[Secure-testing-commits] r20662 - data/CVE

Federico Ceratto federico-guest at alioth.debian.org
Fri Dec 14 10:03:50 UTC 2012 

Author: federico-guest
Date: 2012-12-14 10:03:50 +0000 (Fri, 14 Dec 2012)
New Revision: 20662

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-12-13 21:14:20 UTC (rev 20661)
+++ data/CVE/list	2012-12-14 10:03:50 UTC (rev 20662)
@@ -1688,7 +1688,7 @@
 CVE-2012-5974
 	RESERVED
 CVE-2012-5973 (CA XCOM Data Transport r11.0 and r11.5 on UNIX and Linux allows remote ...)
-	TODO: check
+	NOT-FOR-US: CA XCOM Data Transport
 CVE-2012-5972
 	RESERVED
 CVE-2012-5971
@@ -1702,7 +1702,7 @@
 CVE-2012-5967
 	RESERVED
 CVE-2012-5966 (The restricted telnet shell on the D-Link DSL2730U router allows ...)
-	TODO: check
+	NOT-FOR-US: D-Link DSL2730U router
 CVE-2012-5965
 	RESERVED
 CVE-2012-5964
@@ -1722,7 +1722,7 @@
 CVE-2012-5957
 	RESERVED
 CVE-2012-5956 (Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine ...)
-	TODO: check
+	NOT-FOR-US: ManageEngine AssetExplorer 5.6
 CVE-2012-5955
 	RESERVED
 CVE-2012-5954
@@ -2366,9 +2366,9 @@
 CVE-2012-5681
 	RESERVED
 CVE-2012-5680 (Buffer overflow in Adobe Photoshop Camera Raw before 7.3 allows ...)
-	TODO: check
+	NOT-FOR-US: Adobe Photoshop Camera Raw
 CVE-2012-5679 (Buffer underflow in Adobe Photoshop Camera Raw before 7.3 allows ...)
-	TODO: check
+	NOT-FOR-US: Adobe Photoshop Camera Raw
 CVE-2012-5678 (Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on ...)
 	NOT-FOR-US: Adobe Flash
 CVE-2012-5677 (Integer overflow in Adobe Flash Player before 10.3.183.48 and 11.x ...)
@@ -2376,7 +2376,7 @@
 CVE-2012-5676 (Buffer overflow in Adobe Flash Player before 10.3.183.48 and 11.x ...)
 	NOT-FOR-US: Adobe Flash
 CVE-2012-5675 (Adobe ColdFusion 9.0 through 9.0.2, and 10, allows local users to ...)
-	TODO: check
+	NOT-FOR-US: Adobe ColdFusion
 CVE-2012-5674 (Unspecified vulnerability in Adobe ColdFusion 10 before Update 5, when ...)
 	NOT-FOR-US: Adobe ColdFusion
 CVE-2012-5673 (Unspecified vulnerability in Adobe Flash Player before 10.3.183.29 and ...)
@@ -4061,7 +4061,7 @@
 CVE-2012-4992 (Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote ...)
 	NOT-FOR-US: FlashFXP
 CVE-2012-4991 (Multiple directory traversal vulnerabilities in Axway SecureTransport ...)
-	TODO: check
+	NOT-FOR-US: Axway SecureTransport
 CVE-2012-4990 (SQL injection vulnerability in admin/campaign-zone-link.php in OpenX ...)
 	NOT-FOR-US: OpenX
 CVE-2012-4989 (Cross-site scripting (XSS) vulnerability in admin/plugin-index.php in ...)
@@ -4089,19 +4089,19 @@
 CVE-2012-4978
 	RESERVED
 CVE-2012-4977 (Layton Helpbox 4.4.0 allows remote attackers to discover cleartext ...)
-	TODO: check
+	NOT-FOR-US: Layton Helpbox
 CVE-2012-4976 (selectawasset.asp in Layton Helpbox 4.4.0 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Layton Helpbox
 CVE-2012-4975 (editrequestuser.asp in Layton Helpbox 4.4.0 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Layton Helpbox
 CVE-2012-4974 (Layton Helpbox 4.4.0 allows remote authenticated users to change the ...)
-	TODO: check
+	NOT-FOR-US: Layton Helpbox
 CVE-2012-4973
 	RESERVED
 CVE-2012-4972 (Multiple cross-site scripting (XSS) vulnerabilities in Layton Helpbox ...)
-	TODO: check
+	NOT-FOR-US: Layton Helpbox
 CVE-2012-4971 (Multiple SQL injection vulnerabilities in Layton Helpbox 4.4.0 allow ...)
-	TODO: check
+	NOT-FOR-US: Layton Helpbox
