thr3ads.net - Secure testing commits - [Secure-testing-commits] r18835

If this information is useful, please help other people find it:
Share via:
Federico Ceratto
2012-Apr-05 09:48 UTC
[Secure-testing-commits] r18835 - data/CVE

Author: federico-guest
Date: 2012-04-05 09:48:06 +0000 (Thu, 05 Apr 2012)
New Revision: 18835

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-04-05 06:56:59 UTC (rev 18834)
+++ data/CVE/list	2012-04-05 09:48:06 UTC (rev 18835)
@@ -4654,9 +4654,9 @@
 CVE-2012-0259
 	RESERVED
 CVE-2012-0258 (Heap-based buffer overflow in the WWCabFile ActiveX component in
the ...)
-	TODO: check
+	NOT-FOR-US: Invensys Wonderware Application Server
 CVE-2012-0257 (Heap-based buffer overflow in the WWCabFile ActiveX component in
the ...)
-	TODO: check
+	NOT-FOR-US: Invensys Wonderware Application Server
 CVE-2012-0256 (Apache Traffic Server 2.0.x and 3.0.x before 3.0.4 and 3.1.x
before ...)
 	- trafficserver 3.0.4-1 
 CVE-2012-0255
@@ -4685,7 +4685,7 @@
 	{DSA-2427-1}
 	- imagemagick 8:6.6.9.7-6 (bug #659339)
 CVE-2012-0246 (Directory traversal vulnerability in an unspecified ActiveX
control in ...)
-	TODO: check
+	NOT-FOR-US: Ecava IntegraXor
 CVE-2012-0245 (Multiple stack-based buffer overflows in RobNetScanHost.exe in
ABB ...)
 	NOT-FOR-US: ABB Robot Communications Runtime
 CVE-2012-0244 (Multiple SQL injection vulnerabilities in Advantech/BroadWin
WebAccess ...)
@@ -4721,21 +4721,21 @@
 CVE-2012-0229 (The Data Archiver service in GE Intelligent Platforms Proficy
...)
 	NOT-FOR-US: GE Intelligent Platforms Proficy Historian
 CVE-2012-0228 (Invensys Wonderware Information Server 4.0 SP1 and 4.5 does not
...)
-	TODO: check
+	NOT-FOR-US: Invensys Wonderware Information Server
 CVE-2012-0227
 	RESERVED
 CVE-2012-0226 (SQL injection vulnerability in Invensys Wonderware Information
Server ...)
-	TODO: check
+	NOT-FOR-US: Invensys Wonderware Information Server
 CVE-2012-0225 (Cross-site scripting (XSS) vulnerability in Invensys Wonderware
...)
-	TODO: check
+	NOT-FOR-US: Invensys Wonderware Information Server
 CVE-2012-0224 (Untrusted search path vulnerability in 7-Technologies (7T) AQUIS
1.5 ...)
 	NOT-FOR-US: 7-Technologies (7T) AQUIS
 CVE-2012-0223 (Untrusted search path vulnerability in 7-Technologies (7T)
TERMIS 2.10 ...)
 	NOT-FOR-US: TERMIS
 CVE-2012-0222 (The FactoryTalk (FT) RNADiagReceiver service in Rockwell
Automation ...)
-	TODO: check
+	NOT-FOR-US: Rockwell Automation Allen-Bradley FactoryTalk
 CVE-2012-0221 (The FactoryTalk (FT) RNADiagReceiver service in Rockwell
Automation ...)
-	TODO: check
+	NOT-FOR-US: Rockwell Automation Allen-Bradley FactoryTalk
 CVE-2011-4897 (Tor before 0.2.2.25-alpha, when configured as a relay without
the ...)
 	- tor 0.2.2.27-beta-1 (unimportant)
 CVE-2011-4896 (Tor before 0.2.2.24-alpha continues to use a reachable bridge
that was ...)
@@ -5180,7 +5180,7 @@
 CVE-2012-0132
 	RESERVED
 CVE-2012-0131 (Distributed Computing Environment (DCE) 1.8 and 1.9 on HP HP-UX
...)
-	TODO: check
+	NOT-FOR-US: HP HP-UX
 CVE-2012-0130
 	RESERVED
 CVE-2012-0129
@@ -5188,7 +5188,7 @@
 CVE-2012-0128
 	RESERVED
 CVE-2012-0127 (Unspecified vulnerability in HP Performance Manager 9.00 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: HP Performance Manager
 CVE-2012-0126 (Unspecified vulnerability in the WBEM implementation in HP HP-UX
11.11 ...)
 	NOT-FOR-US: HP HP-UX
 CVE-2012-0125 (Unspecified vulnerability in the WBEM implementation in HP HP-UX
11.31 ...)
@@ -6216,7 +6216,7 @@
 CVE-2011-4536 (Heap-based buffer overflow in nettransdll.dll in HistorySvr.exe
(aka ...)
 	NOT-FOR-US: WellinTech KingView
 CVE-2011-4535 (Buffer overflow in TurboPower Abbrevia before 4.0, as used in
ScadaTEC ...)
-	TODO: check
+	NOT-FOR-US: TurboPower Abbrevia
 CVE-2011-4534 (ZenSysSrv.exe in Ing. Punzenberger COPA-DATA zenon 6.51 SP0
allows ...)
 	NOT-FOR-US: COPA-DATA
 CVE-2011-4533 (zenAdminSrv.exe in Ing. Punzenberger COPA-DATA zenon 6.51 SP0
allows ...)
@@ -7698,13 +7698,13 @@
 CVE-2011-4046 (The Dell KACE K2000 System Deployment Appliance stores the
recovery ...)
 	NOT-FOR-US: Dell appliance
 CVE-2011-4045 (Buffer overflow in an unspecified ActiveX control in aipgctl.ocx
in ...)
-	TODO: check
+	NOT-FOR-US: ARC Informatique
 CVE-2011-4044 (An unspecified ActiveX control in SVUIGrd.ocx in ARC
Informatique ...)
-	TODO: check
+	NOT-FOR-US: ARC Informatique
 CVE-2011-4043 (Integer overflow in an unspecified ActiveX control in
SVUIGrd.ocx in ...)
-	TODO: check
+	NOT-FOR-US: ARC Informatique
 CVE-2011-4042 (An unspecified ActiveX control in SVUIGrd.ocx in ARC
Informatique ...)
-	TODO: check
+	NOT-FOR-US: ARC Informatique
 CVE-2011-4041 (webvrpcs.exe in Advantech/BroadWin WebAccess allows remote
attackers ...)
 	NOT-FOR-US: Advantech WebAccess
 CVE-2011-4040 (Buffer overflow in MiniSmtp 3.0.11818 in NJStar Communicator
allows ...)
Secure testing commits - Apr 2012 - r18835 - data/CVE

[Secure-testing-commits] r18835 - data/CVE
