[Secure-testing-commits] r24864 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Dec 21 20:05:10 UTC 2013
Author: carnil
Date: 2013-12-21 20:05:10 +0000 (Sat, 21 Dec 2013)
New Revision: 24864
Modified:
data/CVE/list
Log:
Mark round of NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-21 18:30:41 UTC (rev 24863)
+++ data/CVE/list 2013-12-21 20:05:10 UTC (rev 24864)
@@ -803,41 +803,41 @@
CVE-2013-6974
RESERVED
CVE-2013-6973 (Cisco WebEx Training Center allows remote attackers to discover ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6972 (Cisco WebEx Training Center allows remote attackers to discover ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6971 (Open redirect vulnerability in Cisco WebEx Training Center allows ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6970 (Cisco WebEx Meeting Center allows remote attackers to obtain sensitive ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6969 (The training-registration page in Cisco WebEx Training Center allows ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6968 (Cisco WebEx Training Center provides different error messages for ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6967 (Open redirect vulnerability in the mobile-browser subsystem in Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6966 (Open redirect vulnerability in Cisco WebEx Training Center allows ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6965 (The registration component in Cisco WebEx Training Center provides the ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6964 (Cisco WebEx Meeting Center allows remote authenticated users to bypass ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6963 (Cross-site scripting (XSS) vulnerability in the registration component ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6962 (Cross-site scripting (XSS) vulnerability in the mobile-browser ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6961 (Cross-site scripting (XSS) vulnerability in the Collaboration Partner ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6960 (Multiple cross-site scripting (XSS) vulnerabilities in Cisco WebEx ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6959 (Open redirect vulnerability in Cisco WebEx Sales Center allows remote ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6958 (Juniper NetScreen Firewall running ScreenOS 5.4, 6.2, or 6.3, when the ...)
- TODO: check
+ NOT-FOR-US: Juniper NetScreen Firewall
CVE-2013-6957 (Cross-site scripting (XSS) vulnerability in the web administrative ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2013-6956 (Cross-site scripting (XSS) vulnerability in the Secure Access Service ...)
- TODO: check
+ NOT-FOR-US: Juniper Junos Pulse Secure Access Service
CVE-2013-6955
RESERVED
CVE-2013-6954 [unhandled zero-length PLTE chunk or NULL palette]
@@ -900,9 +900,9 @@
CVE-2013-6927
RESERVED
CVE-2013-6926 (The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2013-6925 (The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 ...)
- TODO: check
+ NOT-FOR-US: Siemens
CVE-2013-6924
RESERVED
CVE-2013-6923
@@ -1979,7 +1979,7 @@
CVE-2013-6734
RESERVED
CVE-2013-6733 (Cross-site scripting (XSS) vulnerability in the Web Application in the ...)
- TODO: check
+ NOT-FOR-US: IBM Sametime
CVE-2013-6732
RESERVED
CVE-2013-6731
@@ -2003,7 +2003,7 @@
CVE-2013-6722
RESERVED
CVE-2013-6721 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Service ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Service Registry and Repository
CVE-2013-6720
RESERVED
CVE-2013-6719
@@ -2025,11 +2025,11 @@
- php5 5.5.6+dfsg-2 (bug #731112)
NOTE: http://git.php.net/?p=php-src.git;a=commit;h=12fe4e90be7bfa2a763197079f68f5568a14e071
CVE-2013-6711 (Cross-site scripting (XSS) vulnerability in the product-creation ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6710 (Cross-site request forgery (CSRF) vulnerability in Cisco WebEx ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6709 (The registration component in Cisco WebEx Training Center provides the ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-6708 (Cisco Cloud Portal 9.4 allows remote attackers to read files of ...)
NOT-FOR-US: Cisco
CVE-2013-6707 (Memory leak in the connection-manager implementation in Cisco Adaptive ...)
@@ -3042,11 +3042,11 @@
CVE-2013-6330
RESERVED
CVE-2013-6329 (IBM Global Security Kit (aka GSKit), as used in Content Manager ...)
