atomo64-guest at alioth.debian.org
2009-Mar-23 02:52 UTC
[Secure-testing-commits] r11460 - data/CVE
Author: atomo64-guest Date: 2009-03-23 02:52:55 +0000 (Mon, 23 Mar 2009) New Revision: 11460 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-03-22 21:14:11 UTC (rev 11459) +++ data/CVE/list 2009-03-23 02:52:55 UTC (rev 11460) @@ -175,9 +175,9 @@ CVE-2009-0965 (SQL injection vulnerability in functions/browse.php in Ganesha Digital ...) TODO: check CVE-2009-0964 (UserView_list.php in PHPRunner 4.2, and possibly earlier, stores ...) - TODO: check + NOT-FOR-US: PHPRunner CVE-2009-0963 (Multiple SQL injection vulnerabilities in PHPRunner 4.2, and possibly ...) - TODO: check + NOT-FOR-US: PHPRunner CVE-2009-0962 (Unspecified vulnerability in Futomi''s CGI Cafe MP Form Mail CGI ...) TODO: check CVE-2009-0961 @@ -221,29 +221,29 @@ CVE-2009-0942 RESERVED CVE-2009-0941 (The HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline ...) - TODO: check + NOT-FOR-US: HP Embedded Web Server CVE-2009-0940 (Multiple cross-site request forgery (CSRF) vulnerabilities in the HP ...) - TODO: check + NOT-FOR-US: HP Embedded Web Server CVE-2008-6491 (PHP remote file inclusion vulnerability in connexion.php in PHPGKit ...) - TODO: check + NOT-FOR-US: PHPGKit CVE-2008-6490 (function/update_xml.php in FLABER 1.1 and earlier allows remote ...) TODO: check CVE-2008-6489 (SQL injection vulnerability in MyAlbum component (com_myalbum) 1.0 for ...) - TODO: check + NOT-FOR-US: MyAlbum component (com_myalbum) for Joomla! CVE-2008-6488 (SQL injection vulnerability in index.php in SoftComplex PHP Image ...) TODO: check CVE-2008-6487 (Multiple SQL injection vulnerabilities in login.asp in Digiappz ...) - TODO: check + NOT-FOR-US: Digiappz DigiAffiliate CVE-2008-6486 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: sharedlog CMS CVE-2008-6485 (SQL injection vulnerability in index.php in SoftComplex PHP Image ...) - TODO: check + NOT-FOR-US: SoftComplex PHP Image Gallery CVE-2008-6484 (SQL injection vulnerability in login.php in Mole Group Taxi Map Script ...) - TODO: check + NOT-FOR-US: Mole Group Taxi Map Script CVE-2008-6483 (PHP remote file inclusion vulnerability in admin.googlebase.php in the ...) - TODO: check + NOT-FOR-US: Ecom Solutions VirtueMart Google Base (aka com_googlebase or Froogle) component for Joomla! CVE-2008-6482 (PHP remote file inclusion vulnerability in admin.treeg.php in the ...) - TODO: check + NOT-FOR-US: Flash Tree Gallery (com_treeg) component for Joomla! CVE-2009-0939 (Tor before 0.2.0.34 treats incomplete IPv4 addresses as valid, which ...) - tor 0.2.0.34-1 CVE-2009-0938 (Unspecified vulnerability in Tor before 0.2.0.34 allows directory ...) @@ -284,7 +284,7 @@ CVE-2009-0922 (PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows ...) TODO: check CVE-2008-6481 (SQL injection vulnerability in the Versioning component ...) - TODO: check + NOT-FOR-US: Versioning component (com_versioning) in Joomla! and Mambo CVE-2009-0921 RESERVED CVE-2009-0920 @@ -1611,7 +1611,7 @@ CVE-2009-0633 RESERVED CVE-2009-0632 (The IP Phone Personal Address Book (PAB) Synchronizer feature in Cisco ...) - TODO: check + NOT-FOR-US: Cisco Unified Communications Manager CVE-2009-0631 RESERVED CVE-2009-0630 @@ -1853,7 +1853,7 @@ CVE-2009-0539 RESERVED CVE-2009-0538 (Format string vulnerability in Symantec pcAnywhere before 12.5 SP1 ...) - TODO: check + NOT-FOR-US: Symantec pcAnywhere CVE-2009-0537 (Integer overflow in the fts_build function in fts.c in libc in (1) ...) - glibc <not-affected> (Vulnerable code not present) NOTE: glibc checks the comlete path length being not longer than USHRT_MAX @@ -1991,7 +1991,7 @@ CVE-2009-0509 RESERVED CVE-2009-0508 (The Servlet Engine/Web Container component in IBM WebSphere ...) - TODO: check + NOT-FOR-US: IBM WebSphere CVE-2009-0507 (IBM WebSphere Process Server (WPS) 6.1.2 before 6.1.2.3 and 6.2 before ...) NOT-FOR-US: IBM WebSphere CVE-2009-0506 (Unspecified vulnerability in IBM WebSphere Application Server (WAS) ...) @@ -3268,7 +3268,7 @@ CVE-2009-0144 RESERVED CVE-2009-0143 (Apple iTunes before 8.1 does not properly inform the user about the ...) - TODO: check + NOT-FOR-US: Apple iTunes CVE-2009-0142 (Race condition in AFP Server in Apple Mac OS X 10.5.6 allows local ...) NOT-FOR-US: Apple Mac OS X CVE-2009-0141 (XTerm in Apple Mac OS X 10.4.11 and 10.5.6, when used with luit, ...) @@ -4259,7 +4259,7 @@ CVE-2009-0017 (csregprinter in the Printing component in Apple Mac OS X 10.4.11 and ...) NOT-FOR-US: Apple Mac OS X CVE-2009-0016 (Apple iTunes before 8.1 on Windows allows remote attackers to cause a ...) - TODO: check + NOT-FOR-US: Apple iTunes CVE-2009-0015 (Unspecified vulnerability in fseventsd in the FSEvents framework in ...) NOT-FOR-US: Apple Mac OS X CVE-2009-0014 (Folder Manager in Apple Mac OS X 10.5.6 uses insecure default ...) @@ -6830,7 +6830,7 @@ CVE-2008-4565 RESERVED CVE-2008-4564 (Stack-based buffer overflow in wp6sr.dll in the Autonomy KeyView SDK ...) - TODO: check + NOT-FOR-US: Autonomy KeyView SDK CVE-2008-4563 (Heap-based buffer overflow in adsmdll.dll 5.3.7.7296, as used by the ...) NOT-FOR-US: IBM Tivoli Storage Manager CVE-2008-4562 (Buffer overflow in the ovlaunch CGI program in HP OpenView Network ...) @@ -21104,9 +21104,9 @@ CVE-2007-5544 (IBM Lotus Notes before 6.5.6, and 7.x before 7.0.3; and Domino before ...) NOT-FOR-US: IBM Lotus Notes CVE-2007-5543 (Stack-based buffer overflow in Miranda IM 0.6.8 and 0.7.0 allows ...) - TODO: check + NOT-FOR-US: Miranda CVE-2007-5542 (Stack-based buffer overflow in Miranda IM 0.6.8 allows remote ...) - TODO: check + NOT-FOR-US: Miranda CVE-2003-1400 (Cross-site scripting (XSS) vulnerability in the Your_Account module ...) NOT-FOR-US: PhpNuke CVE-2003-1399 (eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, ...)