[Secure-testing-commits] r10142 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Wed Oct 22 12:06:29 UTC 2008 

Author: white
Date: 2008-10-22 12:06:28 +0000 (Wed, 22 Oct 2008)
New Revision: 10142

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-10-22 11:32:47 UTC (rev 10141)
+++ data/CVE/list	2008-10-22 12:06:28 UTC (rev 10142)
@@ -1,37 +1,37 @@
 CVE-2008-4635 (Unspecified vulnerability in Hisanaga Electric Co, Ltd. hisa_cart 1.29 ...)
-	TODO: check
+	NOT-FOR-US: XOOPS module
 CVE-2008-4634 (Cross-site scripting (XSS) vulnerability in Movable Type 4 through ...)
 	TODO: check
 CVE-2008-4633 (SQL injection vulnerability in Node Vote 5.x before 5.x-1.1 and 6.x ...)
-	TODO: check
+	NOT-FOR-US: Node Vote
 CVE-2008-4632 (Multiple directory traversal vulnerabilities in index.php in Kure ...)
-	TODO: check
+	NOT-FOR-US: Kure
 CVE-2008-4631 (Stack-based buffer overflow in the Message::AddToString function in ...)
 	TODO: check
 CVE-2008-4630 (Multiple unspecified vulnerabilities in Midgard Components (MidCOM) ...)
-	TODO: check
+	NOT-FOR-US: Midgard Components Framework
 CVE-2008-4629 (Cross-site scripting (XSS) vulnerability in Usagi Project MyNETS 1.2.0 ...)
-	TODO: check
+	NOT-FOR-US: Usagi Project MyNETS
 CVE-2008-4628 (SQL injection vulnerability in del.php in myWebland miniBloggie 1.0 ...)
-	TODO: check
+	NOT-FOR-US: myWebland miniBloggie
 CVE-2008-4627 (SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab ...)
-	TODO: check
+	NOT-FOR-US: WoltLab Burning Board
 CVE-2008-4626 (Directory traversal vulnerability in index.php in Fritz Berger yet ...)
-	TODO: check
+	NOT-FOR-US: yappa-ng
 CVE-2008-4625 (SQL injection vulnerability in stnl_iframe.php in the ShiftThis ...)
 	TODO: check
 CVE-2008-4624 (PHP remote file inclusion vulnerability in init.php in Fast Click SQL ...)
-	TODO: check
+	NOT-FOR-US: Fast Click SQL Lite
 CVE-2008-4623 (SQL injection vulnerability in the DS-Syndicate (com_ds-syndicate) ...)
-	TODO: check
+	NOT-FOR-US: DS-Syndicate
 CVE-2008-4622 (fastnews-code.php in phpFastNews 1.0.0 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: phpFastNews
 CVE-2008-4621 (SQL injection vulnerability in bannerclick.php in ZeeScripts ...)
-	TODO: check
+	NOT-FOR-US: ZeeScripts Zeeproperty
 CVE-2008-4620 (SQL injection vulnerability in Meeting Room Booking System (MRBS) ...)
-	TODO: check
+	NOT-FOR-US: Meeting Room Booking System
 CVE-2008-4619 (The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a ...)
-	TODO: check
+	NOT-FOR-US: Sun Solaris
 CVE-2008-4618 (The Stream Control Transmission Protocol (sctp) implementation in the ...)
 	TODO: check
 CVE-2008-4617 (SQL injection vulnerability in the actualite module 1.0 for Joomla! ...)
@@ -39,15 +39,15 @@
 CVE-2008-4616 (The SpamBam plugin for WordPress allows remote attackers to bypass ...)
 	TODO: check
 CVE-2008-4615 (Unspecified vulnerability in i_utils.asp in PortalApp before 4.01a has ...)
-	TODO: check
+	NOT-FOR-US: PortalApp
 CVE-2008-4614 (PortalApp 4.0 does not require authentication for (1) forums.asp and ...)
-	TODO: check
+	NOT-FOR-US: PortalApp
 CVE-2008-4613 (SQL injection vulnerability in forums.asp in PortalApp 4.0 allows ...)
-	TODO: check
+	NOT-FOR-US: PortalApp
 CVE-2008-4612 (Cross-site scripting (XSS) vulnerability in PortalApp 4.0 allows ...)
-	TODO: check
+	NOT-FOR-US: PortalApp
 CVE-2008-4611 (SQL injection vulnerability in index.php in PHP Arsivimiz Php ...)
-	TODO: check
+	NOT-FOR-US: PHP Arsivimiz Php Ziyaretci Defteri
 CVE-2008-4610 (MPlayer allows remote attackers to cause a denial of service ...)
 	TODO: check
 CVE-2008-4609 (The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, ...)
@@ -57,21 +57,21 @@
 CVE-2008-4607
 	RESERVED
 CVE-2008-4606 (Multiple SQL injection vulnerabilities in IP Reg 0.4 and earlier allow ...)
-	TODO: check
+	NOT-FOR-US: IP Reg
 CVE-2008-4605 (SQL injection vulnerability in CafeEngine allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: CafeEngine
 CVE-2008-4604 (SQL injection vulnerability in index.php in Easy CafeEngine 1.1 allows ...)
-	TODO: check
+	NOT-FOR-US: CafeEngine
 CVE-2008-4603 (SQL injection vulnerability in search.php in iGaming CMS 2.0 Alpha 1 ...)
-	TODO: check
+	NOT-FOR-US: iGaming CM
 CVE-2008-4602 (Directory traversal vulnerability in index.php in Post Affiliate Pro ...)
-	TODO: check
+	NOT-FOR-US: Post Affiliate Pro
 CVE-2008-4601 (Cross-site scripting (XSS) vulnerability in the login feature in ...)
-	TODO: check
+	NOT-FOR-US:  Habari CMS
 CVE-2008-4600 (configure.php in PokerMax Poker League Tournament Script 0.13 allows ...)
-	TODO: check
+	NOT-FOR-US: PokerMax Poker League Tournament Script
 CVE-2008-4599 (SQL injection vulnerability in category.php in Mosaic Commerce allows ...)
-	TODO: check
+	NOT-FOR-US: Mosaic Commerce
 CVE-2008-4598 (Unspecified vulnerability in Shindig-Integrator 5.x, a module for ...)
 	TODO: check
 CVE-2008-4597 (Shindig-Integrator 5.x, a module for Drupal, does not properly ...)
@@ -79,11 +79,11 @@
 CVE-2008-4596 (Cross-site scripting (XSS) vulnerability in Shindig-Integrator 5.x, a ...)
 	TODO: check
 CVE-2008-4595 (Multiple unspecified vulnerabilities in Slaytanic Scripts Content Plus ...)
-	TODO: check
+	NOT-FOR-US: Slaytanic Scripts Content Plus
 CVE-2008-4594 (Unspecified vulnerability in the SNMPv3 component in Linksys WAP4400N ...)
-	TODO: check
+	NOT-FOR-US: Linksys WAP4400N firmware
 CVE-2008-4593 (Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled ...)
-	TODO: check
+	NOT-FOR-US: Apple iPhone 2.1 with firmware 5F136
 CVE-2007-6718 (MPlayer, possibly 1.0rc1, allows remote attackers to cause a denial of ...)
 	TODO: check
 CVE-2008-XXXX [vlc overflow in ty parsing]

More information about the Secure-testing-commits mailing list