- TODO: check
+ NOT-FOR-US: IBM Global Security Kit
CVE-2013-6328
RESERVED
CVE-2013-6327 (Cross-site scripting (XSS) vulnerability in the HTTP Option in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-6326
RESERVED
CVE-2013-6325
@@ -3324,7 +3324,7 @@
CVE-2013-6194
RESERVED
CVE-2013-6193 (Unspecified vulnerability on HP LaserJet M1522n and M2727; LaserJet ...)
- TODO: check
+ NOT-FOR-US: HP Printers
CVE-2013-6192 (Cross-site request forgery (CSRF) vulnerability in HP Operations ...)
NOT-FOR-US: HP Operations Orchestration
CVE-2013-6191 (Cross-site scripting (XSS) vulnerability in HP Operations ...)
@@ -3855,7 +3855,7 @@
CVE-2013-5947
RESERVED
CVE-2013-5946 (The runShellCmd function in systemCheck.htm in D-Link DSR-150 with ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2013-5945
RESERVED
CVE-2013-5944 (The integrated web server on Siemens SCALANCE X-200 switches with ...)
@@ -5192,11 +5192,11 @@
CVE-2013-5441
RESERVED
CVE-2013-5440 (IBM InfoSphere Information Server 8.0, 8.1, 8.5, 8.7, and 9.1 allows ...)
- TODO: check
+ NOT-FOR-US: IBM InfoSphere Information Server
CVE-2013-5439
RESERVED
CVE-2013-5438 (Cross-site scripting (XSS) vulnerability in the web server in IBM Flex ...)
- TODO: check
+ NOT-FOR-US: IBM Flex System Manager
CVE-2013-5437
RESERVED
CVE-2013-5436
@@ -5241,9 +5241,9 @@
CVE-2013-5417 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Application ...)
NOT-FOR-US: IBM WebSphere Application Server
CVE-2013-5416 (Unspecified vulnerability in IBM Rational ClearCase through 7.1.2.12, ...)
- TODO: check
+ NOT-FOR-US: IBM Rational ClearCase
CVE-2013-5415 (Buffer overflow in IBM Rational ClearCase through 7.1.2.12, 8.0.0.x ...)
- TODO: check
+ NOT-FOR-US: IBM Rational ClearCase
CVE-2013-5414 (The migration functionality in IBM WebSphere Application Server (WAS) ...)
NOT-FOR-US: IBM WebSphere Application Server
CVE-2013-5413
@@ -5269,7 +5269,7 @@
CVE-2013-5403 (Unspecified vulnerability on the IBM WebSphere DataPower XC10 ...)
NOT-FOR-US: IBM WebSphere
CVE-2013-5402 (Cross-site scripting (XSS) vulnerability in IBM Maximo Asset ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-5401
RESERVED
CVE-2013-5400
@@ -5277,9 +5277,9 @@
CVE-2013-5399
RESERVED
CVE-2013-5398 (Unspecified vulnerability in the Webservice Axis Gateway in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-5397 (Unspecified vulnerability in the Webservice Axis Gateway in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-5396
RESERVED
CVE-2013-5395 (IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, ...)
@@ -6604,9 +6604,9 @@
CVE-2013-4777 (A certain configuration of Android 2.3.7 on the Motorola Defy XT phone ...)
NOT-FOR-US: Motorola
CVE-2013-4776 (NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and ...)
- TODO: check
+ NOT-FOR-US: NETGEAR
CVE-2013-4775 (NETGEAR ProSafe GS724Tv3 and GS716Tv2 with firmware 5.4.1.13 and ...)
- TODO: check
+ NOT-FOR-US: NETGEAR
CVE-2013-4785 (The web interface on the Dell iDRAC6 with firmware before 1.95 allows ...)
NOT-FOR-US: Dell
CVE-2013-4783 (The Dell iDRAC6 with firmware 1.x before 1.92 and 2.x and 3.x before ...)
More information about the Secure-testing-commits
mailing list