[Secure-testing-commits] r22840 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Jul 4 05:01:06 UTC 2013
Author: carnil
Date: 2013-07-04 05:01:05 +0000 (Thu, 04 Jul 2013)
New Revision: 22840
Modified:
data/CVE/list
Log:
add NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-07-04 04:34:47 UTC (rev 22839)
+++ data/CVE/list 2013-07-04 05:01:05 UTC (rev 22840)
@@ -11,17 +11,17 @@
CVE-2013-4750
RESERVED
CVE-2013-4749 (Cross-site scripting (XSS) vulnerability in the UserTask Center, ...)
- TODO: check
+ NOT-FOR-US: sys_messages TYPO3 extension
CVE-2013-4748 (SQL injection vulnerability in the News system (news) extension before ...)
- TODO: check
+ NOT-FOR-US: News system TYPO3 extension
CVE-2013-4747 (Cross-site scripting (XSS) vulnerability in the Accessible browse ...)
- TODO: check
+ NOT-FOR-US: Accessible browse results TYPO3 extension
CVE-2013-4746 (Cross-site scripting (XSS) vulnerability in the My quiz and poll ...)
- TODO: check
+ NOT-FOR-US: My quiz and poll TYPO3 extension
CVE-2013-4745 (SQL injection vulnerability in the My quiz and poll (myquizpoll) ...)
- TODO: check
+ NOT-FOR-US: My quiz and poll TYPO3 extension
CVE-2013-4744 (Cross-site scripting (XSS) vulnerability in the PHPUnit extension ...)
- TODO: check
+ NOT-FOR-US: PHPUnit TYPO3 extension
CVE-2013-4743
RESERVED
CVE-2013-4742
@@ -79,7 +79,7 @@
CVE-2013-4717
RESERVED
CVE-2012-6577 (SQL injection vulnerability in the Formhandler extension before 1.4.1 ...)
- TODO: check
+ NOT-FOR-US: Formhandler TYPO3 extension
CVE-2012-6576 (Cross-site scripting (XSS) vulnerability in the PRH Search module ...)
TODO: check
CVE-2012-6575 (Cross-site scripting (XSS) vulnerability in the Exposed Filter Data ...)
@@ -1344,11 +1344,11 @@
CVE-2013-4099
RESERVED
CVE-2013-4098 (ServerAdmin/ErrorViewer.jsp in DS3 Authentication Server allow remote ...)
- TODO: check
+ NOT-FOR-US: DS3 Authentication Server
CVE-2013-4097 (ServerAdmin/TestDRConnection.jsp in DS3 Authentication Server allows ...)
- TODO: check
+ NOT-FOR-US: DS3 Authentication Server
CVE-2013-4096 (ServerAdmin/TestTelnetConnection.jsp in DS3 Authentication Server ...)
- TODO: check
+ NOT-FOR-US: DS3 Authentication Server
CVE-2013-4095 (plain/actionsets.html in the SecureSphere Operations Manager (SOM) ...)
NOT-FOR-US: Imperva SecureSphere
CVE-2013-4094 (The Key Management feature in the SecureSphere Operations Manager ...)
@@ -1729,9 +1729,9 @@
CVE-2013-3927 (Unspecified vulnerability in the client library in Siemens COMOS 9.2 ...)
NOT-FOR-US: Siemens COMOS
CVE-2013-3926 (Atlassian Crowd 2.6.3 allows remote attackers to execute arbitrary ...)
- TODO: check
+ NOT-FOR-US: Atlassian Crowd
CVE-2013-3925 (Atlassian Crowd 2.5.x before 2.5.4, 2.6.x before 2.6.3, 2.3.8, and ...)
- TODO: check
+ NOT-FOR-US: Atlassian Crowd
CVE-2013-3924
RESERVED
CVE-2013-3923
@@ -2874,11 +2874,11 @@
CVE-2013-3402
RESERVED
CVE-2013-3401 (The SIP implementation in Cisco TelePresence TC Software allows remote ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-3400
RESERVED
CVE-2013-3399 (Buffer overflow in an unspecified Android API on the Cisco Desktop ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-3398 (The web framework in Cisco Prime Central for Hosted Collaboration ...)
NOT-FOR-US: Cisco
CVE-2013-3397 (Cross-site request forgery (CSRF) vulnerability in the Unified ...)
@@ -2886,7 +2886,7 @@
CVE-2013-3396 (Cross-site scripting (XSS) vulnerability in the web framework in Cisco ...)
NOT-FOR-US: Cisco
CVE-2013-3395 (Cross-site request forgery (CSRF) vulnerability in the web framework ...)
- TODO: check
+ NOT-FOR-US: Cisco IronPort Web Security Appliance
CVE-2013-3394
RESERVED
CVE-2013-3393 (The Precision Video Engine component in Cisco Jabber for Windows and ...)
@@ -3700,7 +3700,7 @@
CVE-2013-3029
RESERVED
CVE-2013-3028 (Multiple buffer overflows in mqm programs in IBM WebSphere MQ 7.0.x ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere
CVE-2013-3027
RESERVED
CVE-2013-3026 (Buffer overflow in the Lotus Quickr for Domino ActiveX control in ...)
