[Secure-testing-commits] r5967 - data/CVE

fw at alioth.debian.org fw at alioth.debian.org
Sat Jun 2 08:01:31 UTC 2007


Author: fw
Date: 2007-06-02 08:01:30 +0000 (Sat, 02 Jun 2007)
New Revision: 5967

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-06-02 08:00:02 UTC (rev 5966)
+++ data/CVE/list	2007-06-02 08:01:30 UTC (rev 5967)
@@ -310,43 +310,43 @@
 CVE-2007-2821 (SQL injection vulnerability in wp-admin/admin-ajax.php in WordPress ...)
 	- wordpress 2.2-1 (high)
 CVE-2007-2820 (Multiple stack-based buffer overflows in the KSign KSignSWAT ActiveX ...)
-	TODO: check
+	NOT-FOR-US: KSign
 CVE-2007-2819 (Cross-site scripting (XSS) vulnerability in reportItem.do in Track+ ...)
-	TODO: check
+	NOT-FOR-US: Track+
 CVE-2007-2818 (Cross-site scripting (XSS) vulnerability in cand_login.asp in ...)
-	TODO: check
+	NOT-FOR-US: Parodia
 CVE-2007-2817 (SQL injection vulnerability in read/index.php in ol'bookmarks 0.7.4 ...)
-	TODO: check
+	NOT-FOR-US: ol'bookmarks
 CVE-2007-2816 (Multiple PHP remote file inclusion vulnerabilities in ol'bookmarks ...)
-	TODO: check
+	NOT-FOR-US: ol'bookmarks
 CVE-2007-2815 (The "hit-highlighting" functionality in webhits.dll in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft IIS
 CVE-2007-2814 (Multiple stack-based buffer overflows in the Pegasus ImagN' ActiveX ...)
-	TODO: check
+	NOT-FOR-US: Pegasus ImagN'
 CVE-2007-2813 (Cisco IOS 12.4 and earlier, when using the crypto packages and SSL ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2007-2812 (Cross-site scripting (XSS) vulnerability in hlstats.php in HLstats ...)
-	TODO: check
+	NOT-FOR-US: HLstats
 CVE-2007-2811 (Cross-site scripting (XSS) vulnerability in OSK Advance-Flow 4.41 and ...)
-	TODO: check
+	NOT-FOR-US: OSK Advance-Flow
 CVE-2007-2810 (SQL injection vulnerability in down_indir.asp in Gazi Download Portal ...)
-	TODO: check
+	NOT-FOR-US: Gazi Download Portal
 CVE-2007-2809 (Buffer overflow in the transfer manager in Opera before 9.21 for ...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2007-2808 (Cross-site scripting (XSS) vulnerability in gnatsweb.pl in Gnatsweb ...)
 	- gnatsweb <unfixed> (low; bug #427156)
 CVE-2007-2807 (Stack-based buffer overflow in mod/server.mod/servrmsg.c in Eggdrop ...)
 	- eggdrop <unfixed> (medium; bug #427157)
 CVE-2007-2806 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...)
-	TODO: check
+	NOT-FOR-US: GaliX
 CVE-2007-2805 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...)
-	TODO: check
+	NOT-FOR-US: ClientExec
 CVE-2007-2804 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: CandyPress Store
 CVE-2007-2803 (SQL injection vulnerability in default.asp in Vizayn Urun Tanitim ...)
-	TODO: check
+	NOT-FOR-US: Vizayn Urun Tanitim Sitesi
 CVE-2007-2802 (Cross-site scripting (XSS) vulnerability in cp/ps/Main/login/Login in ...)
-	TODO: check
+	NOT-FOR-US: RM EasyMail Plus
 CVE-2007-2801
 	RESERVED
 CVE-2007-2800
@@ -618,13 +618,13 @@
 CVE-2007-2688 (The Cisco Intrusion Prevention System (IPS) and IOS with Firewall/IPS ...)
 	NOT-FOR-US: Cisco
 CVE-2007-2687 (Stack-based buffer overflow in the MicroWorld Agent service ...)
-	TODO: check
+	NOT-FOR-US: MicroWorld
 CVE-2007-2686 (Cross-site scripting (XSS) vulnerability in index.php in Jetbox CMS ...)
-	TODO: check
+	NOT-FOR-US: Jetbox CMS
 CVE-2007-2685 (Multiple SQL injection vulnerabilities in index.php in Jetbox CMS 2.1 ...)
 	NOT-FOR-US: Jetbox CMS
 CVE-2007-2684 (Jetbox CMS 2.1 allows remote attackers to obtain sensitive information ...)
-	TODO: check
+	NOT-FOR-US: Jetbox CMS
 CVE-2007-2683 (Buffer overflow in Mutt 1.4.2 might allow local users to execute ...)
 	- mutt <unfixed> (low; bug #426116)
 CVE-2007-2682 (The installer for Adobe Version Cue CS3 Server on Apple Mac OS X, as ...)




More information about the Secure-testing-commits mailing list