[Secure-testing-commits] r12832 - data/CVE

Thu Sep 17 05:59:09 UTC 2009

Author: derevko-guest
Date: 2009-09-17 05:59:09 +0000 (Thu, 17 Sep 2009)
New Revision: 12832

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2009-09-16 21:14:19 UTC (rev 12831)
+++ data/CVE/list	2009-09-17 05:59:09 UTC (rev 12832)
@@ -1,39 +1,39 @@
 CVE-2009-3201 (Integer overflow in Media Player Classic 6.4.9 allows user-assisted ...)
-	TODO: check
+	NOT-FOR-US: Media Player Classic
 CVE-2009-3200
 	RESERVED
 CVE-2009-3199 (Uebimiau Webmail 3.2.0-2.0 stores sensitive information under the web ...)
-	TODO: check
+	NOT-FOR-US: Uebimiau Webmail
 CVE-2009-3198 (Cross-site scripting (XSS) vulnerability in search.php in JCE-Tech ...)
-	TODO: check
+	NOT-FOR-US: Affiliate Master
 CVE-2009-3197 (Cross-site scripting (XSS) vulnerability in search.php in JCE-Tech PHP ...)
-	TODO: check
+	NOT-FOR-US: JCE-Tech PHP Calendars
 CVE-2009-3196 (Cross-site scripting (XSS) vulnerability in index.php in JCE-Tech PHP ...)
-	TODO: check
+	NOT-FOR-US: JCE-Tech PHP Video Script
 CVE-2009-3195 (Multiple cross-site scripting (XSS) vulnerabilities in JCE-Tech ...)
-	TODO: check
+	NOT-FOR-US: JCE-Tech Auction RSS Content Script
 CVE-2009-3194 (Cross-site scripting (XSS) vulnerability in index.php in JCE-Tech ...)
-	TODO: check
+	NOT-FOR-US: JCE-Tech SearchFeed Script 
 CVE-2009-3193 (SQL injection vulnerability in the DigiFolio (com_digifolio) component ...)
-	TODO: check
+	NOT-FOR-US: component for Joomla!
 CVE-2009-3192 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...)
-	TODO: check
+	NOT-FOR-US: LinkorCMS
 CVE-2009-3191 (Multiple cross-site scripting (XSS) vulnerabilities in PAD Site ...)
-	TODO: check
+	NOT-FOR-US: PAD Site Scripts 
 CVE-2009-3190 (Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow ...)
-	TODO: check
+	NOT-FOR-US: PAD Site Scripts
 CVE-2009-3189 (Cross-site scripting (XSS) vulnerability in search.php in DigiOz ...)
-	TODO: check
+	NOT-FOR-US: DigiOz Guestbook
 CVE-2009-3188 (PHP remote file inclusion vulnerability in save.php in phpSANE 0.5.0 ...)
-	TODO: check
+	NOT-FOR-US: phpSANE
 CVE-2009-3187 (Cross-site scripting (XSS) vulnerability in gamelist.php in Stand ...)
-	TODO: check
+	NOT-FOR-US: Stand Alone Arcade 
 CVE-2009-3186 (Multiple cross-site scripting (XSS) vulnerabilities in VideoGirls BiZ ...)
-	TODO: check
+	NOT-FOR-US: VideoGirls BiZ
 CVE-2009-3185 (SQL injection vulnerability in plugin.php in the Crazy Star plugin 2.0 ...)
-	TODO: check
+	NOT-FOR-US: Crazy Star plugin 2.0 for Discuz!
 CVE-2009-3184 (Multiple SQL injection vulnerabilities in index.php in Pirates of The ...)
-	TODO: check
+	NOT-FOR-US: Pirates of The Caribbean
 CVE-2008-XXXX [changetrack command injection]
 	- changetrack <unfixed> (medium; bug #546791)
 	NOTE: CVE id requested
@@ -3426,7 +3426,7 @@
 CVE-2009-2202 (Apple QuickTime before 7.6.4 allows remote attackers to execute ...)
 	NOT-FOR-US: Apple QuickTime
 CVE-2009-2201 (The screensharing feature in the Admin application in Apple Xsan ...)
-	TODO: check
+	NOT-FOR-US: Admin application in Apple Xsan
 CVE-2009-2200 (WebKit in Apple Safari before 4.0.3 does not properly restrict the URL ...)
 	TODO: check
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=517273


