[Secure-testing-commits] r20076 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Sat Sep 1 18:41:45 UTC 2012
Author: geissert
Date: 2012-09-01 18:41:45 +0000 (Sat, 01 Sep 2012)
New Revision: 20076
Modified:
data/CVE/list
Log:
xchat issue, NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-01 17:48:11 UTC (rev 20075)
+++ data/CVE/list 2012-09-01 18:41:45 UTC (rev 20076)
@@ -1,5 +1,5 @@
CVE-2012-4736 (The Device Encryption Client component in Sophos SafeGuard Enterprise ...)
- TODO: check
+ NOT-FOR-US: Sophos SafeGuard Enterprise
CVE-2012-4735
RESERVED
CVE-2012-4734
@@ -99,9 +99,9 @@
CVE-2012-4687
RESERVED
CVE-2012-4686 (SQL injection vulnerability in announcement.php in vBulletin 4.1.10 ...)
- TODO: check
+ NOT-FOR-US: vBulletin
CVE-2012-4685 (Cross-site scripting (XSS) vulnerability in Arbor Networks Peakflow SP ...)
- TODO: check
+ NOT-FOR-US: Arbor Networks Peakflow SP
CVE-2012-4684
RESERVED
CVE-2012-4683
@@ -109,23 +109,24 @@
CVE-2012-4682
RESERVED
CVE-2011-5136 (showImg.php in EPractize Labs Subscription Manager, possibly 1.0, ...)
- TODO: check
+ NOT-FOR-US: EPractize Labs Subscription Manager
CVE-2011-5135 (Multiple SQL injection vulnerabilities in the save_connection function ...)
- TODO: check
+ NOT-FOR-US: DoceboLMS
CVE-2011-5134 (Unrestricted file upload vulnerability in ...)
- TODO: check
+ NOT-FOR-US: JCE component for Joomla!
CVE-2011-5133 (Unspecified vulnerability in MyBB before 1.6.5 has unknown impact and ...)
- TODO: check
+ NOT-FOR-US: MyBB
CVE-2011-5132 (Cross-site scripting (XSS) vulnerability in MyBB before 1.6.5 allows ...)
- TODO: check
+ NOT-FOR-US: MyBB
CVE-2011-5131 (Cross-site request forgery (CSRF) vulnerability in global.php in MyBB ...)
- TODO: check
+ NOT-FOR-US: MyBB
CVE-2011-5130 (dev/less.php in Family Connections CMS (FCMS) 2.5.0 - 2.7.1, when ...)
- TODO: check
+ NOT-FOR-US: Family Connections CMS
CVE-2011-5129 (Heap-based buffer overflow in XChat 2.8.9 and earlier allows remote ...)
+ - xchat <unfixed>
TODO: check
CVE-2011-5128 (Multiple cross-site scripting (XSS) vulnerabilities in the Adminimize ...)
- TODO: check
+ NOT-FOR-US: Adminimize plugin for Wordpress
CVE-2012-4737
RESERVED
- asterisk <unfixed> (bug #680470)
@@ -1740,7 +1741,7 @@
CVE-2012-4011
RESERVED
CVE-2012-4010 (Opera before 11.60 allows remote attackers to spoof the address bar ...)
- TODO: check
+ NOT-FOR-US: Opera
CVE-2012-4009
RESERVED
CVE-2012-4008
@@ -2679,11 +2680,11 @@
CVE-2012-3582
RESERVED
CVE-2012-3581 (Symantec Messaging Gateway before 10.0 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Symantec Messaging Gateway
CVE-2012-3580 (Symantec Messaging Gateway before 10.0 allows remote authenticated ...)
- TODO: check
+ NOT-FOR-US: Symantec Messaging Gateway
CVE-2012-3579 (Symantec Messaging Gateway before 10.0 has a default password for an ...)
- TODO: check
+ NOT-FOR-US: Symantec Messaging Gateway
CVE-2012-3578 (Unrestricted file upload vulnerability in html/Upload.php in the ...)
NOT-FOR-US: Wordpress plugin
CVE-2012-3577 (Unrestricted file upload vulnerability in doupload.php in the Nmedia ...)
@@ -3449,7 +3450,7 @@
CVE-2012-3326
RESERVED
CVE-2012-3325 (IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Application Server
CVE-2012-3324
RESERVED
CVE-2012-3323
@@ -3475,13 +3476,13 @@
CVE-2012-3313
RESERVED
CVE-2012-3312 (The datasource definition editor in IBM InfoSphere Guardium 8.2 and ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Guardium
CVE-2012-3311
RESERVED
CVE-2012-3310
RESERVED
CVE-2012-3309 (Cross-site request forgery (CSRF) vulnerability in the ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Guardium
CVE-2012-3308 (Cross-site scripting (XSS) vulnerability in IBM Sametime 8.0.2 through ...)
NOT-FOR-US: IBM Sametime
CVE-2012-3307
@@ -3509,7 +3510,7 @@
CVE-2012-3296 (Cross-site scripting (XSS) vulnerability in the Help link in the login ...)
NOT-FOR-US: IBM Power Hardware Management Console
CVE-2012-3295 (IBM WebSphere MQ 7.1, when an SVRCONN channel is used, allows remote ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere MQ
CVE-2012-3294 (Multiple cross-site request forgery (CSRF) vulnerabilities in the Web ...)
NOT-FOR-US: IBM WebSphere
CVE-2012-3293 (Cross-site scripting (XSS) vulnerability in the Administrative Console ...)
@@ -3593,9 +3594,9 @@
CVE-2012-3255
RESERVED
CVE-2012-3254 (Multiple unspecified vulnerabilities in HP iNode Management Center ...)
- TODO: check
+ NOT-FOR-US: HP iNode Management Center
CVE-2012-3253 (Multiple unspecified vulnerabilities in HP Intelligent Management ...)
- TODO: check
+ NOT-FOR-US: HP Intelligent Management
CVE-2012-3252 (Unspecified vulnerability in HP Serviceguard A.11.19 and A.11.20 ...)
NOT-FOR-US: HP Serviceguard
CVE-2012-3251 (Cross-site scripting (XSS) vulnerability in HP Service Manager Web ...)
@@ -5920,7 +5921,7 @@
CVE-2012-2286
RESERVED
CVE-2012-2285 (EMC Cloud Tiering Appliance (aka CTA, formerly FMA) 9.0 and earlier, ...)
- TODO: check
+ NOT-FOR-US: EMC Cloud Tiering Appliance
CVE-2012-2284
RESERVED
CVE-2012-2283 (The Iomega Home Media Network Hard Drive with EMC Lifeline firmware ...)
@@ -10847,9 +10848,9 @@
CVE-2012-0309 (Cross-site scripting (XSS) vulnerability in Cogent DataHub 7.1.2 and ...)
NOT-FOR-US: Cogent DataHub
CVE-2012-0308 (Cross-site request forgery (CSRF) vulnerability in Symantec Messaging ...)
- TODO: check
+ NOT-FOR-US: Symantec Messaging Gateway
CVE-2012-0307 (Multiple cross-site scripting (XSS) vulnerabilities in Symantec ...)
- TODO: check
+ NOT-FOR-US: Symantec Messaging Gateway
CVE-2012-0306
RESERVED
CVE-2012-0305 (Untrusted search path vulnerability in Symantec System Recovery 2011 ...)
More information about the Secure-testing-commits
mailing list