[Secure-testing-commits] r11634 - data/CVE
Kees Cook
kees at alioth.debian.org
Thu Apr 16 20:20:52 UTC 2009
Author: kees
Date: 2009-04-16 20:20:52 +0000 (Thu, 16 Apr 2009)
New Revision: 11634
Modified:
data/CVE/list
Log:
NFUs: 65
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-04-16 18:34:01 UTC (rev 11633)
+++ data/CVE/list 2009-04-16 20:20:52 UTC (rev 11634)
@@ -769,7 +769,7 @@
CVE-2009-1120
RESERVED
CVE-2009-1119 (Multiple heap-based buffer overflows in EMC RepliStor 6.2 before SP5 ...)
- TODO: check
+ NOT-FOR-US: EMC RepliStor
CVE-2009-1118
RESERVED
CVE-2009-1117
@@ -1160,97 +1160,97 @@
CVE-2009-1018
RESERVED
CVE-2009-1017 (Unspecified vulnerability in the BI Publisher component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-1016 (Unspecified vulnerability in the WebLogic Server component in BEA ...)
- TODO: check
+ NOT-FOR-US: BEA Product Suite
CVE-2009-1015
RESERVED
CVE-2009-1014 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2009-1013 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2009-1012 (Unspecified vulnerability in the WebLogic Server component in BEA ...)
- TODO: check
+ NOT-FOR-US: BEA Product Suite
CVE-2009-1011 (Unspecified vulnerability in the Outside In Technology component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-1010 (Unspecified vulnerability in the Outside In Technology component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-1009 (Unspecified vulnerability in the Outside In Technology component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-1008 (Unspecified vulnerability in the Outside In Technology component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-1007
RESERVED
CVE-2009-1006 (Unspecified vulnerability in the JRockit component in BEA Product ...)
- TODO: check
+ NOT-FOR-US: BEA Product Suite
CVE-2009-1005 (Unspecified vulnerability in the Oracle Data Service Integrator ...)
- TODO: check
+ NOT-FOR-US: BEA Product Suite
CVE-2009-1004 (Unspecified vulnerability in the WebLogic Server component in BEA ...)
- TODO: check
+ NOT-FOR-US: BEA Product Suite
CVE-2009-1003 (Unspecified vulnerability in the WebLogic Server component in BEA ...)
- TODO: check
+ NOT-FOR-US: BEA Product Suite
CVE-2009-1002 (Unspecified vulnerability in the WebLogic Server component in BEA ...)
- TODO: check
+ NOT-FOR-US: BEA Product Suite
CVE-2009-1001 (Unspecified vulnerability in the WebLogic Portal component in BEA ...)
- TODO: check
+ NOT-FOR-US: BEA Product Suite
CVE-2009-1000 (The Oracle Applications Framework component in Oracle E-Business Suite ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2009-0999 (Unspecified vulnerability in the Oracle Application Object Library ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2009-0998 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS - ...)
- TODO: check
+ NOT-FOR-US: PeopleSoft Enterprise HRMS
CVE-2009-0997 (Unspecified vulnerability in the Database Vault component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0996 (Unspecified vulnerability in the BI Publisher component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-0995 (Unspecified vulnerability in the Oracle Applications Framework ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2009-0994 (Unspecified vulnerability in the BI Publisher component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-0993 (Unspecified vulnerability in the OPMN component in Oracle Application ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-0992 (Unspecified vulnerability in the Advanced Queuing component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0991 (Unspecified vulnerability in the Listener component in Oracle Database ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0990 (Unspecified vulnerability in the BI Publisher component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-0989 (Unspecified vulnerability in the BI Publisher component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-0988 (Unspecified vulnerability in the Password Policy component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0987
RESERVED
CVE-2009-0986 (Unspecified vulnerability in the Workspace Manager component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0985 (Unspecified vulnerability in the Core RDBMS component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0984 (Unspecified vulnerability in the Database Vault component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0983 (Unspecified vulnerability in the Portal component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-0982 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Enterprise
CVE-2009-0981 (Unspecified vulnerability in the Application Express component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0980 (Unspecified vulnerability in the SQLX Functions component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0979 (Unspecified vulnerability in the Resource Manager component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0978 (Unspecified vulnerability in the Workspace Manager component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0977 (Unspecified vulnerability in the Advanced Queuing component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0976 (Unspecified vulnerability in the Workspace Manager component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0975 (Unspecified vulnerability in the Workspace Manager component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0974 (Unspecified vulnerability in the Portal component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Application Server
CVE-2009-0973 (Unspecified vulnerability in the Cluster Ready Services component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2009-0972 (Unspecified vulnerability in the Workspace Manager component in Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2008-6503 (Multiple cross-site scripting (XSS) vulnerabilities in PrestaShop ...)
NOT-FOR-US: PrestaShop
CVE-2008-6502 (Directory traversal vulnerability in Pro Chat Rooms 3.0.2 allows ...)
@@ -2362,7 +2362,7 @@
CVE-2009-0682
RESERVED
CVE-2009-0681 (PGP Desktop before 9.10 allows local users to (1) cause a denial of ...)
- TODO: check
+ NOT-FOR-US: PGP Desktop
CVE-2009-0680 (cgi-bin/welcome/VPN_only in the web interface in Netgear SSL312 allows ...)
NOT-FOR-US: Netgear
CVE-2009-0679 (Cross-site scripting (XSS) vulnerability in the Your Account module in ...)
