[Secure-testing-commits] r4010 - data/CVE

Alec Berryman alec-guest at costa.debian.org
Sat May 20 19:59:33 UTC 2006 

Author: alec-guest
Date: 2006-05-20 19:59:30 +0000 (Sat, 20 May 2006)
New Revision: 4010

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-05-20 19:44:27 UTC (rev 4009)
+++ data/CVE/list	2006-05-20 19:59:30 UTC (rev 4010)
@@ -365,9 +365,9 @@
 CVE-2006-2317 (Unspecified vulnerability in Ideal Science Ideal BB 1.5.4a and earlier ...)
 	NOT-FOR-US: Ideal Science
 CVE-2006-2316 (S24EvMon.exe in the Intel PROset/Wireless software, possibly ...)
-	TODO: check
+	NOT-FOR-US: Intel Windows software
 CVE-2006-2315 (PHP remote file inclusion vulnerability in session.inc.php in ...)
-	TODO: check
+	NOT-FOR-US: ISPConfig
 CVE-2006-2314
 	RESERVED
 CVE-2006-2313
@@ -525,7 +525,7 @@
 CVE-2006-2239 (SQL injection vulnerability in readarticle.php in Newsadmin 1.1 allows ...)
 	NOT-FOR-US: Newsadmin
 CVE-2006-2238 (Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2006-2237 (The web interface for AWStats 6.4 and 6.5, when statistics updates are ...)
 	{DSA-1058-1}
 	- awstats 6.5-2 (bug #365909; bug #365910; medium)
@@ -603,7 +603,7 @@
 CVE-2006-2210 (Cross-site scripting (XSS) vulnerability in index.php in 321soft ...)
 	NOT-FOR-US: 321soft PhP-Gallery
 CVE-2006-2209 (Multiple SQL injection vulnerabilities in index.php in PHP Arena ...)
-	TODO: check
+	NOT-FOR-US: paCheckBook
 CVE-2006-2208 (Multiple cross-site scripting (XSS) vulnerabilities in mynews.inc.php ...)
 	NOT-FOR-US: paCheckBook
 CVE-2006-2207
@@ -685,24 +685,24 @@
 CVE-2006-2168 (FileProtection Express 1.0.1 and earlier allows remote attackers to ...)
 	NOT-FOR-US: FileProtection Express
 CVE-2006-2167 (Cross-site scripting (XSS) vulnerability in SloughFlash SF-Users 1.0, ...)
-	TODO: check
+	NOT-FOR-US: SloughFlash
 CVE-2006-2166 (Unspecified vulnerability in the HTTP management interface in Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2006-2165 (Multiple cross-site scripting (XSS) vulnerabilities in Avactis ...)
-	TODO: check
+	NOT-FOR-US: Avactis
 CVE-2006-2164 (Multiple SQL injection vulnerabilities in Avactis Shopping Cart 0.1.2 ...)
-	TODO: check
+	NOT-FOR-US: Avactis
 CVE-2006-2163 (Cross-site scripting (XSS) vulnerability in index.php in Pinnacle Cart ...)
-	TODO: check
+	NOT-FOR-US: Pinnacle
 CVE-2006-2162 (Buffer overflow in CGI scripts in Nagios 1.x before 1.4 and 2.x before ...)
 	- nagios 2:1.4-1 (bug #366682; bug #366803; medium)
 	- nagios2 2.3-1 (bug #366683; medium)
 CVE-2006-2161 (Buffer overflow in (1) TZipBuilder 1.79.03.01 and (2) Abakt 0.9.2 and ...)
-	TODO: check
+	NOT-FOR-US: TZipBuilder/Abakt
 CVE-2006-2160 (Cross-site scripting (XSS) vulnerability in Russcom Network Loginphp ...)
-	TODO: check
+	NOT-FOR-US: Russcom
 CVE-2006-2159 (CRLF injection vulnerability in help.php in Russcom Network Loginphp ...)
-	TODO: check
+	NOT-FOR-US: Russcom
 CVE-2006-2158 (Dynamic variable evaluation vulnerability in index.php in Stadtaus ...)
 	TODO: check
 CVE-2006-2157 (SQL injection vulnerability in gallery.php in Plogger Beta 2.1 and ...)

More information about the Secure-testing-commits mailing list