[Secure-testing-commits] r16465 - data/CVE

[Federico Ceratto]

Author: federico-guest
Date: 2011-03-31 21:33:51 +0000 (Thu, 31 Mar 2011)
New Revision: 16465

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-03-31 21:15:47 UTC (rev 16464)
+++ data/CVE/list	2011-03-31 21:33:51 UTC (rev 16465)
@@ -114,19 +114,19 @@
 CVE-2011-1507
 	RESERVED
 CVE-2010-4776 (SQL injection vulnerability in takefreestart.php in PreProjects Pre ...)
-	TODO: check
+	NOT-FOR-US: PreProjects Pre Online Tests Generator Pro
 CVE-2010-4775 (The Relevant Content module 5.x before 5.x-1.4 and 6.x before 6.x-1.5 ...)
 	TODO: check
 CVE-2010-4774 (SQL injection vulnerability in pdf.php in AuraCMS 1.62 allows remote ...)
-	TODO: check
+	NOT-FOR-US: AuraCMS
 CVE-2010-4773 (Unspecified vulnerability in Hitachi EUR Form Client before 05-10 -/D ...)
-	TODO: check
+	NOT-FOR-US: Hitachi EUR Form, uCosminexus EUR Form Service
 CVE-2010-4772 (Cross-site scripting (XSS) vulnerability in blocks/lang.php in S-CMS ...)
 	TODO: check
 CVE-2010-4771 (SQL injection vulnerability to viewforum.php in S-CMS 2.5 allows ...)
 	TODO: check
 CVE-2010-4770 (SQL injection vulnerability in index.php in CommodityRentals DVD ...)
-	TODO: check
+	NOT-FOR-US: CommodityRentals DVD Rentals Script
 CVE-2010-4769 (Directory traversal vulnerability in the Jimtawl (com_jimtawl) ...)
 	TODO: check
 CVE-2011-1506 (The STARTTLS implementation in Kerio Connect 7.1.4 build 2985 and ...)
@@ -200,7 +200,7 @@
 CVE-2011-1473
 	RESERVED
 CVE-2011-1472 (The Nokia E75 phone with firmware before 211.12.01 allows physically ...)
-	TODO: check
+	NOT-FOR-US: Nokia E75 phone
 CVE-2009-5062 (IBM Lotus Quickr 8.1 before 8.1.0.15 services for Lotus Domino on AIX ...)
 	NOT-FOR-US: IBM Lotus Quickr
 CVE-2009-5061 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.14 ...)
@@ -214,7 +214,7 @@
 CVE-2008-7286 (IBM Lotus Quickr 8.1 before 8.1.0.2 services for Lotus Domino does not ...)
 	NOT-FOR-US: IBM Lotus Quickr
 CVE-2008-7285 (Unspecified vulnerability in the docnote string handling ...)
-	TODO: check
+	NOT-FOR-US: IBM Lotus Quickr
 CVE-2008-7284 (IBM Lotus Quickr 8.1 before 8100.003 services for Lotus Domino allows ...)
 	NOT-FOR-US: IBM Lotus Quickr
 CVE-2011-1471 (Integer signedness error in zip_stream.c in the Zip extension in PHP ...)
@@ -374,7 +374,7 @@
 CVE-2011-1421
 	RESERVED
 CVE-2011-1420 (EMC Data Protection Advisor Collector 5.7 and 5.7.1 on Solaris SPARC ...)
-	TODO: check
+	NOT-FOR-US: EMC Data Protection Advisor Collector
 CVE-2011-1419 (Apache Tomcat 7.x before 7.0.11, when web.xml has no security ...)
 	- tomcat6 <not-affected> (Only affects Tomcat 7)
 CVE-2011-1418 (The stateless address autoconfiguration (aka SLAAC) functionality in ...)
@@ -832,7 +832,7 @@
 CVE-2011-1206
 	RESERVED
 CVE-2011-1205 (Multiple buffer overflows in unspecified COM objects in Rational ...)
-	TODO: check
+	NOT-FOR-US: IBM Rational ClearCase, ClearQuest
 CVE-2011-1204 (Google Chrome before 10.0.648.127 does not properly handle attributes, ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <no-dsa> (hard merge)
@@ -1893,9 +1893,9 @@
 CVE-2011-0891
 	RESERVED
 CVE-2011-0890 (HP Discovery &amp; Dependency Mapping Inventory (DDMI) 7.50, 7.51, 7.60, ...)
-	TODO: check
+	NOT-FOR-US: HP Discovery & Dependency Mapping Inventory
 CVE-2011-0889 (Unspecified vulnerability in HP Client Automation Enterprise (aka HPCA ...)
-	TODO: check
+	NOT-FOR-US: HP Client Automation Enterprise
 CVE-2011-0888
 	RESERVED
 CVE-2011-0887 (The web management portal on the SMC SMCD3G-CCR (aka Comcast Business ...)
@@ -3058,7 +3058,7 @@
 CVE-2011-0459
 	RESERVED
 CVE-2011-0458 (Untrusted search path vulnerability in the Locate on Disk feature in ...)
-	TODO: check
+	NOT-FOR-US: Google Picasa
 CVE-2011-0457 (Cross-site scripting (XSS) vulnerability in e107 0.7.22 and earlier ...)
 	TODO: check
 CVE-2011-0456 (Open Ticket Request System (OTRS) 2.3.4 and earlier allows remote ...)