[Secure-testing-commits] r23661 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Fri Sep 13 19:48:56 UTC 2013
Author: carnil
Date: 2013-09-13 19:48:56 +0000 (Fri, 13 Sep 2013)
New Revision: 23661
Modified:
data/CVE/list
Log:
Add NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-13 19:14:45 UTC (rev 23660)
+++ data/CVE/list 2013-09-13 19:48:56 UTC (rev 23661)
@@ -1,5 +1,5 @@
CVE-2013-5740 (Unspecified vulnerability in the Intel Trusted Execution Technology ...)
- TODO: check
+ NOT-FOR-US: Intel Trusted Execution Technology
CVE-2013-5739 (The default configuration of WordPress before 3.6.1 does not prevent ...)
- wordpress 3.6.1+dfsg-1
CVE-2013-5738 (The get_allowed_mime_types function in wp-includes/functions.php in ...)
@@ -36,9 +36,9 @@
CVE-2013-5723 (SQL injection vulnerability in SAP NetWeaver 7.30 allows remote ...)
NOT-FOR-US: SAP NetWeaver
CVE-2013-5716 (Gretech GOM Media Player 2.2.53.5169 and possibly earlier allows ...)
- TODO: check
+ NOT-FOR-US: Gretech GOM Media Player
CVE-2013-5715 (Buffer overflow in Gretech GOM Media Player before 2.2.53.5169 has ...)
- TODO: check
+ NOT-FOR-US: Gretech GOM Media Player
CVE-2013-5714 (Multiple cross-site scripting (XSS) vulnerabilities in ls/htmlchat.php ...)
TODO: check
CVE-2013-5713
@@ -247,7 +247,7 @@
CVE-2013-5650
RESERVED
CVE-2013-5649 (Multiple cross-site scripting (XSS) vulnerabilities in Juniper Junos ...)
- TODO: check
+ NOT-FOR-US: Juniper
CVE-2013-5655
RESERVED
NOT-FOR-US: YingZhi Python for iOS
@@ -616,17 +616,17 @@
CVE-2013-5494
RESERVED
CVE-2013-5493 (The diagnostic module in the firmware on Cisco Virtualization ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-5492 (administration.jsp in Cisco SocialMiner allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-5491
RESERVED
CVE-2013-5490
RESERVED
CVE-2013-5489 (The gadget implementation in Cisco SocialMiner does not properly ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-5488 (Cisco Common Services, as used in Cisco Prime LAN Management Solution ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-5487
RESERVED
CVE-2013-5486
@@ -636,9 +636,9 @@
CVE-2013-5484
RESERVED
CVE-2013-5483 (Cross-site scripting (XSS) vulnerability in bookmarklet.jsp in Cisco ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-5482 (Cisco Prime LAN Management Solution (LMS) does not properly restrict ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-5481
RESERVED
CVE-2013-5480
@@ -4027,9 +4027,9 @@
CVE-2013-4063
RESERVED
CVE-2013-4062 (IBM Rational Policy Tester 8.5 before 8.5.0.5 does not verify X.509 ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-4061 (IBM Rational Policy Tester 8.5 before 8.5.0.5 does not properly check ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-4060
RESERVED
CVE-2013-4059
@@ -4417,7 +4417,7 @@
CVE-2013-3869
RESERVED
CVE-2013-3868 (Microsoft Active Directory Lightweight Directory Service (AD LDS) on ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2013-3867
RESERVED
CVE-2013-3866 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
@@ -4429,7 +4429,7 @@
CVE-2013-3863 (Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allow remote ...)
NOT-FOR-US: Microsoft
CVE-2013-3862 (Double free vulnerability in Microsoft Windows 7 and Server 2008 R2 ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2013-3861
RESERVED
CVE-2013-3860
@@ -4927,9 +4927,9 @@
CVE-2013-3659 (The NTT DOCOMO overseas usage application 2.0.0 through 2.0.4 for ...)
NOT-FOR-US: Android application NTT DOCOMO
CVE-2013-3658 (Directory traversal vulnerability in VMware ESXi 4.0 through 5.0, and ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2013-3657 (Buffer overflow in VMware ESXi 4.0 through 5.0, and ESX 4.0 and 4.1, ...)
- TODO: check
+ NOT-FOR-US: VMware
CVE-2013-3656 (Cybozu Office 9.1.0 and earlier does not properly manage sessions, ...)
NOT-FOR-US: Cybozu Office
CVE-2013-3655 (The Sharp AQUOS PhotoPlayer HN-PP150 with firmware before 1.04.00.04 ...)
@@ -5386,7 +5386,7 @@
CVE-2013-3447
RESERVED
CVE-2013-3446 (Open redirect vulnerability in the login page in Cisco Digital Media ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2013-3445 (The firewall subsystem in Cisco Identity Services Engine has an ...)
NOT-FOR-US: Cisco Identity Services Engine
CVE-2013-3444 (The web framework in Cisco WAAS Software before 4.x and 5.x before ...)
