[Secure-testing-commits] r6344 - data/CVE

keescook-guest at alioth.debian.org keescook-guest at alioth.debian.org
Thu Aug 16 23:04:39 UTC 2007 

Author: keescook-guest
Date: 2007-08-16 23:04:39 +0000 (Thu, 16 Aug 2007)
New Revision: 6344

Modified:
   data/CVE/list
Log:
NFUs: 19

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-08-16 21:14:08 UTC (rev 6343)
+++ data/CVE/list	2007-08-16 23:04:39 UTC (rev 6344)
@@ -510,29 +510,29 @@
 CVE-2007-4129
 	RESERVED
 CVE-2007-4128 (SQL injection vulnerability in index.php in the Firestorm Technologies ...)
-	TODO: check
+	NOT-FOR-US: com_gmaps for Joomla!
 CVE-2007-4127 (** DISPUTED ** ...)
-	TODO: check
+	NOT-FOR-US: Ralf Image Gallery
 CVE-2007-4126 (Unspecified vulnerability in the dynamic tracing framework (DTrace) on ...)
-	TODO: check
+	NOT-FOR-US: Sun Solaris
 CVE-2007-4125 (Unspecified vulnerability in the Address and Routing Parameter Area ...)
-	TODO: check
+	NOT-FOR-US: HP-UX
 CVE-2007-4124 (The session failover function in Cosminexus Component Container in ...)
-	TODO: check
+	NOT-FOR-US: Cosminexus
 CVE-2007-4123 (The Groupmax Scheduler_Facilities management tool in Hitachi Groupmax ...)
-	TODO: check
+	NOT-FOR-US: Hitachi Groupmax
 CVE-2007-4122 (Unspecified vulnerability in Hitachi JP1/Cm2/Hierarchical Viewer (HV) ...)
-	TODO: check
+	NOT-FOR-US: Hitachi Hierarchical Viewer
 CVE-2007-4121 (Multiple SQL injection vulnerabilities in admin.aspx in E-Commerce ...)
-	TODO: check
+	NOT-FOR-US: E-Commerce Scripts Shopping Cart Script
 CVE-2007-4120 (** DISPUTED ** ...)
-	TODO: check
+	NOT-FOR-US: vBulletin
 CVE-2007-4119 (Multiple SQL injection vulnerabilities in yonetici.asp in Berthanas ...)
-	TODO: check
+	NOT-FOR-US: Defteri
 CVE-2007-4118 (PHP remote file inclusion vulnerability in includes/functions.inc.php ...)
-	TODO: check
+	NOT-FOR-US: phpVoter
 CVE-2007-4117 (** DISPUTED ** ...)
-	TODO: check
+	NOT-FOR-US: phpVoter
 CVE-2005-4860 (Spectrum Cash Receipting System before 6.504 uses weak cryptography ...)
 	NOT-FOR-US: Spectrum Cash Receipting System
 CVE-2007-XXXX [teamspeak-server arbitrary file disclosure]
@@ -1008,7 +1008,7 @@
 CVE-2007-3892
 	RESERVED
 CVE-2007-3891 (Unspecified vulnerability in Windows Vista Weather Gadgets in Windows ...)
-	TODO: check
+	NOT-FOR-US: Windows Vista
 CVE-2007-3890 (Microsoft Excel in Office 2000 SP3, Office XP SP3, Office 2003 SP2, ...)
 	TODO: check
 CVE-2007-3889 (Multiple SQL injection vulnerabilities in Insanely Simple Blog 0.5 and ...)
@@ -1046,7 +1046,7 @@
 CVE-2007-3873
 	RESERVED
 CVE-2007-3872 (Multiple stack-based buffer overflows in the Shared Trace Service ...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2007-3871
 	RESERVED
 CVE-2006-7221 (Multiple off-by-one errors in fsplib.c in fsplib before 0.8 allow ...)
@@ -1345,9 +1345,9 @@
 CVE-2007-3744 (Heap-based buffer overflow in the UPnP IGD (Internet Gateway Device ...)
 	TODO: check
 CVE-2007-3743 (Stack-based buffer overflow in bookmark handling in Apple Safari 3 ...)
-	TODO: check
+	NOT-FOR-US: Apple Safari
 CVE-2007-3742 (WebKit in Apple Safari 3 Beta before Update 3.0.3, and iPhone before ...)
-	TODO: check
+	NOT-FOR-US: Apple Safari
 CVE-2007-3741
 	RESERVED
 CVE-2007-3740
@@ -1420,7 +1420,7 @@
 CVE-2007-3719 (The process scheduler in the Linux kernel 2.6.16 gives preference to ...)
 	- linux-2.6 <unfixed>
 CVE-2007-3718 (Multiple unspecified vulnerabilities in the SVG parsing engine in ...)
-	TODO: check
+	NOT-FOR-US: Apple Safari
 CVE-2007-3717 (rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call ...)
 	NOT-FOR-US: Sun Solaris
 CVE-2007-3716 (The Java XML Digital Signature implementation in Sun JDK and JRE 6 ...)
@@ -1822,7 +1822,7 @@
 CVE-2007-3526 (Multiple SQL injection vulnerabilities in Buddy Zone 1.5 and earlier ...)
 	NOT-FOR-US: Buddy Zone
 CVE-2007-3525 (Ripe Website Manager 0.8.9 and earlier allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Ripe Website Manager
 CVE-2007-3524 (Multiple PHP remote file inclusion vulnerabilities in Ripe Website ...)
 	NOT-FOR-US: Ripe Website Manager
 CVE-2007-3523 (Multiple directory traversal vulnerabilities in Module/Galerie.php in ...)
@@ -1840,7 +1840,7 @@
 CVE-2007-3517 (Multiple cross-site scripting (XSS) vulnerabilities in Claroline 1.8.3 ...)
 	NOT-FOR-US: Claroline
 CVE-2007-3516 (Multiple cross-site scripting (XSS) vulnerabilities in kayit.asp in ...)
-	TODO: check
+	NOT-FOR-US: Gorki Online Santrac Sitesi
 CVE-2007-3515 (SQL injection vulnerability in view_event.php in TotalCalendar 2.402 ...)
 	NOT-FOR-US: TotalCalendar
 CVE-2006-7220 (Unspecified vulnerability in SAP SAPLPD and SAPSPRINT allows remote ...)

More information about the Secure-testing-commits mailing list