[Secure-testing-commits] r18835 - data/CVE
Federico Ceratto
federico-guest at alioth.debian.org
Thu Apr 5 09:48:07 UTC 2012
Author: federico-guest
Date: 2012-04-05 09:48:06 +0000 (Thu, 05 Apr 2012)
New Revision: 18835
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-04-05 06:56:59 UTC (rev 18834)
+++ data/CVE/list 2012-04-05 09:48:06 UTC (rev 18835)
@@ -4654,9 +4654,9 @@
CVE-2012-0259
RESERVED
CVE-2012-0258 (Heap-based buffer overflow in the WWCabFile ActiveX component in the ...)
- TODO: check
+ NOT-FOR-US: Invensys Wonderware Application Server
CVE-2012-0257 (Heap-based buffer overflow in the WWCabFile ActiveX component in the ...)
- TODO: check
+ NOT-FOR-US: Invensys Wonderware Application Server
CVE-2012-0256 (Apache Traffic Server 2.0.x and 3.0.x before 3.0.4 and 3.1.x before ...)
- trafficserver 3.0.4-1
CVE-2012-0255
@@ -4685,7 +4685,7 @@
{DSA-2427-1}
- imagemagick 8:6.6.9.7-6 (bug #659339)
CVE-2012-0246 (Directory traversal vulnerability in an unspecified ActiveX control in ...)
- TODO: check
+ NOT-FOR-US: Ecava IntegraXor
CVE-2012-0245 (Multiple stack-based buffer overflows in RobNetScanHost.exe in ABB ...)
NOT-FOR-US: ABB Robot Communications Runtime
CVE-2012-0244 (Multiple SQL injection vulnerabilities in Advantech/BroadWin WebAccess ...)
@@ -4721,21 +4721,21 @@
CVE-2012-0229 (The Data Archiver service in GE Intelligent Platforms Proficy ...)
NOT-FOR-US: GE Intelligent Platforms Proficy Historian
CVE-2012-0228 (Invensys Wonderware Information Server 4.0 SP1 and 4.5 does not ...)
- TODO: check
+ NOT-FOR-US: Invensys Wonderware Information Server
CVE-2012-0227
RESERVED
CVE-2012-0226 (SQL injection vulnerability in Invensys Wonderware Information Server ...)
- TODO: check
+ NOT-FOR-US: Invensys Wonderware Information Server
CVE-2012-0225 (Cross-site scripting (XSS) vulnerability in Invensys Wonderware ...)
- TODO: check
+ NOT-FOR-US: Invensys Wonderware Information Server
CVE-2012-0224 (Untrusted search path vulnerability in 7-Technologies (7T) AQUIS 1.5 ...)
NOT-FOR-US: 7-Technologies (7T) AQUIS
CVE-2012-0223 (Untrusted search path vulnerability in 7-Technologies (7T) TERMIS 2.10 ...)
NOT-FOR-US: TERMIS
CVE-2012-0222 (The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation ...)
- TODO: check
+ NOT-FOR-US: Rockwell Automation Allen-Bradley FactoryTalk
CVE-2012-0221 (The FactoryTalk (FT) RNADiagReceiver service in Rockwell Automation ...)
- TODO: check
+ NOT-FOR-US: Rockwell Automation Allen-Bradley FactoryTalk
CVE-2011-4897 (Tor before 0.2.2.25-alpha, when configured as a relay without the ...)
- tor 0.2.2.27-beta-1 (unimportant)
CVE-2011-4896 (Tor before 0.2.2.24-alpha continues to use a reachable bridge that was ...)
@@ -5180,7 +5180,7 @@
CVE-2012-0132
RESERVED
CVE-2012-0131 (Distributed Computing Environment (DCE) 1.8 and 1.9 on HP HP-UX ...)
- TODO: check
+ NOT-FOR-US: HP HP-UX
CVE-2012-0130
RESERVED
CVE-2012-0129
@@ -5188,7 +5188,7 @@
CVE-2012-0128
RESERVED
CVE-2012-0127 (Unspecified vulnerability in HP Performance Manager 9.00 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP Performance Manager
CVE-2012-0126 (Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.11 ...)
NOT-FOR-US: HP HP-UX
CVE-2012-0125 (Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.31 ...)
@@ -6216,7 +6216,7 @@
CVE-2011-4536 (Heap-based buffer overflow in nettransdll.dll in HistorySvr.exe (aka ...)
NOT-FOR-US: WellinTech KingView
CVE-2011-4535 (Buffer overflow in TurboPower Abbrevia before 4.0, as used in ScadaTEC ...)
- TODO: check
+ NOT-FOR-US: TurboPower Abbrevia
CVE-2011-4534 (ZenSysSrv.exe in Ing. Punzenberger COPA-DATA zenon 6.51 SP0 allows ...)
NOT-FOR-US: COPA-DATA
CVE-2011-4533 (zenAdminSrv.exe in Ing. Punzenberger COPA-DATA zenon 6.51 SP0 allows ...)
@@ -7698,13 +7698,13 @@
CVE-2011-4046 (The Dell KACE K2000 System Deployment Appliance stores the recovery ...)
NOT-FOR-US: Dell appliance
CVE-2011-4045 (Buffer overflow in an unspecified ActiveX control in aipgctl.ocx in ...)
- TODO: check
+ NOT-FOR-US: ARC Informatique
CVE-2011-4044 (An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique ...)
- TODO: check
+ NOT-FOR-US: ARC Informatique
CVE-2011-4043 (Integer overflow in an unspecified ActiveX control in SVUIGrd.ocx in ...)
- TODO: check
+ NOT-FOR-US: ARC Informatique
CVE-2011-4042 (An unspecified ActiveX control in SVUIGrd.ocx in ARC Informatique ...)
- TODO: check
+ NOT-FOR-US: ARC Informatique
CVE-2011-4041 (webvrpcs.exe in Advantech/BroadWin WebAccess allows remote attackers ...)
NOT-FOR-US: Advantech WebAccess
CVE-2011-4040 (Buffer overflow in MiniSmtp 3.0.11818 in NJStar Communicator allows ...)
More information about the Secure-testing-commits
mailing list