[Secure-testing-commits] r5007 - data/CVE

Alec Berryman alec-guest at alioth.debian.org
Sat Nov 25 01:20:17 CET 2006 

Author: alec-guest
Date: 2006-11-25 01:19:43 +0100 (Sat, 25 Nov 2006)
New Revision: 5007

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-11-24 21:29:38 UTC (rev 5006)
+++ data/CVE/list	2006-11-25 00:19:43 UTC (rev 5007)
@@ -357,15 +357,15 @@
 CVE-2006-5890 (SQL injection vulnerability in detail.asp in Superfreaker Studios ...)
 	NOT-FOR-US: Superfreaker Studios UStore
 CVE-2006-5889 (SQL injection vulnerability in printLog.php in BrewBlogger (BB) 1.3.1 ...)
-	TODO: check
+	NOT-FOR-US: BrewBlogger
 CVE-2006-5888 (SQL injection vulnerability in viewarticle.asp in Superfreaker Studios ...)
-	TODO: check
+	NOT-FOR-US: Superfreaker Studios UPublisher
 CVE-2006-5887 (SQL injection vulnerability in CampusNewsDetails.asp in Dynamic ...)
-	TODO: check
+	NOT-FOR-US: Dynamic Dataworx NuSchool
 CVE-2006-5886 (SQL injection vulnerability in propertysdetails.asp in Dynamic ...)
-	TODO: check
+	NOT-FOR-US: Dynamic Dataworx NuRealestate (NuRems)
 CVE-2006-5885 (SQL injection vulnerability in Products.asp in NuStore 1.0 allows ...)
-	TODO: check
+	NOT-FOR-US: NuStore
 CVE-2003-1308 (CRLF injection vulnerability in fvwm-menu-directory for fvwm 2.5.x ...)
 	TODO: check
 CVE-2006-XXXX [chetcpasswd multiple vulnerabilities]
@@ -373,17 +373,17 @@
 	NOTE: I've filed a removal bug, this doesn't have a security perspective
 	NOTE: It's too buggy even for sid and was never part of stable or testing
 CVE-2006-5884 (Multiple unspecified vulnerabilities in DirectAnimation ActiveX ...)
-	TODO: check
+	NOT-FOR-US: DirectAnimation ActiveX controls for Microsoft Internet Explorer
 CVE-2006-5883 (Multiple cross-site scripting (XSS) vulnerabilities in cPanel 10 allow ...)
-	TODO: check
+	NOT-FOR-US: cPanel 10
 CVE-2006-5882 (Stack-based buffer overflow in the Broadcom BCMWL5.SYS wireless device ...)
-	TODO: check
+	NOT-FOR-US: Broadcom BCMWL5.SYS
 CVE-2006-5881 (SQL injection vulnerability in cl_CatListing.asp in Dynamic Dataworx ...)
-	TODO: check
+	NOT-FOR-US: Dynamic Dataworx NuCommunity
 CVE-2006-5880 (SQL injection vulnerability on the subMenu page in switch.asp in Munch ...)
-	TODO: check
+	NOT-FOR-US: Munch Pro
 CVE-2006-5879 (SQL injection vulnerability in default1.asp in ASPPortal 4.0.0 beta ...)
-	TODO: check
+	NOT-FOR-US: ASPPortal
 CVE-2006-5878 (Cross-site Request Forgery (CSRF) vulnerability in Trac before 0.10.1 ...)
 	NOT-FOR-US: Dupe of CVE-2006-5848
 CVE-2006-5877

More information about the Secure-testing-commits mailing list