[Secure-testing-commits] r19919 - data/CVE

Thu Aug 9 20:16:52 UTC 2012

Author: federico-guest
Date: 2012-08-09 20:16:52 +0000 (Thu, 09 Aug 2012)
New Revision: 19919

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2012-08-09 15:15:15 UTC (rev 19918)
+++ data/CVE/list	2012-08-09 20:16:52 UTC (rev 19919)
@@ -2695,7 +2695,7 @@
 CVE-2012-2961 (SQL injection vulnerability in the management console in Symantec Web ...)
 	NOT-FOR-US: Symantec Web Gateway
 CVE-2012-2960 (Cross-site scripting (XSS) vulnerability in the import functionality ...)
-	TODO: check
+	NOT-FOR-US: HP ArcSight Connector, ArcSight Logger
 CVE-2012-2959 (Cross-site request forgery (CSRF) vulnerability in ...)
 	NOT-FOR-US: BMC
 CVE-2012-2958
@@ -3472,7 +3472,7 @@
 CVE-2012-2649
 	RESERVED
 CVE-2012-2648 (Cross-site scripting (XSS) vulnerability in the GoodReader app 3.16 ...)
-	TODO: check
+	NOT-FOR-US: GoodReader
 CVE-2012-2647 (Yahoo! Toolbar 1.0.0.5 and earlier for Chrome and Safari allows remote ...)
 	NOT-FOR-US: Yahoo! Toolbar
 CVE-2012-2646 (The Sleipnir Mobile application before 2.1.0 and Sleipnir Mobile Black ...)
@@ -4635,7 +4635,7 @@
 CVE-2012-2204
 	RESERVED
 CVE-2012-2203 (IBM Global Security Kit (aka GSKit) before 8.0.14.22, as used in IBM ...)
-	TODO: check
+	NOT-FOR-US: IBM Global Security Kit
 CVE-2012-2202 (Directory traversal vulnerability in javatester_init.php in IBM Lotus ...)
 	NOT-FOR-US: IBM Lotus Protector, IBM ISS Proventia Network Mail Security System
 CVE-2012-2201
@@ -4659,7 +4659,7 @@
 CVE-2012-2192 (The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS ...)
 	NOT-FOR-US: AIX
 CVE-2012-2191 (IBM Global Security Kit (aka GSKit) before 8.0.14.22, as used in IBM ...)
-	TODO: check
+	NOT-FOR-US: IBM Global Security Kit
 CVE-2012-2190
 	RESERVED
 CVE-2012-2189
@@ -5130,7 +5130,7 @@
 CVE-2012-2023 (Adobe Illustrator before CS6 allows attackers to execute arbitrary ...)
 	NOT-FOR-US: Adobe Illustrator
 CVE-2012-2022 (Multiple cross-site scripting (XSS) vulnerabilities in HP Network Node ...)
-	TODO: check
+	NOT-FOR-US: HP Network Node Manager
 CVE-2012-2021 (Multiple cross-site scripting (XSS) vulnerabilities in HP AssetManager ...)
 	NOT-FOR-US: HP AssetManager
 CVE-2012-2020 (Unspecified vulnerability in HP Operations Agent before 11.03.12 ...)
@@ -6688,7 +6688,7 @@
 CVE-2012-1358
 	RESERVED
 CVE-2012-1357 (The igmp_snoop_orib_fill_source_update function in the IGMP process in ...)
-	TODO: check
+	NOT-FOR-US: NX-OS
 CVE-2012-1356
 	RESERVED
 CVE-2012-1355
@@ -6702,31 +6702,31 @@
 CVE-2012-1351
 	RESERVED
 CVE-2012-1350 (Cisco IOS 12.3 and 12.4 on Aironet access points allows remote ...)
-	TODO: check
+	NOT-FOR-US: Cisco IOS
 CVE-2012-1349
 	RESERVED
 CVE-2012-1348 (Cisco Wide Area Application Services (WAAS) appliances with software ...)
-	TODO: check
+	NOT-FOR-US: Cisco Wide Area Application Services
 CVE-2012-1347
 	RESERVED
 CVE-2012-1346 (Cisco Emergency Responder 8.6 and 9.2 allows remote attackers to cause ...)
-	TODO: check
+	NOT-FOR-US: Cisco Emergency Responder
 CVE-2012-1345
 	RESERVED
 CVE-2012-1344 (Cisco IOS 15.1 and 15.2, when a clientless SSL VPN is configured, ...)
-	TODO: check
+	NOT-FOR-US: Cisco IOS
 CVE-2012-1343
 	RESERVED
 CVE-2012-1342 (Cisco Carrier Routing System (CRS) 3.9, 4.0, and 4.1 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Cisco Carrier Routing System
 CVE-2012-1341
 	RESERVED
 CVE-2012-1340 (The Fibre Channel over IP (FCIP) implementation in Cisco MDS NX-OS 4.2 ...)
-	TODO: check
+	NOT-FOR-US: Cisco MDS NX-OS
 CVE-2012-1339 (The Fabric Interconnect component in Cisco Unified Computing System ...)
-	TODO: check
+	NOT-FOR-US: Cisco Unified Computing System
 CVE-2012-1338 (Cisco IOS 15.0 and 15.1 on Catalyst 3560 and 3750 series switches ...)
-	TODO: check
+	NOT-FOR-US: Cisco IOS
 CVE-2012-1337 (Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 L ...)
 	NOT-FOR-US: Cisco WebEx
 CVE-2012-1336 (Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 L ...)


