[Secure-testing-commits] r23159 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Aug 1 08:20:15 UTC 2013
Author: carnil
Date: 2013-08-01 08:20:15 +0000 (Thu, 01 Aug 2013)
New Revision: 23159
Modified:
data/CVE/list
Log:
add NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-01 07:18:54 UTC (rev 23158)
+++ data/CVE/list 2013-08-01 08:20:15 UTC (rev 23159)
@@ -1,7 +1,7 @@
CVE-2013-5020 (Multiple cross-site scripting (XSS) vulnerabilities in bb_admin.php in ...)
NOT-FOR-US: miniBB
CVE-2013-5019 (Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote ...)
- TODO: check
+ NOT-FOR-US: Ultra Mini HTTPD
CVE-2013-5018
RESERVED
CVE-2013-5017
@@ -27,7 +27,7 @@
CVE-2013-5007
RESERVED
CVE-2013-5006 (main_internet.php on the Western Digital My Net N600 and N750 with ...)
- TODO: check
+ NOT-FOR-US: Western Digital Router
CVE-2013-5005
RESERVED
CVE-2013-5004
@@ -115,23 +115,23 @@
CVE-2013-4954 (Multiple cross-site scripting (XSS) vulnerabilities in wp-login.php in ...)
TODO: check
CVE-2013-4953 (SQL injection vulnerability in play.php in Top Games Script 1.2 allows ...)
- TODO: check
+ NOT-FOR-US: Top Games Script
CVE-2013-4952 (SQL injection vulnerability in functions/global.php in Elemata CMS RC ...)
- TODO: check
+ NOT-FOR-US: Elemata CMS
CVE-2013-4951 (Multiple cross-site scripting (XSS) vulnerabilities in Mintboard 0.3 ...)
- TODO: check
+ NOT-FOR-US: Mintboard
CVE-2013-4950 (Cross-site scripting (XSS) vulnerability in view.php in Machform 2 ...)
- TODO: check
+ NOT-FOR-US: Machform
CVE-2013-4949 (Unrestricted file upload vulnerability in view.php in Machform 2 ...)
- TODO: check
+ NOT-FOR-US: Machform
CVE-2013-4948 (SQL injection vulnerability in view.php in Machform 2 allows remote ...)
- TODO: check
+ NOT-FOR-US: Machform
CVE-2013-4947 (Unspecified vulnerability in the update and build database page in ...)
- TODO: check
+ NOT-FOR-US: Sawmill
CVE-2013-4946 (Multiple cross-site scripting (XSS) vulnerabilities in BMC Service ...)
- TODO: check
+ NOT-FOR-US: BMC Service Desk Express
CVE-2013-4945 (Multiple SQL injection vulnerabilities in BMC Service Desk Express ...)
- TODO: check
+ NOT-FOR-US: BMC Service Desk Express
CVE-2013-4944 (Cross-site scripting (XSS) vulnerability in the BuddyPress Extended ...)
TODO: check
CVE-2013-4943
@@ -474,17 +474,17 @@
CVE-2013-4803
RESERVED
CVE-2013-4802 (Cross-site scripting (XSS) vulnerability in HP Application Lifecycle ...)
- TODO: check
+ NOT-FOR-US: HP
CVE-2013-4801 (Unspecified vulnerability in HP LoadRunner before 11.52 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP LoadRunner
CVE-2013-4800 (Unspecified vulnerability in HP LoadRunner before 11.52 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP LoadRunner
CVE-2013-4799 (Unspecified vulnerability in HP LoadRunner before 11.52 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP LoadRunner
CVE-2013-4798 (Unspecified vulnerability in HP LoadRunner before 11.52 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP LoadRunner
CVE-2013-4797 (Unspecified vulnerability in HP LoadRunner before 11.52 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP LoadRunner
CVE-2013-4796
RESERVED
CVE-2013-4795
@@ -733,7 +733,7 @@
CVE-2013-4698
RESERVED
CVE-2013-4697 (Multiple unspecified vulnerabilities in Hitachi JP1/IT Desktop ...)
- TODO: check
+ NOT-FOR-US: Hitachi
CVE-2013-4695
RESERVED
CVE-2013-4694
@@ -777,7 +777,7 @@
CVE-2013-4675
RESERVED
CVE-2013-4674 (Cross-site scripting (XSS) vulnerability in the Web Email Protection ...)
- TODO: check
+ NOT-FOR-US: Symantec
CVE-2013-4673
RESERVED
CVE-2013-4672
@@ -2409,7 +2409,7 @@
CVE-2013-3957 (SQL injection vulnerability in the login screen in the Web Navigator ...)
NOT-FOR-US: Siemens WinCC
CVE-2013-3956 (The NICM.SYS kernel driver 3.1.11.0 in Novell Client 4.91 SP5 on ...)
- TODO: check
+ NOT-FOR-US: Novell Client on Windows
CVE-2013-3955 (The get_xattrinfo function in the XNU kernel in Apple iOS 5.x and 6.x ...)
NOT-FOR-US: Apple iOS
CVE-2013-3954 (The posix_spawn system call in the XNU kernel in Apple Mac OS X 10.8.x ...)
@@ -2987,7 +2987,7 @@
CVE-2013-3698
RESERVED
CVE-2013-3697 (Integer overflow in the NWFS.SYS kernel driver 4.91.5.8 in Novell ...)
