[Secure-testing-commits] r6674 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Sat Sep 22 16:56:21 UTC 2007 

Author: nion
Date: 2007-09-22 16:56:21 +0000 (Sat, 22 Sep 2007)
New Revision: 6674

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-09-22 11:09:04 UTC (rev 6673)
+++ data/CVE/list	2007-09-22 16:56:21 UTC (rev 6674)
@@ -1,27 +1,28 @@
 CVE-2007-5019 (Buffer overflow in the Sun Java Web Start ActiveX control in Java ...)
 	TODO: check
 CVE-2007-5018 (Stack-based buffer overflow in IMAPD in Mercury/32 4.52 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Pegasus Mail Mercury
 CVE-2007-5017 (Absolute path traversal vulnerability in a certain ActiveX control in ...)
-	TODO: check
+	NOT-FOR-US: Yahoo! Messenger
 CVE-2007-5016 (SQL injection vulnerability in userreviews.php in OneCMS 2.4 allows ...)
-	TODO: check
+	NOT-FOR-US: OneCMS
 CVE-2007-5015 (Multiple PHP remote file inclusion vulnerabilities in Streamline PHP ...)
-	TODO: check
+	NOT-FOR-US: Streamline
 CVE-2007-5014 (Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 ...)
-	TODO: check
+	NOT-FOR-US: pSlash
 CVE-2007-5013 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...)
-	TODO: check
+	NOT-FOR-US: Phormer
 CVE-2007-5012 (Cross-site scripting (XSS) vulnerability in picture.php in ...)
-	TODO: check
+	NOT-FOR-US: PhpWebGallery
 CVE-2007-5011 (webbatch.exe in WebBatch allows remote attackers to obtain sensitive ...)
-	TODO: check
+	NOT-FOR-US: WebBatch
 CVE-2007-5010 (Cross-site scripting (XSS) vulnerability in WebBatch allows remote ...)
-	TODO: check
+	NOT-FOR-US: WebBatch
 CVE-2007-5009 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Phpbb Plus
+	NOTE: vulnerable code not included in phpbb2
 CVE-2007-5008 (The logins command in HP-UX B.11.31, B.11.23, and B.11.11 does not ...)
-	TODO: check
+	NOT-FOR-US: HP-UX
 CVE-2007-5007 (Stack-based buffer overflow in the ir_fetch_seq function in balsa ...)
 	- balsa 2.3.20-1 (low)
 	NOTE: attacker needs to get the victim a prepared server to use

More information about the Secure-testing-commits mailing list