[Secure-testing-commits] r9621 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Fri Aug 22 08:17:30 UTC 2008 

Author: white
Date: 2008-08-22 08:17:28 +0000 (Fri, 22 Aug 2008)
New Revision: 9621

Modified:
   data/CVE/list
Log:
More NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-08-22 07:46:30 UTC (rev 9620)
+++ data/CVE/list	2008-08-22 08:17:28 UTC (rev 9621)
@@ -56,33 +56,33 @@
 CVE-2008-3714 (Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.8 ...)
 	TODO: check
 CVE-2008-3713 (SQL injection vulnerability in product.php in PHPBasket allows remote ...)
-	TODO: check
+	NOT-FOR-US: PHPBasket
 CVE-2008-3712 (Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.2 and ...)
-	TODO: check
+	NOT-FOR-US: Mambo
 CVE-2008-3711 (SQL injection vulnerability in index.php in PHPArcadeScript (PHP ...)
-	TODO: check
+	NOT-FOR-US: PHPArcadeScript
 CVE-2008-3710 (Multiple directory traversal vulnerabilities in CyBoards PHP Lite 1.21 ...)
-	TODO: check
+	NOT-FOR-US: CyBoards PHP Lite
 CVE-2008-3709 (Multiple cross-site scripting (XSS) vulnerabilities in CyBoards PHP ...)
-	TODO: check
+	NOT-FOR-US: CyBoards PHP Lite
 CVE-2008-3708 (Multiple directory traversal vulnerabilities in dotCMS 1.6.0.9 allow ...)
-	TODO: check
+	NOT-FOR-US: dotCMS
 CVE-2008-3707 (Multiple PHP remote file inclusion vulnerabilities in CyBoards PHP ...)
-	TODO: check
+	NOT-FOR-US: CyBoards PHP Lite
 CVE-2008-3706 (SQL injection vulnerability in bannerclick.php in ZEEJOBSITE 2.0 ...)
-	TODO: check
+	NOT-FOR-US: ZEEJOBSITE
 CVE-2008-3705 (Stack-based buffer overflow in the CLogger::WriteFormated function in ...)
-	TODO: check
+	NOT-FOR-US:  EchoVNC Linux
 CVE-2008-3704 (Stack-based buffer overflow in the MaskedEdit ActiveX control in ...)
-	TODO: check
+	NOT-FOR-US: Msmask32.ocx
 CVE-2008-3703 (The management console in the Volume Manager Scheduler Service (aka ...)
-	TODO: check
+	NOT-FOR-US: Symantec Veritas Storage Foundation
 CVE-2008-3702 (Multiple stack-based buffer overflows in the Animation GIF ActiveX ...)
-	TODO: check
+	NOT-FOR-US:  SpeedBit Download Accelerator Plus
 CVE-2008-3701 (SQL injection vulnerability in staff/index.php in Kayako SupportSuite ...)
-	TODO: check
+	NOT-FOR-US: Kayako SupportSuite
 CVE-2008-3700 (Multiple cross-site scripting (XSS) vulnerabilities in Kayako ...)
-	TODO: check
+	NOT-FOR-US: Kayako SupportSuite
 CVE-2008-3698
 	RESERVED
 CVE-2008-3697
@@ -116,45 +116,45 @@
 CVE-2008-3683 (Unspecified vulnerability in the FTP subsystem in Sun Java System Web ...)
 	TODO: check
 CVE-2008-3682 (SQL injection vulnerability in dpage.php in YPN PHP Realty allows ...)
-	TODO: check
+	NOT-FOR-US: YPN PHP Realty
 CVE-2008-3681 (components/com_user/models/reset.php in Joomla! 1.5 through 1.5.5 does ...)
 	TODO: check
 CVE-2008-3680 (The decryption function in Flagship Industries Ventrilo 3.0.2 and ...)
-	TODO: check
+	NOT-FOR-US: Flagship Industries Ventrilo
 CVE-2008-3679 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...)
-	TODO: check
+	NOT-FOR-US: IDevSpot PhpLinkExchange
 CVE-2008-3678 (Cross-site scripting (XSS) vulnerability in admin/search_links.php in ...)
-	TODO: check
+	NOT-FOR-US: Freeway
 CVE-2008-3677 (Directory traversal vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Freeway
 CVE-2008-3676 (Unspecified vulnerability in the IMAP server in hMailServer 4.4.1 ...)
-	TODO: check
+	NOT-FOR-US: hMailServer
 CVE-2008-3675 (Directory traversal vulnerability in classes/imgsize.php in Gelato ...)
-	TODO: check
+	NOT-FOR-US: Gelato
 CVE-2008-3674 (SQL injection vulnerability in ugroups.php in PozScripts TubeGuru ...)
-	TODO: check
+	NOT-FOR-US: PozScripts TubeGuru Video Sharing Script
 CVE-2008-3673 (SQL injection vulnerability in browsecats.php in PozScripts Classified ...)
-	TODO: check
+	NOT-FOR-US:  PozScripts Classified Ads
 CVE-2008-3672 (SQL injection vulnerability in showcategory.php in PozScripts ...)
-	TODO: check
+	NOT-FOR-US:  PozScripts Classified Ads
 CVE-2008-3671 (Acronis True Image Echo Server 9.x build 8072 on Linux does not ...)
-	TODO: check
+	NOT-FOR-US: Echo Server
 CVE-2008-3670 (SQL injection vulnerability in authordetail.php in Article Friendly ...)
-	TODO: check
+	NOT-FOR-US: Article Friendly Pro
 CVE-2008-3669 (SQL injection vulnerability in comments.php in ZeeScripts Reviews ...)
-	TODO: check
+	NOT-FOR-US: ZeeScripts Reviews Opinions Rating Posting Engine Web-Site PHP
 CVE-2008-3668 (Multiple cross-site scripting (XSS) vulnerabilities in the Yogurt ...)
-	TODO: check
+	NOT-FOR-US: XOOPS
 CVE-2008-3667 (Stack-based buffer overflow in Maxthon Browser 2.0 and earlier allows ...)
-	TODO: check
+	NOT-FOR-US: Maxthon Browser
 CVE-2006-7233 (Cross-site scripting (XSS) vulnerability in the login form (login.jsp) ...)
-	TODO: check
+	NOT-FOR-US: Openfire
 CVE-2005-4877 (Cross-site scripting (XSS) vulnerability in the login form (login.jsp) ...)
-	TODO: check
+	NOT-FOR-US: Openfire
 CVE-2005-4876 (Cross-site scripting (XSS) vulnerability in the login form (login.jsp) ...)
-	TODO: check
+	NOT-FOR-US: Openfire
 CVE-2003-1563 (Sun Cluster 2.2 through 3.2 for Oracle Parallel Server / Real ...)
-	TODO: check
+	NOT-FOR-US: Oracle
 CVE-2008-3699 (The MagnatuneBrowser::listDownloadComplete function in ...)
 	- amarok 1.4.10-1 (low; bug #494765)
 CVE-2008-3740 [drupal XSS]

More information about the Secure-testing-commits mailing list