- TODO: check
+ NOT-FOR-US: Novell Client on Windows
CVE-2013-3696
RESERVED
CVE-2013-3695
@@ -3256,7 +3256,7 @@
CVE-2013-3581 (ajax.cgi in the web interface on the Choice Wireless Green Packet ...)
NOT-FOR-US: Choice Wireless Green Packet WIXFMR-111 4G WiMax modem
CVE-2013-3580 (The TrustGo Antivirus & Mobile Security application before 1.3.6 for ...)
- TODO: check
+ NOT-FOR-US: TrustGo
CVE-2013-3579 (The Lookout Mobile Security application before 8.17-8a39d3f for ...)
NOT-FOR-US: Lookout Mobile Security application for Android
CVE-2013-3578 (SQL injection vulnerability in the Help Desk application in Wave ...)
@@ -3558,7 +3558,7 @@
CVE-2013-3446
RESERVED
CVE-2013-3445 (The firewall subsystem in Cisco Identity Services Engine has an ...)
- TODO: check
+ NOT-FOR-US: Cisco Identity Services Engine
CVE-2013-3444
RESERVED
CVE-2013-3443
@@ -3598,7 +3598,7 @@
CVE-2013-3426 (The Serviceability servlet on Cisco 9900 IP phones does not properly ...)
NOT-FOR-US: Cisco
CVE-2013-3425 (The Meeting Center component in Cisco WebEx 11 generates different ...)
- TODO: check
+ NOT-FOR-US: Cisco WebEx 11
CVE-2013-3424 (Cross-site request forgery (CSRF) vulnerability in Administration and ...)
NOT-FOR-US: Cisco
CVE-2013-3423 (Cross-site scripting (XSS) vulnerability in the web interface in Cisco ...)
@@ -3872,7 +3872,7 @@
CVE-2013-XXXX [autopostgresqlbackup code injection]
- autopostgresqlbackup 1.0-2 (bug #706095)
CVE-2013-3300 (The JsonParser class in json/JsonParser.scala in Lift before 2.5 ...)
- TODO: check
+ NOT-FOR-US: Lift Framework
CVE-2013-3299 (RealNetworks RealPlayer 16.0.2.32 and earlier allows remote attackers ...)
NOT-FOR-US: RealPlayer
CVE-2013-3298
@@ -4471,7 +4471,7 @@
CVE-2013-3034
RESERVED
CVE-2013-3033 (SQL injection vulnerability in the server component in IBM Tivoli ...)
- TODO: check
+ NOT-FOR-US: IBM Tivoli Remote Control
CVE-2013-3032
RESERVED
CVE-2013-3031
@@ -5056,7 +5056,7 @@
CVE-2013-2786 (Alstom Grid MiCOM S1 Agile before 1.0.3 and Alstom Grid MiCOM S1 ...)
NOT-FOR-US: Alstom Grid MiCOM S1
CVE-2013-2785 (Multiple buffer overflows in CimWebServer.exe in the WebView component ...)
- TODO: check
+ NOT-FOR-US: GE Intelligent Platforms
CVE-2013-2784 (Triangle Research International (aka Tri) Nano-10 PLC devices with ...)
NOT-FOR-US: Triangle Research International
CVE-2013-2783 (The DNP3 driver in IOServer drivers 1.0.19.0 allows remote attackers ...)
@@ -5400,7 +5400,7 @@
CVE-2013-2631
RESERVED
CVE-2013-2630 (Cross-site scripting (XSS) vulnerability in CA Service Desk Manager ...)
- TODO: check
+ NOT-FOR-US: CA Service Desk Manager
CVE-2013-2629
RESERVED
CVE-2013-2628
@@ -6194,13 +6194,13 @@
CVE-2013-2371 (The Web API in the Statistics Server in TIBCO Spotfire Statistics ...)
NOT-FOR-US: TIBCO Spotfire Statistics
CVE-2013-2370 (Unspecified vulnerability in HP LoadRunner before 11.52 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP LoadRunner
CVE-2013-2369 (Unspecified vulnerability in HP LoadRunner before 11.52 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP LoadRunner
CVE-2013-2368 (Unspecified vulnerability in HP LoadRunner before 11.52 allows remote ...)
- TODO: check
+ NOT-FOR-US: HP LoadRunner
CVE-2013-2367 (Multiple unspecified vulnerabilities in HP SiteScope 11.20 and 11.21, ...)
- TODO: check
+ NOT-FOR-US: HP SiteScope
CVE-2013-2366
RESERVED
CVE-2013-2365 (HP Database and Middleware Automation (DMA) 10.x before 10.10, when ...)
@@ -11093,7 +11093,7 @@
CVE-2013-0724
RESERVED
CVE-2013-0723 (Multiple heap-based buffer overflows in etxrw.dll in Kingsoft ...)
- TODO: check
+ NOT-FOR-US: Kingsoft Spreadsheets
CVE-2013-0722 (Stack-based buffer overflow in the scan_load_hosts function in ...)
- ettercap 1:0.7.5.1-2 (low; bug #697987)
[squeeze] - ettercap 1:0.7.3-2.1+squeeze1
More information about the Secure-testing-commits
mailing list