[Secure-testing-commits] r6431 - data/CVE
stef-guest at alioth.debian.org
stef-guest at alioth.debian.org
Wed Aug 29 19:29:30 UTC 2007
Author: stef-guest
Date: 2007-08-29 19:29:30 +0000 (Wed, 29 Aug 2007)
New Revision: 6431
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-08-29 19:18:22 UTC (rev 6430)
+++ data/CVE/list 2007-08-29 19:29:30 UTC (rev 6431)
@@ -117,17 +117,17 @@
CVE-2007-4528 (The Foreign Function Interface (ffi) extension in PHP 5.0.5 does not ...)
NOT-FOR-US: ffi extension for php
CVE-2007-4527 (Unrestricted file upload vulnerability in phUploader.php in phphq.Net ...)
- TODO: check
+ NOT-FOR-US: phUploader
CVE-2007-4526 (The Client Login Extension (CLE) in Novell Identity Manager before ...)
- TODO: check
+ NOT-FOR-US: Novell Identity Manager
CVE-2007-4525 (** DISPUTED ** ...)
TODO: check
CVE-2007-4524 (PHP remote file inclusion vulnerability in adisplay.php in PhPress ...)
- TODO: check
+ NOT-FOR-US: PhPress
CVE-2007-4523 (Multiple cross-site scripting (XSS) vulnerabilities in Ripe Website ...)
- TODO: check
+ NOT-FOR-US: Ripe Website Manager
CVE-2007-4522 (Multiple SQL injection vulnerabilities in Ripe Website Manager 0.8.9 ...)
- TODO: check
+ NOT-FOR-US: Ripe Website Manager
CVE-2007-4521 (Asterisk Open Source 1.4.5 through 1.4.11, when configured to use an ...)
- asterisk <unfixed> (low)
NOTE: Patch: http://lists.digium.com/pipermail/asterisk-commits/2007-August/015743.html
@@ -159,30 +159,30 @@
RESERVED
TODO: check
CVE-2007-4511 (The Sun Admin Console in Sun Application Server 9.0_0.1 does not apply ...)
- TODO: check
+ NOT-FOR-US: Sun Application Server
CVE-2007-4510 (ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and ...)
- clamav 0.91.2-1
[sarge] - clamav <not-affected> (Vulnerable code not present)
CVE-2007-4509 (SQL injection vulnerability in index.php in the EventList component ...)
- TODO: check
+ NOT-FOR-US: EventList component for Joomla!
CVE-2007-4508 (Stack-based buffer overflow in Rebellion Asura engine, as used for the ...)
- TODO: check
+ NOT-FOR-US: Rebellion Asura engine
CVE-2007-4507 (Multiple buffer overflows in the php_ntuser component for PHP 5.2.3 ...)
TODO: check
CVE-2007-4506 (SQL injection vulnerability in index.php in the NeoRecruit component ...)
- TODO: check
+ NOT-FOR-US: NeoRecruit component for Joomla!
CVE-2007-4505 (SQL injection vulnerability in index.php in the RemoSitory component ...)
- TODO: check
+ NOT-FOR-US: RemoSitory component for Mambo
CVE-2007-4504 (Directory traversal vulnerability in index.php in the RSfiles ...)
- TODO: check
+ NOT-FOR-US: RSfiles component for Joomla!
CVE-2007-4503 (SQL injection vulnerability in index.php in the Nice Talk component ...)
- TODO: check
+ NOT-FOR-US: Nice Talk component for Joomla!
CVE-2007-4502 (SQL injection vulnerability in index.php in the BibTeX component ...)
- TODO: check
+ NOT-FOR-US: BibTeX component for Joomla!
CVE-2007-4501 (Unspecified vulnerability in PassphraseRequester in SSHKeychain before ...)
- TODO: check
+ NOT-FOR-US: SSHKeychain
CVE-2007-4500 (Unspecified vulnerability in TunnelRunner in SSHKeychain before 0.8.2 ...)
- TODO: check
+ NOT-FOR-US: SSHKeychain
CVE-2007-4499 (Unrestricted file upload vulnerability in output.php in American ...)
TODO: check
CVE-2007-4498 (The Grandstream SIP Phone GXV-3000 with firmware 1.0.1.7, Loader ...)
More information about the Secure-testing-commits
mailing list