[Secure-testing-commits] r4428 - data/CVE

Stefan Fritsch stef-guest at costa.debian.org
Thu Jul 20 19:28:47 UTC 2006 

Author: stef-guest
Date: 2006-07-20 19:28:43 +0000 (Thu, 20 Jul 2006)
New Revision: 4428

Modified:
   data/CVE/list
Log:
a firefox maybe issue and some NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-07-20 18:45:54 UTC (rev 4427)
+++ data/CVE/list	2006-07-20 19:28:43 UTC (rev 4428)
@@ -1,29 +1,31 @@
 CVE-2006-3737 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Plesk
 CVE-2006-3736 (PHP remote file inclusion vulnerability in core/videodb.class.xml.php ...)
-	TODO: check
+	NOT-FOR-US: VideoDB for Mambo
 CVE-2006-3735 (Multiple PHP remote file inclusion vulnerabilities in Mail2Forum ...)
-	TODO: check
+	NOT-FOR-US: Mail2Forum
 CVE-2006-3734 (Multiple unspecified vulnerabilities in the Command Line Interface ...)
-	TODO: check
+	NOT-FOR-US: CS-MARS
 CVE-2006-3733 (Unspecified vulnerability in a component of the JBoss web application ...)
 	TODO: check
 CVE-2006-3732 (Cisco Security Monitoring, Analysis and Response System (CS-MARS) ...)
-	TODO: check
+	NOT-FOR-US: CS-MARS
 CVE-2006-3731 (Mozilla Firefox 1.5.0.4 and earlier allows remote user-assisted ...)
-	TODO: check
+	NOTE: might be limited to LiveHTTPHeaders extension
+	- firefox <unfixed>
+	- mozilla-firefox <unfixed>
 CVE-2006-3730 (Microsoft Internet Explorer 6 on Windows XP SP2 allows remote ...)
-	TODO: check
+	NOT-FOR-US: MSIE
 CVE-2006-3729 (DataSourceControl in Internet Explorer 6 on Windows XP SP2 with Office ...)
-	TODO: check
+	NOT-FOR-US: MSIE
 CVE-2006-3728 (Unspecified vulnerability in the kernel in Solaris 10 with patch ...)
-	TODO: check
+	NOT-FOR-US: Solaris
 CVE-2006-3727 (Multiple SQL injection vulnerabilities in Eskolar CMS 0.9.0.0 allow ...)
-	TODO: check
+	NOT-FOR-US: Eskolar CMS
 CVE-2006-3726 (Buffer overflow in FileCOPA FTP Server before 1.01 released on 18th ...)
-	TODO: check
+	NOT-FOR-US: FileCOPA FTP Server
 CVE-2006-3725 (Norton Personal Firewall 2006 9.1.0.33 allows local users to cause a ...)
-	TODO: check
+	NOT-FOR-US: Norton Personal Firewall
 CVE-2006-3724 (Unspecified vulnerability in JD Edwards HTML Server for Oracle ...)
 	NOT-FOR-US: Oracle
 CVE-2006-3723 (Unspecified vulnerability in PeopleSoft Enterprise Portal for Oracle ...)

More information about the Secure-testing-commits mailing list