@@ -5572,9 +5572,9 @@
CVE-2013-3361 (Adobe Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 ...)
NOT-FOR-US: Adobe Flash
CVE-2013-3360 (Adobe Shockwave Player before 12.0.4.144 allows attackers to execute ...)
- TODO: check
+ NOT-FOR-US: Adobe Shockwave Player
CVE-2013-3359 (Adobe Shockwave Player before 12.0.4.144 allows attackers to execute ...)
- TODO: check
+ NOT-FOR-US: Adobe Shockwave Player
CVE-2013-3358 (Integer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x ...)
NOT-FOR-US: Adobe Reader
CVE-2013-3357 (Integer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x ...)
@@ -5944,19 +5944,19 @@
CVE-2013-3208 (Microsoft Internet Explorer 8 through 10 allows remote attackers to ...)
NOT-FOR-US: Microsoft
CVE-2013-3207 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2013-3206 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
NOT-FOR-US: Microsoft
CVE-2013-3205 (Microsoft Internet Explorer 6 through 8 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2013-3204 (Microsoft Internet Explorer 7 through 10 allows remote attackers to ...)
NOT-FOR-US: Microsoft
CVE-2013-3203 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2013-3202 (Microsoft Internet Explorer 10 allows remote attackers to execute ...)
NOT-FOR-US: Microsoft
CVE-2013-3201 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2013-3200
RESERVED
CVE-2013-3199 (Microsoft Internet Explorer 6 through 10 allows remote attackers to ...)
@@ -6000,7 +6000,7 @@
CVE-2013-3180 (Cross-site scripting (XSS) vulnerability in Microsoft SharePoint ...)
NOT-FOR-US: Microsoft SharePoint Server
CVE-2013-3179 (Cross-site scripting (XSS) vulnerability in Microsoft SharePoint ...)
- TODO: check
+ NOT-FOR-US: Microsoft SharePoint Server
CVE-2013-3178 (Microsoft Silverlight 5 before 5.1.20513.0 does not properly ...)
NOT-FOR-US: Microsoft Silverlight
CVE-2013-3177
@@ -6044,11 +6044,11 @@
CVE-2013-3158 (Microsoft Excel 2003 SP3 and 2007 SP3 allows remote attackers to ...)
NOT-FOR-US: Microsoft Excel
CVE-2013-3157 (Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2013-3156 (Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft ...)
NOT-FOR-US: Microsoft Access
CVE-2013-3155 (Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2013-3154 (The signature-update functionality in Windows Defender on Microsoft ...)
NOT-FOR-US: Microsoft Windows
CVE-2013-3153 (Microsoft Internet Explorer 6 through 10 allows remote attackers to ...)
@@ -6301,7 +6301,7 @@
CVE-2013-3032 (Cross-site scripting (XSS) vulnerability in the MIME e-mail ...)
NOT-FOR-US: IBM Domino
CVE-2013-3031 (A SQL stored procedure in the Universal Cache component in IBM solidDB ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-3030
RESERVED
CVE-2013-3029 (Cross-site request forgery (CSRF) vulnerability in the Administrative ...)
@@ -6369,7 +6369,7 @@
CVE-2013-2998
RESERVED
CVE-2013-2997 (IBM Security AppScan Enterprise before 8.7 does not invalidate the ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2996
RESERVED
CVE-2013-2995
@@ -6379,7 +6379,7 @@
CVE-2013-2993 (IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x through 7.0.0.7 ...)
NOT-FOR-US: IBM
CVE-2013-2992 (The Search component in IBM WebSphere Commerce 7.0 FP4 through FP6, in ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-2991
RESERVED
CVE-2013-2990
@@ -11348,11 +11348,11 @@
CVE-2013-1345 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
NOT-FOR-US: Microsoft
CVE-2013-1344 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2013-1343 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2013-1342 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2013-1341 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
NOT-FOR-US: Microsoft
CVE-2013-1340 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
@@ -13554,7 +13554,7 @@
CVE-2013-0532 (Cross-site request forgery (CSRF) vulnerability in IBM Security ...)
NOT-FOR-US: IBM Security AppScan Enterprise
CVE-2013-0531 (The SSL implementation in IBM Security AppScan Enterprise before ...)
- TODO: check
+ NOT-FOR-US: IBM
CVE-2013-0530
RESERVED
CVE-2013-0529 (The Browser in IBM Sterling Connect:Direct 1.4 before 1.4.0.11 and 1.5 ...)
@@ -15727,7 +15727,7 @@
CVE-2013-0082
RESERVED
CVE-2013-0081 (Microsoft SharePoint Portal Server 2003 SP3 and SharePoint Server 2007 ...)
- TODO: check
+ NOT-FOR-US: Microsoft
CVE-2013-0080 (Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 ...)
NOT-FOR-US: Microsoft SharePoint
CVE-2013-0079 (Microsoft Visio Viewer 2010 SP1 allows remote attackers to execute ...)
More information about the Secure-testing-commits
mailing list