@@ -2969,15 +2969,15 @@
CVE-2009-0555
RESERVED
CVE-2009-0554 (Microsoft Internet Explorer 5.01 SP4, 6 SP1, 6 and 7 on Windows XP SP2 ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2009-0553 (Microsoft Internet Explorer 6 SP1, 6 and 7 on Windows XP SP2 and SP3, ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2009-0552 (Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4, 6 ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2009-0551 (Microsoft Internet Explorer 6 SP1, 6 and 7 on Windows XP SP2 and SP3, ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2009-0550 (Windows HTTP Services (aka WinHTTP) in Microsoft Windows 2000 SP4, XP ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2009-0549
RESERVED
CVE-2009-0548 (Cross-site scripting (XSS) vulnerability in the Additional Report ...)
@@ -4219,11 +4219,11 @@
CVE-2009-0238 (Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; ...)
NOT-FOR-US: Microsoft
CVE-2009-0237 (Cross-site scripting (XSS) vulnerability in cookieauth.dll in the HTML ...)
- TODO: check
+ NOT-FOR-US: Microsoft Forefront Threat Management Gateway
CVE-2009-0236
RESERVED
CVE-2009-0235 (Stack-based buffer overflow in the Word 97 text converter in WordPad ...)
- TODO: check
+ NOT-FOR-US: Microsoft WordPad
CVE-2009-0234 (The DNS Resolver Cache Service (aka DNSCache) in Windows DNS Server in ...)
NOT-FOR-US: Microsoft Windows
CVE-2009-0233 (The DNS Resolver Cache Service (aka DNSCache) in Windows DNS Server in ...)
@@ -4257,7 +4257,7 @@
CVE-2009-0219 (The PDF distiller in the Attachment Service in Research in Motion ...)
NOT-FOR-US: BlackBerry
CVE-2009-0218 (Insecure method vulnerability in Particle Software IntraLaunch ...)
- TODO: check
+ NOT-FOR-US: IntraLaunch Application Launcher ActiveX control
CVE-2009-0217
RESERVED
CVE-2009-0216 (GE Fanuc iFIX 5.0 and earlier relies on client-side authentication ...)
@@ -4610,7 +4610,7 @@
CVE-2009-0101
RESERVED
CVE-2009-0100 (Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; ...)
- TODO: check
+ NOT-FOR-US: Microsoft Office Excel
CVE-2009-0099 (The Electronic Messaging System Microsoft Data Base (EMSMDB32) ...)
NOT-FOR-US: Microsoft
CVE-2009-0098 (Microsoft Exchange 2000 Server SP3, Exchange Server 2003 SP2, and ...)
@@ -4632,17 +4632,17 @@
CVE-2009-0090
RESERVED
CVE-2009-0089 (Windows HTTP Services (aka WinHTTP) in Microsoft Windows 2000 SP4, XP ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2009-0088 (The WordPerfect 6.x Converter in Microsoft Office Word 2000 SP3 and ...)
- TODO: check
+ NOT-FOR-US: Microsoft Office
CVE-2009-0087 (Unspecified vulnerability in the Word 6 text converter in WordPad in ...)
- TODO: check
+ NOT-FOR-US: Microsoft Word
CVE-2009-0086 (Integer underflow in Windows HTTP Services (aka WinHTTP) in Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2009-0085 (The Secure Channel (aka SChannel) authentication component in ...)
NOT-FOR-US: Microsoft Windows
CVE-2009-0084 (DirectShow in Microsoft DirectX 8.1 and 9.0 does not properly ...)
- TODO: check
+ NOT-FOR-US: DirectX
CVE-2009-0083 (The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server ...)
NOT-FOR-US: Microsoft Windows
CVE-2009-0082 (The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 ...)
@@ -4650,13 +4650,13 @@
CVE-2009-0081 (The graphics device interface (GDI) implementation in the kernel in ...)
NOT-FOR-US: Microsoft Windows
CVE-2009-0080 (The ThreadPool class in Windows Vista Gold and SP1, and Server 2008, ...)
- TODO: check
+ NOT-FOR-US: Windows Vista
CVE-2009-0079 (The RPCSS service in Microsoft Windows XP SP2 and SP3 and Server 2003 ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows XP
CVE-2009-0078 (The Windows Management Instrumentation (WMI) provider in Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows XP
CVE-2009-0077 (The firewall engine in Microsoft Forefront Threat Management Gateway, ...)
- TODO: check
+ NOT-FOR-US: Microsoft Forefront Threat Management Gateway
CVE-2009-0076 (Microsoft Internet Explorer 7, when XHTML strict mode is used, allows ...)
NOT-FOR-US: Microsoft
CVE-2009-0075 (Microsoft Internet Explorer 7 does not properly handle errors during ...)
@@ -8299,7 +8299,7 @@
CVE-2008-4421 (Directory traversal vulnerability in MetaGauge 1.0.0.17, and probably ...)
NOT-FOR-US: MetaGauge
CVE-2008-4420 (Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in ...)
- TODO: check
+ NOT-FOR-US: DynaZip Max
CVE-2008-4419 (Directory traversal vulnerability in the HP JetDirect web ...)
NOT-FOR-US: HP-ChaiSOE
CVE-2008-4418 (Unspecified vulnerability in DCE in HP HP-UX B.11.11, B.11.23, and ...)
@@ -25217,7 +25217,7 @@
CVE-2007-4515 (Buffer overflow in a certain ActiveX control in YVerInfo.dll before ...)
NOT-FOR-US: Yahoo! Messenger
CVE-2007-4514 (Unspecified vulnerability in HP ProCurve Manager and HP ProCurve ...)
- TODO: check
+ NOT-FOR-US: HP ProCurve Manager
CVE-2007-4513 (Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow ...)
NOT-FOR-US: IBM AIX
CVE-2007-4512 (Cross-site scripting (XSS) vulnerability in Sophos Anti-Virus for ...)
More information about the Secure-testing-commits
mailing list