[Secure-testing-commits] r11460 - data/CVE
atomo64-guest at alioth.debian.org
atomo64-guest at alioth.debian.org
Mon Mar 23 02:52:56 UTC 2009
Author: atomo64-guest
Date: 2009-03-23 02:52:55 +0000 (Mon, 23 Mar 2009)
New Revision: 11460
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-03-22 21:14:11 UTC (rev 11459)
+++ data/CVE/list 2009-03-23 02:52:55 UTC (rev 11460)
@@ -175,9 +175,9 @@
CVE-2009-0965 (SQL injection vulnerability in functions/browse.php in Ganesha Digital ...)
TODO: check
CVE-2009-0964 (UserView_list.php in PHPRunner 4.2, and possibly earlier, stores ...)
- TODO: check
+ NOT-FOR-US: PHPRunner
CVE-2009-0963 (Multiple SQL injection vulnerabilities in PHPRunner 4.2, and possibly ...)
- TODO: check
+ NOT-FOR-US: PHPRunner
CVE-2009-0962 (Unspecified vulnerability in Futomi's CGI Cafe MP Form Mail CGI ...)
TODO: check
CVE-2009-0961
@@ -221,29 +221,29 @@
CVE-2009-0942
RESERVED
CVE-2009-0941 (The HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline ...)
- TODO: check
+ NOT-FOR-US: HP Embedded Web Server
CVE-2009-0940 (Multiple cross-site request forgery (CSRF) vulnerabilities in the HP ...)
- TODO: check
+ NOT-FOR-US: HP Embedded Web Server
CVE-2008-6491 (PHP remote file inclusion vulnerability in connexion.php in PHPGKit ...)
- TODO: check
+ NOT-FOR-US: PHPGKit
CVE-2008-6490 (function/update_xml.php in FLABER 1.1 and earlier allows remote ...)
TODO: check
CVE-2008-6489 (SQL injection vulnerability in MyAlbum component (com_myalbum) 1.0 for ...)
- TODO: check
+ NOT-FOR-US: MyAlbum component (com_myalbum) for Joomla!
CVE-2008-6488 (SQL injection vulnerability in index.php in SoftComplex PHP Image ...)
TODO: check
CVE-2008-6487 (Multiple SQL injection vulnerabilities in login.asp in Digiappz ...)
- TODO: check
+ NOT-FOR-US: Digiappz DigiAffiliate
CVE-2008-6486 (PHP remote file inclusion vulnerability in ...)
- TODO: check
+ NOT-FOR-US: sharedlog CMS
CVE-2008-6485 (SQL injection vulnerability in index.php in SoftComplex PHP Image ...)
- TODO: check
+ NOT-FOR-US: SoftComplex PHP Image Gallery
CVE-2008-6484 (SQL injection vulnerability in login.php in Mole Group Taxi Map Script ...)
- TODO: check
+ NOT-FOR-US: Mole Group Taxi Map Script
CVE-2008-6483 (PHP remote file inclusion vulnerability in admin.googlebase.php in the ...)
- TODO: check
+ NOT-FOR-US: Ecom Solutions VirtueMart Google Base (aka com_googlebase or Froogle) component for Joomla!
CVE-2008-6482 (PHP remote file inclusion vulnerability in admin.treeg.php in the ...)
- TODO: check
+ NOT-FOR-US: Flash Tree Gallery (com_treeg) component for Joomla!
CVE-2009-0939 (Tor before 0.2.0.34 treats incomplete IPv4 addresses as valid, which ...)
- tor 0.2.0.34-1
CVE-2009-0938 (Unspecified vulnerability in Tor before 0.2.0.34 allows directory ...)
@@ -284,7 +284,7 @@
CVE-2009-0922 (PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows ...)
TODO: check
CVE-2008-6481 (SQL injection vulnerability in the Versioning component ...)
- TODO: check
+ NOT-FOR-US: Versioning component (com_versioning) in Joomla! and Mambo
CVE-2009-0921
RESERVED
CVE-2009-0920
@@ -1611,7 +1611,7 @@
CVE-2009-0633
RESERVED
CVE-2009-0632 (The IP Phone Personal Address Book (PAB) Synchronizer feature in Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Communications Manager
CVE-2009-0631
RESERVED
CVE-2009-0630
@@ -1853,7 +1853,7 @@
CVE-2009-0539
RESERVED
CVE-2009-0538 (Format string vulnerability in Symantec pcAnywhere before 12.5 SP1 ...)
- TODO: check
+ NOT-FOR-US: Symantec pcAnywhere
CVE-2009-0537 (Integer overflow in the fts_build function in fts.c in libc in (1) ...)
- glibc <not-affected> (Vulnerable code not present)
NOTE: glibc checks the comlete path length being not longer than USHRT_MAX
@@ -1991,7 +1991,7 @@
CVE-2009-0509
RESERVED
CVE-2009-0508 (The Servlet Engine/Web Container component in IBM WebSphere ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere
CVE-2009-0507 (IBM WebSphere Process Server (WPS) 6.1.2 before 6.1.2.3 and 6.2 before ...)
NOT-FOR-US: IBM WebSphere
CVE-2009-0506 (Unspecified vulnerability in IBM WebSphere Application Server (WAS) ...)
@@ -3268,7 +3268,7 @@
CVE-2009-0144
RESERVED
CVE-2009-0143 (Apple iTunes before 8.1 does not properly inform the user about the ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2009-0142 (Race condition in AFP Server in Apple Mac OS X 10.5.6 allows local ...)
NOT-FOR-US: Apple Mac OS X
CVE-2009-0141 (XTerm in Apple Mac OS X 10.4.11 and 10.5.6, when used with luit, ...)
@@ -4259,7 +4259,7 @@
CVE-2009-0017 (csregprinter in the Printing component in Apple Mac OS X 10.4.11 and ...)
NOT-FOR-US: Apple Mac OS X
CVE-2009-0016 (Apple iTunes before 8.1 on Windows allows remote attackers to cause a ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2009-0015 (Unspecified vulnerability in fseventsd in the FSEvents framework in ...)
NOT-FOR-US: Apple Mac OS X
CVE-2009-0014 (Folder Manager in Apple Mac OS X 10.5.6 uses insecure default ...)
@@ -6830,7 +6830,7 @@
CVE-2008-4565
RESERVED
CVE-2008-4564 (Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK ...)
- TODO: check
+ NOT-FOR-US: Autonomy KeyView SDK
CVE-2008-4563 (Heap-based buffer overflow in adsmdll.dll 5.3.7.7296, as used by the ...)
NOT-FOR-US: IBM Tivoli Storage Manager
CVE-2008-4562 (Buffer overflow in the ovlaunch CGI program in HP OpenView Network ...)
@@ -21104,9 +21104,9 @@
CVE-2007-5544 (IBM Lotus Notes before 6.5.6, and 7.x before 7.0.3; and Domino before ...)
NOT-FOR-US: IBM Lotus Notes
CVE-2007-5543 (Stack-based buffer overflow in Miranda IM 0.6.8 and 0.7.0 allows ...)
- TODO: check
+ NOT-FOR-US: Miranda
CVE-2007-5542 (Stack-based buffer overflow in Miranda IM 0.6.8 allows remote ...)
- TODO: check
+ NOT-FOR-US: Miranda
CVE-2003-1400 (Cross-site scripting (XSS) vulnerability in the Your_Account module ...)
NOT-FOR-US: PhpNuke
CVE-2003-1399 (eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, ...)
More information about the Secure-testing-commits
mailing list