[Secure-testing-commits] r18036 - data/CVE

Florian Weimer fw at alioth.debian.org
Wed Jan 4 21:32:59 UTC 2012 

Author: fw
Date: 2012-01-04 21:32:59 +0000 (Wed, 04 Jan 2012)
New Revision: 18036

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-01-04 21:25:19 UTC (rev 18035)
+++ data/CVE/list	2012-01-04 21:32:59 UTC (rev 18036)
@@ -3253,7 +3253,7 @@
 CVE-2011-4051 (CEServer.exe in the CEServer component in the Remote Agent module in ...)
 	NOT-FOR-US: InduSoft Web Studio
 CVE-2011-4050 (Buffer overflow in 7-Technologies (7T) Interactive Graphical SCADA ...)
-	TODO: check
+	NOT-FOR-US: Interactive Graphical SCADA System
 CVE-2011-4049
 	RESERVED
 CVE-2011-4048 (The Dell KACE K2000 System Deployment Appliance has a default username ...)
@@ -3279,7 +3279,7 @@
 CVE-2011-4038
 	RESERVED
 CVE-2011-4037 (Buffer overflow in Sielco Sistemi Winlog PRO before 2.07.09 and Winlog ...)
-	TODO: check
+	NOT-FOR-US: Sielco Sistemi Winlog PRO
 CVE-2011-4036 (Directory traversal vulnerability in Schneider Electric Vijeo ...)
 	NOT-FOR-US: Schneider Electric Vijeo
 CVE-2011-4035 (Cross-site scripting (XSS) vulnerability in Schneider Electric Vijeo ...)
@@ -3585,7 +3585,7 @@
 CVE-2011-3991 (Untrusted search path vulnerability in FFFTP 1.98a and earlier allows ...)
 	NOT-FOR-US: FFFTP
 CVE-2011-3990 (Cross-site scripting (XSS) vulnerability in plugin/comment.inc.php in ...)
-	TODO: check
+	NOT-FOR-US: PukiWiki
 CVE-2011-3989 (SQL injection vulnerability in DBD::mysqlPP 0.04 and earlier allows ...)
 	NOT-FOR-US: DBD::mysqlPP Perl module
 CVE-2011-3988 (SQL injection vulnerability in data/class/SC_Query.php in EC-CUBE ...)
@@ -4026,7 +4026,7 @@
 CVE-2011-3850 (Cross-site scripting (XSS) vulnerability in the Atahualpa theme before ...)
 	NOT-FOR-US: Wordpress theme
 CVE-2011-3849 (Unspecified vulnerability in dxserver before 6279 in CA Directory 8.1 ...)
-	TODO: check
+	NOT-FOR-US: CA Directory
 CVE-2011-3848 (Directory traversal vulnerability in Puppet 2.6.x before 2.6.10 and ...)
 	{DSA-2314-1}
 	- puppet 2.7.3-2
@@ -4043,19 +4043,19 @@
 CVE-2011-3842
 	RESERVED
 CVE-2011-3841 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Wordpress plugin
 CVE-2011-3840
 	RESERVED
 CVE-2011-3839 (The administration functionality in Wuzly 2.0 allows remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Wuzly
 CVE-2011-3838 (Multiple SQL injection vulnerabilities in Wuzly 2.0 allow remote ...)
-	TODO: check
+	NOT-FOR-US: Wuzly
 CVE-2011-3837 (Directory traversal vulnerability in blog_system/data_functions.php in ...)
-	TODO: check
+	NOT-FOR-US: Wuzly
 CVE-2011-3836 (Multiple cross-site request forgery (CSRF) vulnerabilities in Wuzly ...)
-	TODO: check
+	NOT-FOR-US: Wuzly
 CVE-2011-3835 (Multiple cross-site scripting (XSS) vulnerabilities in Wuzly 2.0 allow ...)
-	TODO: check
+	NOT-FOR-US: Wuzly
 CVE-2011-3834 (Multiple integer overflows in the in_avi.dll plugin in Winamp before ...)
 	NOT-FOR-US: Winamp
 CVE-2011-3833

More information about the Secure-testing-commits mailing list