 CVE-2012-4970
 	RESERVED
 CVE-2011-5190 (Multiple cross-site scripting (XSS) vulnerabilities in Social Book ...)
@@ -4544,7 +4544,7 @@
 CVE-2012-4792
 	RESERVED
 CVE-2012-4791 (Microsoft Exchange Server 2007 SP3 and 2010 SP1 and SP2 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Exchange Server
 CVE-2012-4790
 	RESERVED
 CVE-2012-4789
@@ -4552,9 +4552,9 @@
 CVE-2012-4788
 	RESERVED
 CVE-2012-4787 (Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2012-4786 (The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2012-4785
 	RESERVED
 CVE-2012-4784
@@ -4562,9 +4562,9 @@
 CVE-2012-4783
 	RESERVED
 CVE-2012-4782 (Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2012-4781 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2012-4780
 	RESERVED
 CVE-2012-4779
@@ -4578,7 +4578,7 @@
 CVE-2012-4775 (Use-after-free vulnerability in Microsoft Internet Explorer 9 allows ...)
 	NOT-FOR-US: Internet Explorer
 CVE-2012-4774 (Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2012-4773 (Multiple cross-site request forgery (CSRF) vulnerabilities in Subrion ...)
 	NOT-FOR-US: Subrion CMS
 CVE-2012-4772 (SQL injection vulnerability in register/ in Subrion CMS before 2.2.3 ...)
@@ -6075,7 +6075,7 @@
 CVE-2012-4350
 	RESERVED
 CVE-2012-4349 (Unspecified vulnerability in Symantec Network Access Control allows ...)
-	TODO: check
+	NOT-FOR-US: Symantec Network Access Control
 CVE-2012-4348
 	RESERVED
 CVE-2012-4347 (Multiple directory traversal vulnerabilities in Symantec Messaging ...)
@@ -8798,9 +8798,9 @@
 CVE-2012-3278
 	RESERVED
 CVE-2012-3277 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, ...)
-	TODO: check
+	NOT-FOR-US: HP OpenVMS
 CVE-2012-3276 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, ...)
-	TODO: check
+	NOT-FOR-US: HP OpenVMS
 CVE-2012-3275 (Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.1x and ...)
 	NOT-FOR-US: HP Network Node Manager
 CVE-2012-3274 (Stack-based buffer overflow in uam.exe in the User Access Manager ...)
@@ -10467,7 +10467,7 @@
 CVE-2012-2557 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through ...)
 	NOT-FOR-US: Internet Explorer
 CVE-2012-2556 (The OpenType Font (OTF) driver in the kernel-mode drivers in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2012-2555
 	RESERVED
 CVE-2012-2554
@@ -10481,7 +10481,7 @@
 CVE-2012-2550 (Microsoft Works 9 allows remote attackers to execute arbitrary code or ...)
 	NOT-FOR-US: Microsoft Works
 CVE-2012-2549 (The IP-HTTPS server in Windows Server 2008 R2 and R2 SP1 and Server ...)
-	TODO: check
+	NOT-FOR-US: Windows Server
 CVE-2012-2548 (Use-after-free vulnerability in Microsoft Internet Explorer 9 allows ...)
 	NOT-FOR-US: Internet Explorer
 CVE-2012-2547
@@ -10501,7 +10501,7 @@
 CVE-2012-2540
 	RESERVED
 CVE-2012-2539 (Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office
 CVE-2012-2538
 	RESERVED
 CVE-2012-2537
@@ -13041,7 +13041,7 @@
 CVE-2012-1538 (Use-after-free vulnerability in Microsoft Internet Explorer 9 allows ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2012-1537 (Heap-based buffer overflow in DirectPlay in DirectX 9.0 through 11.1 ...)
-	TODO: check
+	NOT-FOR-US: DirectX 9.0 in Microsoft Windows
 CVE-2012-1536
 	RESERVED
 CVE-2012-1535 (Unspecified vulnerability in Adobe Flash Player before 11.3.300.271 on ...)

More information about the Secure-testing-commits mailing list