[Secure-testing-commits] r7166 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Thu Nov 1 08:04:11 UTC 2007 

Author: white
Date: 2007-11-01 08:04:10 +0000 (Thu, 01 Nov 2007)
New Revision: 7166

Modified:
   data/CVE/list
Log:
more NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-11-01 07:54:38 UTC (rev 7165)
+++ data/CVE/list	2007-11-01 08:04:10 UTC (rev 7166)
@@ -23,41 +23,41 @@
 CVE-2007-5728 (Cross-site scripting (XSS) vulnerability in phpPgAdmin 3.5 to 4.1.1, ...)
 	TODO: check
 CVE-2007-5727 (Incomplete blacklist vulnerability in the stripScripts function in ...)
-	TODO: check
+	NOT-FOR-US: OneOrZero Helpdesk
 CVE-2007-5726 (Unspecified vulnerability in the Stream Control Transmission Protocol ...)
-	TODO: check
+	NOT-FOR-US: Sun Solaris
 CVE-2007-5725 (Multiple cross-site scripting (XSS) vulnerabilities in Smart-Shop ...)
-	TODO: check
+	NOT-FOR-US: Smart-Shop
 CVE-2007-5724 (Multiple cross-site scripting (XSS) vulnerabilities in Omnistar Live ...)
-	TODO: check
+	NOT-FOR-US: Omnistar Live
 CVE-2007-5723 (Heap-based buffer overflow in the samp_send function in nuauth/sasl.c ...)
 	TODO: check
 CVE-2007-5722 (Heap-based buffer overflow in a certain ActiveX control in GLChat.ocx ...)
-	TODO: check
+	NOT-FOR-US: GlobalLink
 CVE-2007-5721 (PHP remote file inclusion vulnerability in _theme/breadcrumb.php in ...)
-	TODO: check
+	NOT-FOR-US: MySpacePros MySpace Resource Script
 CVE-2007-5720 (Unrestricted file upload vulnerability in the profiles script in ...)
-	TODO: check
+	NOT-FOR-US: ProfileCMS
 CVE-2007-5719 (SQL injection vulnerability in bb_func_search.php in miniBB 2.1 allows ...)
-	TODO: check
+	NOT-FOR-US: miniBB
 CVE-2007-5717 (Unspecified vulnerability in Sun Fire X2100 M2 and X2200 M2 Embedded ...)
-	TODO: check
+	NOT-FOR-US: Sun Fire
 CVE-2007-5716 (Unspecified vulnerability in the Internet Protocol (IP) functionality ...)
-	TODO: check
+	NOT-FOR-US: Sun Solaris 10
 CVE-2007-5715 (DenyHosts 2.6 processes OpenSSH sshd "not listed in AllowUsers" log ...)
 	TODO: check
 CVE-2007-5714 (The Gentoo ebuild of MLDonkey before 2.9.0-r3 has a p2p user account ...)
 	TODO: check
 CVE-2007-5713 (Off-by-one error in the GeoIP module in the AMX Mod X 1.76d plugin for ...)
-	TODO: check
+	NOT-FOR-US: Half-Life Server
 CVE-2007-5712 (The internationalization (i18n) framework in Django 0.91, 0.95, ...)
-	TODO: check
+	NOT-FOR-US: Django
 CVE-2007-5711 (Massive Entertainment World in Conflict 1.001 and earlier allows ...)
-	TODO: check
+	NOT-FOR-US: Conflict
 CVE-2007-5710 (Cross-site scripting (XSS) vulnerability in ...)
 	TODO: check
 CVE-2007-5709 (Stack-based buffer overflow in Sony SonicStage CONNECT Player (CP) 4.3 ...)
-	TODO: check
+	NOT-FOR-US: Sony SonicStage CONNECT Player
 CVE-2007-5718 (vobcopy 0.5.14 allows local users to append data to an arbitrary file, ...)
 	- vopcopy <unfixed> (low; bug #448319)
 CVE-2007-5706 (Absolute path traversal vulnerability in download.php in Jeebles ...)

More information about the Secure-testing-commits mailing list