Author: jmm Date: 2011-11-25 18:22:59 +0000 (Fri, 25 Nov 2011) New Revision: 17684 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-11-25 17:46:32 UTC (rev 17683) +++ data/CVE/list 2011-11-25 18:22:59 UTC (rev 17684) @@ -118,11 +118,11 @@ CVE-2011-4499 (The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco ...) NOT-FOR-US: hardware device with broken UPnP UGD implementation CVE-2011-4498 (Cross-site request forgery (CSRF) vulnerability in the web console in ...) - TODO: check + NOT-FOR-US: Zenprise Device Manager CVE-2011-4497 (QIS_wizard.htm on the ASUS RT-N56U router with firmware before ...) - TODO: check + NOT-FOR-US: Asus device CVE-2011-4496 (Buffer overflow in Aviosoft DTV Player 1.0.1.2 allows remote attackers ...) - TODO: check + NOT-FOR-US: Aviosoft DTV Player CVE-2011-4495 RESERVED CVE-2011-4494 @@ -184,7 +184,7 @@ CVE-2011-4466 RESERVED CVE-2011-4465 (Cross-site scripting (XSS) vulnerability in IBM Lotus Mobile Connect ...) - TODO: check + NOT-FOR-US: IBM Lotus Mobile Connect CVE-2011-XXXX [busybox integer overflow] - busybox <unfixed> (unimportant; bug #635370) NOTE: not sure if this has a security impact, but its something that should be corrected @@ -203,7 +203,7 @@ CVE-2011-4458 RESERVED CVE-2011-4457 (OWASP HTML Sanitizer (aka owasp-java-html-sanitizer) before 88, when ...) - TODO: check + NOT-FOR-US: OWASP HTML Sanitizer CVE-2011-4456 REJECTED CVE-2011-4455 @@ -351,7 +351,7 @@ CVE-2011-4405 RESERVED CVE-2011-4404 (The default configuration of the HTTP server in Jetty in vSphere ...) - TODO: check + NOT-FOR-US: vSphere update manager CVE-2011-4403 RESERVED CVE-2011-4402 @@ -572,7 +572,7 @@ CVE-2011-4312 RESERVED CVE-2011-4311 (ResourceSpace before 4.2.2833 does not properly validate access keys, ...) - TODO: check + NOT-FOR-US: ResourceSpace CVE-2011-4310 RESERVED CVE-2011-4309 [MSA-11-0041] @@ -1085,7 +1085,7 @@ CVE-2011-4160 RESERVED CVE-2011-4159 (Unspecified vulnerability in System Administration Manager (SAM) in ...) - TODO: check + NOT-FOR-US: HP-UX CVE-2011-4158 (Unspecified vulnerability in HP Directories Support for ProLiant ...) NOT-FOR-US: HP Directories Support CVE-2011-4157 (Stack-based buffer overflow in hydra.exe in HP SAN/iQ before 9.5 on ...)