@@ -3716,7 +3716,7 @@
CVE-2013-3021
RESERVED
CVE-2013-3020 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-3019
RESERVED
CVE-2013-3018
@@ -3750,7 +3750,7 @@
CVE-2013-3004
RESERVED
CVE-2013-3003 (Unspecified vulnerability in SOAP Gateway in IBM IMS Enterprise Suite ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-3002
RESERVED
CVE-2013-3001
@@ -3782,17 +3782,17 @@
CVE-2013-2988
RESERVED
CVE-2013-2987 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2986
RESERVED
CVE-2013-2985 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2984 (Directory traversal vulnerability in IBM Sterling B2B Integrator 5.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2983 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2982 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2981 (Directory traversal vulnerability in the Web Console in IBM Data ...)
NOT-FOR-US: IBM Data Studio
CVE-2013-2980 (Cross-site request forgery (CSRF) vulnerability in the Web Console in ...)
@@ -5394,7 +5394,7 @@
CVE-2013-2344
RESERVED
CVE-2013-2343 (Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance ...)
- TODO: check
+ NOT-FOR-US: HP
CVE-2013-2342 (The HP StoreOnce D2D backup system with software before 3.0.0 has a ...)
NOT-FOR-US: HP StoreOnce D2D backup system
CVE-2013-2341
@@ -10693,9 +10693,9 @@
CVE-2013-0569 (Cross-site scripting (XSS) vulnerability in the Communities component ...)
NOT-FOR-US: IBM Connections
CVE-2013-0568 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0567 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0566
RESERVED
CVE-2013-0565 (Cross-site scripting (XSS) vulnerability in the RPC adapter for the ...)
@@ -10709,11 +10709,11 @@
CVE-2013-0561
RESERVED
CVE-2013-0560 (Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0559
RESERVED
CVE-2013-0558 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0557
RESERVED
CVE-2013-0556
@@ -10751,7 +10751,7 @@
CVE-2013-0540 (IBM WebSphere Application Server (WAS) Liberty Profile 8.5 before ...)
NOT-FOR-US: IBM WebSphere Application Server
CVE-2013-0539 (An unspecified third-party component in IBM Sterling B2B Integrator ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0538 (Cross-site scripting (XSS) vulnerability in IBM Lotus Notes 8.x before ...)
NOT-FOR-US: IBM Lotus Notes
CVE-2013-0537
@@ -10867,19 +10867,19 @@
CVE-2013-0482 (IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.29, 8.0 before ...)
NOT-FOR-US: IBM
CVE-2013-0481 (The console in IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0480
RESERVED
CVE-2013-0479 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0478 (Cross-site scripting (XSS) vulnerability in IBM InfoSphere Master Data ...)
NOT-FOR-US: IBM
CVE-2013-0477 (Multiple cross-site scripting (XSS) vulnerabilities in IBM InfoSphere ...)
NOT-FOR-US: IBM
CVE-2013-0476 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0475 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0474 (The Manual Explore browser plug-in in IBM Security AppScan Enterprise ...)
NOT-FOR-US: IBM Security AppScan Enterprise
CVE-2013-0473 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Security ...)
@@ -10893,7 +10893,7 @@
CVE-2013-0469
RESERVED
CVE-2013-0468 (Cross-site scripting (XSS) vulnerability in IBM Sterling B2B ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0467 (IBM Eclipse Help System (IEHS), as used in IBM Data Studio 3.1 and ...)
NOT-FOR-US: IBM
CVE-2013-0466 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Message ...)
@@ -10903,7 +10903,7 @@
CVE-2013-0464 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Eclipse ...)
NOT-FOR-US: IBM
CVE-2013-0463 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0462 (Unspecified vulnerability in IBM WebSphere Application Server (WAS) ...)
NOT-FOR-US: IBM WebSphere Application Server
CVE-2013-0461 (Cross-site scripting (XSS) vulnerability in the virtual member manager ...)
@@ -10917,9 +10917,9 @@
CVE-2013-0457 (Cross-site scripting (XSS) vulnerability in IBM Maximo Asset ...)
NOT-FOR-US: IBM
CVE-2013-0456 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0455 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Sterling ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0454 (The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the ...)
- samba 2:3.6.6-1
[squeeze] - samba <not-affected> (only Samba 3.6.0 - 3.6.5 (inclusive) affected)
@@ -13382,7 +13382,7 @@
CVE-2012-5937 (Unspecified vulnerability in the CLA2 server in IBM Gentran ...)
NOT-FOR-US: IBM Gentran Integration
CVE-2012-5936 (IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2011-5245 (The readFrom function in providers.jaxb.JAXBXmlTypeProvider in ...)
NOT-FOR-US: RESTEasy framework for JBoss
CVE-2012-5935
@@ -13819,7 +13819,7 @@
CVE-2012-5767 (Unspecified vulnerability in the web interface on the IBM TS3500 Tape ...)
NOT-FOR-US: IBM TS3500 Tape Library
CVE-2012-5766 (Multiple SQL injection vulnerabilities in IBM Sterling B2B Integrator ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2012-5765 (The Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before ...)
NOT-FOR-US: IBM Rational ClearQuest
CVE-2012-5764
More information about the Secure-testing-commits
mailing list