[Secure-testing-commits] r12261 - data/CVE

Giuseppe Iuculano derevko-guest at alioth.debian.org
Fri Jul 3 06:49:20 UTC 2009 

Author: derevko-guest
Date: 2009-07-03 06:49:19 +0000 (Fri, 03 Jul 2009)
New Revision: 12261

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-07-02 22:34:58 UTC (rev 12260)
+++ data/CVE/list	2009-07-03 06:49:19 UTC (rev 12261)
@@ -1,71 +1,71 @@
 CVE-2009-2313 (Directory traversal vulnerability in index.php in Jinzora Media ...)
-	TODO: check
+	NOT-FOR-US: Jinzora Media Jukebox 
 CVE-2009-2312 (SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in ...)
-	TODO: check
+	NOT-FOR-US: Secure Computing SmartFilter
 CVE-2009-2311 (SQL injection vulnerability in the rGallery plugin 1.2.3 for WoltLab ...)
-	TODO: check
+	NOT-FOR-US: rGallery plugin for WoltLab
 CVE-2009-2310 (SQL injection vulnerability in include/get_read.php in ...)
-	TODO: check
+	NOT-FOR-US: Extensible-BioLawCom CMS
 CVE-2009-2309 (SQL injection vulnerability in index.php in Codice CMS 2 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Codice CMS 2
 CVE-2009-2308 (Multiple SQL injection vulnerabilities in affiliates.php in the ...)
-	TODO: check
+	NOT-FOR-US: PunBB
 CVE-2009-2307 (SQL injection vulnerability in the CWGuestBook module 2.1 and earlier ...)
-	TODO: check
+	NOT-FOR-US: MDPro
 CVE-2009-2306 (The ARD-9808 DVR card security camera stores sensitive information ...)
-	TODO: check
+	NOT-FOR-US: ARD-9808 DVR card security camera
 CVE-2009-2305 (The ARD-9808 DVR card security camera allows remote attackers to cause ...)
-	TODO: check
+	NOT-FOR-US: ARD-9808 DVR card security camera
 CVE-2009-2304 (index.php in Aardvark Topsites PHP 5.2.0 and earlier allows remote ...)
-	TODO: check
+	NOT-FOR-US: Aardvark Topsites
 CVE-2009-2303 (index.php in Aardvark Topsites PHP 5.2.1 and earlier allows remote ...)
-	TODO: check
+	NOT-FOR-US: Aardvark Topsites
 CVE-2009-2302 (Cross-site scripting (XSS) vulnerability in index.php in Aardvark ...)
-	TODO: check
+	NOT-FOR-US: Aardvark Topsites
 CVE-2009-2301 (The radware AppWall Web Application Firewall (WAF) 1.0.2.6, with ...)
-	TODO: check
+	NOT-FOR-US: AppWall Web Application Firewall
 CVE-2009-2300 (The management interface in the phion airlock Web Application Firewall ...)
-	TODO: check
+	NOT-FOR-US: phion airlock Web Application Firewall
 CVE-2009-2299 (The Artofdefence Hyperguard Web Application Firewall (WAF) module ...)
-	TODO: check
+	NOT-FOR-US: Artofdefence Hyperguard Web Application Firewall
 CVE-2009-2298 (Stack-based buffer overflow in rping in HP OpenView Network Node ...)
-	TODO: check
+	NOT-FOR-US: HP Network Node Manager rping
 CVE-2009-2297 (Unspecified vulnerability in the udp subsystem in the kernel in Sun ...)
-	TODO: check
+	NOT-FOR-US: kernel in Sun Solaris
 CVE-2009-2296 (The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris ...)
-	TODO: check
+	NOT-FOR-US: kernel module in Sun Solaris
 CVE-2009-2295
 	RESERVED
 CVE-2009-2294
 	RESERVED
 CVE-2009-2293 (Optimum Web Design Tutorial Share 3.5.0 and earlier allows remote ...)
-	TODO: check
+	NOT-FOR-US: Optimum Web Design Tutorial Share
 CVE-2009-2292 (Cross-site scripting (XSS) vulnerability in Appleple a-News 2.32 ...)
-	TODO: check
+	NOT-FOR-US: Appleple a-News
 CVE-2009-2291 (Unspecified vulnerability in LoginToboggan 6.x-1.x before 6.x-1.5, a ...)
-	TODO: check
+	NOT-FOR-US: LoginToboggan module for Drupal
 CVE-2009-2290 (SQL injection vulnerability in the Boy Scout Advancement (com_bsadv) ...)
-	TODO: check
+	NOT-FOR-US: Joomla!
 CVE-2009-2289 (Cross-site scripting (XSS) vulnerability in index.php in Arcade Trade ...)
-	TODO: check
+	NOT-FOR-US: Arcade Trade Script
 CVE-2009-2287 (The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel ...)
 	TODO: check
 CVE-2009-2285 (Buffer underflow in the LZWDecodeCompat function in libtiff 3.8.2 ...)
 	TODO: check
 CVE-2009-2283 (Multiple cross-site scripting (XSS) vulnerabilities in the help jsp ...)
-	TODO: check
+	NOT-FOR-US: Sun Java Web Console in Solaris 
 CVE-2009-2282 (The Virtual Network Terminal Server daemon (vntsd) for Logical Domains ...)
-	TODO: check
+	NOT-FOR-US: LDoms in Sun Solaris
 CVE-2008-6847 (Cross-site scripting (XSS) vulnerability in Employee/emp_login.asp in ...)
-	TODO: check
+	NOT-FOR-US: Pre ASP Job Board
 CVE-2008-6846 (Multiple stack-based buffer overflows in avast! Linux Home Edition ...)
-	TODO: check
+	NOT-FOR-US: avast! Linux Home Edition
 CVE-2008-6845 (The unpack feature in ClamAV 0.93.3 and earlier allows remote ...)
 	TODO: check
 CVE-2008-6844 (The registration view (/user/register) in eZ Publish 3.5.6 and ...)
 	TODO: check
 CVE-2008-6843 (Directory traversal vulnerability in index.php in Fantastico, as used ...)
-	TODO: check
+	NOT-FOR-US: Fantastico
 CVE-2008-6842 (Directory traversal vulnerability in ...)
 	TODO: check
 CVE-2008-6841 (PHP remote file inclusion vulnerability in the Green Mountain ...)
@@ -2289,7 +2289,7 @@
 CVE-2009-1422
 	RESERVED
 CVE-2009-1421 (Unspecified vulnerability in NFS / ONCplus on HP HP-UX B.11.31 allows ...)
-	TODO: check
+	NOT-FOR-US: ONCplus on HP HP-UX
 CVE-2009-1420 (Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) ...)
 	NOT-FOR-US: HP OpenView Network Node Manager
 CVE-2009-1419 (Unspecified vulnerability in HP Discovery & Dependency Mapping ...)

More information about the Secure-testing-commits mailing list