[Secure-testing-commits] r9524 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Thu Aug 7 07:24:55 UTC 2008 

Author: white
Date: 2008-08-07 07:24:54 +0000 (Thu, 07 Aug 2008)
New Revision: 9524

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-08-06 21:14:17 UTC (rev 9523)
+++ data/CVE/list	2008-08-07 07:24:54 UTC (rev 9524)
@@ -1,11 +1,11 @@
 CVE-2008-3484 (SQL injection vulnerability in eStoreAff 0.1 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: eStoreAff
 CVE-2008-3483 (Cross-site scripting (XSS) vulnerability in ScrewTurn Wiki 2.0.29 and ...)
-	TODO: check
+	NOT-FOR-US: ScrewTurn Wiki
 CVE-2008-3482 (Cross-site scripting (XSS) vulnerability in the error page feature in ...)
-	TODO: check
+	NOT-FOR-US: Panasonic Network Camera
 CVE-2008-3481 (themes/sample/theme.php in Coppermine Photo Gallery (CPG) 1.4.18 and ...)
-	TODO: check
+	NOT-FOR-US: Coppermine Photo Gallery
 CVE-2008-3480
 	RESERVED
 CVE-2008-3479
@@ -51,31 +51,31 @@
 CVE-2008-3459 (Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when ...)
 	TODO: check
 CVE-2008-3458 (Vtiger CRM before 5.0.4 stores sensitive information under the web ...)
-	TODO: check
+	NOT-FOR-US: Vtiger CRM
 CVE-2008-3457 (Cross-site scripting (XSS) vulnerability in setup.php in phpMyAdmin ...)
 	TODO: check
 CVE-2008-3455 (PHP remote file inclusion vulnerability in include/admin.php in ...)
-	TODO: check
+	NOT-FOR-US: JnSHosts PHP Hosting Directory
 CVE-2008-3454 (JnSHosts PHP Hosting Directory 2.0 allows remote attackers to bypass ...)
-	TODO: check
+	NOT-FOR-US: JnSHosts PHP Hosting Directory
 CVE-2008-3453 (Multiple unspecified vulnerabilities in ImpressCMS 1.0 have unknown ...)
-	TODO: check
+	NOT-FOR-US: ImpressCMS
 CVE-2008-3452 (SQL injection vulnerability in the Calendar module in eNdonesia 8.4 ...)
-	TODO: check
+	NOT-FOR-US: eNdonesia
 CVE-2008-3451 (PhpWebGallery 1.7.0 and 1.7.1 allows remote authenticated users with ...)
-	TODO: check
+	NOT-FOR-US: PhpWebGallery
 CVE-2008-3450 (Unspecified vulnerability in the namefs kernel module in Sun Solaris 8 ...)
 	TODO: check
 CVE-2008-3449 (MailEnable Professional 3.5.2 and Enterprise 3.52 allow remote ...)
-	TODO: check
+	NOT-FOR-US: MailEnable
 CVE-2008-3448 (Cross-site scripting (XSS) vulnerability in index.php in common ...)
-	TODO: check
+	NOT-FOR-US: csphonebook
 CVE-2008-3447 (The scanning engine in F-Prot Antivirus 6.2.1 4252 allows remote ...)
-	TODO: check
+	NOT-FOR-US: F-Prot Antivirus
 CVE-2008-3446 (Directory traversal vulnerability in inc/wysiwyg.php in LetterIt 2 ...)
-	TODO: check
+	NOT-FOR-US: LetterIt
 CVE-2008-3445 (SQL injection vulnerability in index.php in phpMyRealty (PMR) 2.0.0 ...)
-	TODO: check
+	NOT-FOR-US: phpMyRealty
 CVE-2008-3444 (The content layout component in Mozilla Firefox 3.0 and 3.0.1 allows ...)
 	TODO: check
 CVE-2008-3443
@@ -83,39 +83,39 @@
 CVE-2008-3442 (WinZip before 11.0 does not properly verify the authenticity of ...)
 	TODO: check
 CVE-2008-3441 (Nullsoft Winamp before 5.24 does not properly verify the authenticity ...)
-	TODO: check
+	NOT-FOR-US: Nullsoft Winamp
 CVE-2008-3440 (Sun Java before 1.6.0_03 does not properly verify the authenticity of ...)
 	TODO: check
 CVE-2008-3439 (SpeedBit Video Acceleration before 2.2.1.8 does not properly verify ...)
-	TODO: check
+	NOT-FOR-US: SpeedBit Video Acceleration
 CVE-2008-3438 (Apple Mac OS X does not properly verify the authenticity of updates, ...)
-	TODO: check
+	NOT-FOR-US: Apple Mac OS X
 CVE-2008-3437 (OpenOffice.org (OOo) before 2.1.0 does not properly verify the ...)
 	TODO: check
 CVE-2008-3436 (The GUP generic update process in Notepad++ before 4.8.1 does not ...)
-	TODO: check
+	NOT-FOR-US: Notepad++
 CVE-2008-3435 (LinkedIn Browser Toolbar 3.0.3.1100 and earlier does not properly ...)
-	TODO: check
+	NOT-FOR-US: LinkedIn
 CVE-2008-3434 (Apple iTunes before 6.0.5.20 does not properly verify the authenticity ...)
-	TODO: check
+	NOT-FOR-US: Apple iTunes
 CVE-2008-3433 (SpeedBit Download Accelerator Plus (DAP) before 8.6.3.9 does not ...)
-	TODO: check
+	NOT-FOR-US: SpeedBit Download Accelerator Plus
 CVE-2008-3432
 	RESERVED
 CVE-2008-3430 (Buffer overflow in the CoVideoWindow.ocx ActiveX control 5.0.907.1 in ...)
-	TODO: check
+	NOT-FOR-US: Eyeball MessengerSDK
 CVE-2008-3428 (Session fixation vulnerability in phpFreeChat 1.1 allows remote ...)
-	TODO: check
+	NOT-FOR-US: phpFreeChat
 CVE-2008-3427 (Multiple SQL injection vulnerabilities in Möbius for Mimsy XG 1.4.4.1 ...)
-	TODO: check
+	NOT-FOR-US: Moebius for Mimsy XG
 CVE-2008-3426 (Unspecified vulnerability in the Solaris Platform Information and ...)
-	TODO: check
+	NOT-FOR-US: Solaris
 CVE-2008-3425 (Unspecified vulnerability in the Sun Java System Web Server 7.0 plugin ...)
 	TODO: check
 CVE-2008-3424 (Condor before 7.0.4 does not properly handle wildcards in the ...)
-	TODO: check
+	NOT-FOR-US: Condor
 CVE-2008-3423 (IBM WebSphere Portal 5.1 through 6.1.0.0 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere Portal
 CVE-2008-3422 (Multiple cross-site scripting (XSS) vulnerabilities in the ASP.net ...)
 	TODO: check
 CVE-2004-2760 (sshd in OpenSSH 3.5p1, when PermitRootLogin is disabled, immediately ...)

More information about the Secure-testing-commits mailing list