Protection Advisor before 5.8.1 places cleartext account credentials in the DPA configuration file in unspecified circumstances, which might allow local users to obtain sensitive information by reading this file.\|2.1
	b\|CVE-2011-1742\|UNKNOWN\|BUGTRAQ\|http://www.securityfocus.com/archive/1/archive/1/519012/100/0/threaded
	a\|CVE-2011-1743\|Cross-site scripting (XSS) vulnerability in EMC Captiva eInput 2.1.1 before 2.1.1.37 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.\|4.3