[Secure-testing-commits] r3153 - data/CVE

Moritz Muehlenhoff jmm-guest at costa.debian.org
Sat Dec 24 14:43:42 UTC 2005 

Author: jmm-guest
Date: 2005-12-24 14:43:37 +0000 (Sat, 24 Dec 2005)
New Revision: 3153

Modified:
   data/CVE/list
Log:
lots of NFUs
claim more


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2005-12-24 13:42:30 UTC (rev 3152)
+++ data/CVE/list	2005-12-24 14:43:37 UTC (rev 3153)
@@ -123,54 +123,54 @@
 	NOT-FOR-US: LogicBill
 begin claimed by jmm
 CVE-2005-4429 (SQL injection vulnerability in CS-Cart 1.3.0 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: CS-Cart
 CVE-2005-4428 (Cross-site scripting (XSS) vulnerability in index.php in Cerberus ...)
-	TODO: check
+	NOT-FOR-US: Cerberus Helpdesk
 CVE-2005-4427 (Multiple SQL injection vulnerabilities in Cerberus Helpdesk allow ...)
-	TODO: check
+	NOT-FOR-US: Cerberus Helpdesk
 CVE-2005-4426 (Interpretation conflict in YaBB before 2.1 allows remote authenticated ...)
-	TODO: check
+	NOT-FOR-US: YaBB
 CVE-2005-4425 (Unspecified vulnerability in Kerio WinRoute Firewall before 6.1.3 ...)
-	TODO: check
+	NOT-FOR-US: Kerio Firewall
 CVE-2005-4424 (Directory traversal vulnerability in PHPKIT 1.6.1 R2 and earlier might ...)
-	TODO: check
+	NOT-FOR-US: PHPKIT
 CVE-2005-4423 (Unrestricted file upload vulnerability in PHPFM before 0.2.3 allows ...)
-	TODO: check
+	NOT-FOR-US: PHPFM
 CVE-2005-4422 (Unrestricted file upload vulnerability in toendaCMS before 0.6.2 ...)
-	TODO: check
+	NOT-FOR-US: toendaCMS
 CVE-2005-4421 (Dev-Editor 3.0 allows remote attackers to access any directory outside ...)
-	TODO: check
+	NOT-FOR-US: Dev-Editor
 CVE-2005-4420 (Cross-site scripting (XSS) vulnerability in Honeycomb Archive ...)
-	TODO: check
+	NOT-FOR-US: Honeycomb Archive Enterprise 
 CVE-2005-4419 (Multiple SQL injection vulnerabilities in CategoryResults.cfm in ...)
-	TODO: check
+	NOT-FOR-US: Honeycomb Archive Enterprise 
 CVE-2005-4417 (The default configuration of Widcomm Bluetooth for Windows (BTW) ...)
-	TODO: check
+	NOT-FOR-US: Widcomm Bluetooth for Windows
 CVE-2005-4416 (SQL injection vulnerability in index.php in TML CMS 0.5 allows remote ...)
-	TODO: check
+	NOT-FOR-US: TML CMS
 CVE-2005-4415 (Cross-site scripting (XSS) vulnerability in index.php in TML CMS 0.5 ...)
-	TODO: check
+	NOT-FOR-US: TML CMS
 CVE-2005-4414 (Unspecified vulnerability in Teamwork 3 before alpha 1.7 has unknown ...)
-	TODO: check
+	NOT-FOR-US: Teamwork 3
 CVE-2005-4413 (Multiple cross-site scripting (XSS) vulnerabilities in sample scripts ...)
-	TODO: check
+	NOT-FOR-US: Websphere
 CVE-2005-4412 (Citrix Program Neighborhood client before 9.150 caches the user ...)
-	TODO: check
+	NOT-FOR-US: Citrix
 CVE-2005-4411 (Buffer overflow in Mercury Mail Transport System 4.01b allows remote ...)
-	TODO: check
+	NOT-FOR-US: Mercury Mail Transport System
 CVE-2005-4410 (Cross-site scripting (XSS) vulnerability in NQcontent 3 allows remote ...)
-	TODO: check
+	NOT-FOR-US: NQcontent
 CVE-2005-4409 (Cross-site scripting (XSS) vulnerability in MMBase 1.7.4 and earlier ...)
-	TODO: check
+	NOT-FOR-US: MMBase
 CVE-2005-4408 (Multiple SQL injection vulnerabilities in Miraserver 1.0 RC4 and ...)
-	TODO: check
+	NOT-FOR-US: Miraserver
 CVE-2005-4407 (Cross-site scripting (XSS) vulnerability in index.cfm in Mercury CMS ...)
-	TODO: check
+	NOT-FOR-US: Mercury CMS 
 CVE-2005-4406 (SQL injection vulnerability in index.cfm in Mercury CMS 4.0 and ...)
-	TODO: check
+	NOT-FOR-US: Mercury CMS 
 CVE-2005-4405 (redqueen.cgi in Red Queen 1.02 and earlier allows remote attackers to ...)
-	TODO: check
-end claimed by jmm
+	NOT-FOR-US: Red Queen
+begin claimed by jmm
 CVE-2005-4404 (SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x ...)
 	TODO: check
 CVE-2005-4403 (SQL injection vulnerability in index.php in Marwel 2.7 and earlier ...)
@@ -285,6 +285,7 @@
 	TODO: check
 CVE-2002-2208 (Extended Interior Gateway Routing Protocol (EIGRP), as implemented in ...)
 	TODO: check
+end claimed by jmm
 CVE-2005-4348 (fetchmail before 6.3.1 and before 6.2.5.5, when configured for ...)
 	- fetchmail <unfixed> (bug #343836; low)
 CVE-2005-4418 [Default policy in util-vserver prior to 0.30.208 trusted unknown capabilities]

More information about the Secure-testing-commits mailing list