[Secure-testing-commits] r22819 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Tue Jul 2 07:36:12 UTC 2013 

Author: carnil
Date: 2013-07-02 07:36:12 +0000 (Tue, 02 Jul 2013)
New Revision: 22819

Modified:
   data/CVE/list
Log:
add some NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-07-02 07:12:17 UTC (rev 22818)
+++ data/CVE/list	2013-07-02 07:36:12 UTC (rev 22819)
@@ -1,13 +1,13 @@
 CVE-2013-4735 (The Digital Alert Systems DASDEC EAS device before 2.0-2 and the ...)
-	TODO: check
+	NOT-FOR-US: Digital Alert Systems and Monroe Electronics
 CVE-2013-4734 (dasdec_mkuser on the Digital Alert Systems DASDEC EAS device before ...)
-	TODO: check
+	NOT-FOR-US: Alert Systems and Monroe Electronics
 CVE-2013-4733 (The web server on the Digital Alert Systems DASDEC EAS device before ...)
-	TODO: check
+	NOT-FOR-US: Alert Systems and Monroe Electronics
 CVE-2013-4732 (** DISPUTED ** The administrative web server on the Digital Alert ...)
-	TODO: check
+	NOT-FOR-US: Alert Systems and Monroe Electronics
 CVE-2013-4731 (ajax.cgi in the web interface on the Choice Wireless Green Packet ...)
-	TODO: check
+	NOT-FOR-US: Choice Wireless Green Packet modem
 CVE-2013-4730
 	RESERVED
 CVE-2013-4729
@@ -1310,15 +1310,15 @@
 CVE-2013-4096 (ServerAdmin/TestTelnetConnection.jsp in DS3 Authentication Server ...)
 	TODO: check
 CVE-2013-4095 (plain/actionsets.html in the SecureSphere Operations Manager (SOM) ...)
-	TODO: check
+	NOT-FOR-US: Imperva SecureSphere
 CVE-2013-4094 (The Key Management feature in the SecureSphere Operations Manager ...)
-	TODO: check
+	NOT-FOR-US: Imperva SecureSphere
 CVE-2013-4093 (The SecureSphere Operations Manager (SOM) Management Server in Imperva ...)
-	TODO: check
+	NOT-FOR-US: Imperva SecureSphere
 CVE-2013-4092 (The SecureSphere Operations Manager (SOM) Management Server in Imperva ...)
-	TODO: check
+	NOT-FOR-US: Imperva SecureSphere
 CVE-2013-4091 (The SecureSphere Operations Manager (SOM) Management Server in Imperva ...)
-	TODO: check
+	NOT-FOR-US: Imperva SecureSphere
 CVE-2013-4090
 	RESERVED
 CVE-2013-4089
@@ -2300,9 +2300,9 @@
 CVE-2013-3650 (Directory traversal vulnerability in the lfCheckFileName function in ...)
 	TODO: check
 CVE-2013-3649 (Cross-site scripting (XSS) vulnerability in KENT-WEB CLIP-MAIL before ...)
-	TODO: check
+	NOT-FOR-US: KENT-WEB CLIP-MAIL
 CVE-2013-3648 (Cross-site scripting (XSS) vulnerability in KENT-WEB POST-MAIL before ...)
-	TODO: check
+	NOT-FOR-US: KENT-WEB POST-MAIL
 CVE-2013-3647 (The WebView class in the Cybozu Live application before 2.0.1 for ...)
 	NOT-FOR-US: Cybozu Live for Android
 CVE-2013-3646 (The Cybozu Live application before 2.0.1 for Android allows remote ...)
@@ -2436,7 +2436,7 @@
 CVE-2013-3582
 	RESERVED
 CVE-2013-3581 (ajax.cgi in the web interface on the Choice Wireless Green Packet ...)
-	TODO: check
+	NOT-FOR-US: Choice Wireless Green Packet WIXFMR-111 4G WiMax modem
 CVE-2013-3580
 	RESERVED
 CVE-2013-3579
@@ -5352,7 +5352,7 @@
 CVE-2013-2343
 	RESERVED
 CVE-2013-2342 (The HP StoreOnce D2D backup system with software before 3.0.0 has a ...)
-	TODO: check
+	NOT-FOR-US: HP StoreOnce D2D backup system
 CVE-2013-2341
 	RESERVED
 CVE-2013-2340
@@ -5390,9 +5390,9 @@
 CVE-2013-2324 (Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, ...)
 	NOT-FOR-US: HP Storage Data Protector
 CVE-2013-2323 (HP SQL/MX 3.0 through 3.2 on NonStop servers, when SQL/MP Objects are ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2013-2322 (HP SQL/MX 3.2 and earlier on NonStop servers, when SQL/MP Objects are ...)
-	TODO: check
+	NOT-FOR-US: HP
 CVE-2013-2321 (Cross-site scripting (XSS) vulnerability in HP Service Manager Web ...)
 	NOT-FOR-US: HP Service Manager
 CVE-2013-2320
@@ -12022,7 +12022,7 @@
 CVE-2013-0138 (BitZipper 2013 before Update 1 allows remote attackers to execute ...)
 	NOT-FOR-US: BitZipper
 CVE-2013-0137 (The default configuration of the Digital Alert Systems DASDEC EAS ...)
-	TODO: check
+	NOT-FOR-US: Digital Alert Systems and Monroe Electronics
 CVE-2013-0136 (Multiple directory traversal vulnerabilities in the EditDocument ...)
 	NOT-FOR-US: Mutiny
 CVE-2013-0135 (Multiple SQL injection vulnerabilities in PHP Address Book 8.2.5 allow ...)

More information about the Secure-testing-commits mailing list