[Secure-testing-commits] r20608 - data/CVE
Federico Ceratto
federico-guest at alioth.debian.org
Tue Dec 4 22:54:28 UTC 2012
Author: federico-guest
Date: 2012-12-04 22:54:28 +0000 (Tue, 04 Dec 2012)
New Revision: 20608
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-12-04 21:14:18 UTC (rev 20607)
+++ data/CVE/list 2012-12-04 22:54:28 UTC (rev 20608)
@@ -241,29 +241,29 @@
CVE-2012-6050 (The winbox service in MikroTik RouterOS 5.15 and earlier allows remote ...)
NOT-FOR-US: MikroTik RouterOS
CVE-2012-6049 (Open Solution Quick.Cart 5.0 allows remote attackers to obtain ...)
- TODO: check
+ NOT-FOR-US: Open Solution Quick.Cart 5.0
CVE-2012-6048 (Guitar Pro 6.1.1 r10791 allows remote attackers to cause a denial of ...)
- TODO: check
+ NOT-FOR-US: Guitar Pro 6.1.1
CVE-2012-6047 (Cross-site request forgery (CSRF) vulnerability in X7 Chat 2.0.5.1 and ...)
- TODO: check
+ NOT-FOR-US: X7 Chat 2.0.5.1
CVE-2012-6046 (Static code injection vulnerability in admin/banners.php in PHP Enter ...)
TODO: check
CVE-2012-6045 (Cross-site scripting (XSS) vulnerability in gb/user/index.php in Ramui ...)
- TODO: check
+ NOT-FOR-US: Ramui Forum
CVE-2012-6044 (M-Player 0.4 allows remote attackers to cause a denial of service ...)
TODO: check
CVE-2012-6043 (Cross-site scripting (XSS) vulnerability in downloads.php in ...)
TODO: check
CVE-2012-6042 (GPSMapEdit 1.1.73.2 allows user-assisted remote attackers to cause a ...)
- TODO: check
+ NOT-FOR-US: GPSMapEdit
CVE-2012-6041 (Double free vulnerability in GreenBrowser before 6.0.1002, when the ...)
- TODO: check
+ NOT-FOR-US: GreenBrowser
CVE-2012-6040 (Cross-site scripting (XSS) vulnerability in users.php in File King ...)
- TODO: check
+ NOT-FOR-US: File King Advanced File Management 1.4
CVE-2012-6039 (SQL injection vulnerability in view_comments.php in YABSoft Advanced ...)
- TODO: check
+ NOT-FOR-US: YABSoft Advanced Image Hosting
CVE-2012-6038 (admin/core/admin_func.php in razorCMS before 1.2.1 does not properly ...)
- TODO: check
+ NOT-FOR-US: razorCMS
CVE-2010-5286 (Directory traversal vulnerability in Jstore (com_jstore) component for ...)
TODO: check
CVE-2010-5285 (Cross-site request forgery (CSRF) vulnerability in admin.php in ...)
@@ -271,11 +271,11 @@
CVE-2010-5284 (Multiple cross-site scripting (XSS) vulnerabilities in Collabtive ...)
TODO: check
CVE-2010-5283 (Cross-site request forgery (CSRF) vulnerability in OpenText ECM ...)
- TODO: check
+ NOT-FOR-US: OpenText ECM
CVE-2010-5282 (Multiple cross-site scripting (XSS) vulnerabilities in OpenText ECM ...)
- TODO: check
+ NOT-FOR-US: OpenText ECM
CVE-2010-5281 (Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 ...)
- TODO: check
+ NOT-FOR-US: CMScout IBrowser TinyMCE Plugin
CVE-2010-5280 (Directory traversal vulnerability in the Community Builder Enhanced ...)
TODO: check
CVE-2012-6037 (Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x ...)
@@ -667,9 +667,9 @@
CVE-2012-XXXX [xscreensaver lock bypass]
- libpam-rsa <unfixed> (high; bug #693087)
CVE-2012-5859 (Samsung Kies Air 2.1.207051 and 2.1.210161 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Samsung Kies Air
CVE-2012-5858 (Samsung Kies Air 2.1.207051 and 2.1.210161 relies on the IP address ...)
- TODO: check
+ NOT-FOR-US: Samsung Kies Air
CVE-2012-5857
RESERVED
CVE-2012-5856 (Cross-site scripting (XSS) vulnerability in the Uk Cookie (aka ...)
@@ -3174,7 +3174,7 @@
CVE-2012-4835
RESERVED
CVE-2012-4834 (Directory traversal vulnerability in LayerLoader.jsp in the theme ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2012-4833 (fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not ...)
NOT-FOR-US: AIX
CVE-2012-4832
@@ -4046,9 +4046,9 @@
CVE-2012-4603
RESERVED
CVE-2012-4602 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: Nicola Asuni TCExam
CVE-2012-4601 (Multiple SQL injection vulnerabilities in Nicola Asuni TCExam before ...)
- TODO: check
+ NOT-FOR-US: Nicola Asuni TCExam
CVE-2012-4600 (Cross-site scripting (XSS) vulnerability in Open Ticket Request System ...)
- otrs2 3.1.7+dfsg1-5
CVE-2011-5102 (The Investigative Reports web interface in the TRITON management ...)
More information about the Secure-testing-commits
mailing list