Author: federico-guest Date: 2012-05-19 10:41:23 +0000 (Sat, 19 May 2012) New Revision: 19272 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-05-18 09:14:36 UTC (rev 19271) +++ data/CVE/list 2012-05-19 10:41:23 UTC (rev 19272) @@ -299,9 +299,9 @@ CVE-2012-2613 RESERVED CVE-2012-2612 (The DiagTraceHex function in disp+work.exe 7010.29.15.58313 and ...) - TODO: check + NOT-FOR-US: SAP NetWeaver CVE-2012-2611 (The DiagTraceR3Info function in the Dialog processor in disp+work.exe ...) - TODO: check + NOT-FOR-US: SAP NetWeaver CVE-2012-2610 RESERVED CVE-2012-2609 @@ -495,13 +495,13 @@ CVE-2012-2515 RESERVED CVE-2012-2514 (The DiagiEventSource function in disp+work.exe 7010.29.15.58313 and ...) - TODO: check + NOT-FOR-US: SAP NetWeaver CVE-2012-2513 (The Diaginput function in disp+work.exe 7010.29.15.58313 and ...) - TODO: check + NOT-FOR-US: SAP NetWeaver CVE-2012-2512 (The DiagTraceStreamI function in disp+work.exe 7010.29.15.58313 and ...) - TODO: check + NOT-FOR-US: SAP NetWeaver CVE-2012-2511 (The DiagTraceAtoms function in disp+work.exe 7010.29.15.58313 and ...) - TODO: check + NOT-FOR-US: SAP NetWeaver CVE-2012-2510 RESERVED CVE-2012-2509 @@ -1183,9 +1183,9 @@ CVE-2012-2278 RESERVED CVE-2012-2277 (The IRM Server in EMC Documentum Information Rights Management 4.x ...) - TODO: check + NOT-FOR-US: EMC Documentum Information Rights Management CVE-2012-2276 (The IRM Server in EMC Documentum Information Rights Management 4.x ...) - TODO: check + NOT-FOR-US: EMC Documentum Information Rights Management CVE-2012-2275 RESERVED CVE-2012-2274 @@ -2304,7 +2304,7 @@ CVE-2012-1805 (Buffer overflow in the ECOM Ethernet module in Koyo H0-ECOM, ...) NOT-FOR-US: Koyo ECOM CVE-2012-1804 (The OPC server in Progea Movicon before 11.3 allows remote attackers ...) - TODO: check + NOT-FOR-US: Progea Movicon CVE-2012-1803 (RuggedCom Rugged Operating System (ROS) 3.10.x and earlier has a ...) NOT-FOR-US: RuggedCom Rugged Operating System CVE-2012-1802 (Buffer overflow in the embedded web server on the Siemens Scalance X ...) @@ -3551,9 +3551,9 @@ CVE-2012-1248 (app/config/core.php in baserCMS 1.6.15 and earlier does not properly ...) TODO: check CVE-2012-1247 (Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and ...) - TODO: check + NOT-FOR-US: KENT-WEB WEB MART CVE-2012-1246 (Cross-site scripting (XSS) vulnerability in KENT-WEB WEB MART 1.7 and ...) - TODO: check + NOT-FOR-US: KENT-WEB WEB MART CVE-2012-1245 (Cross-site scripting (XSS) vulnerability in the cleanup_urls function ...) NOT-FOR-US: OSQA CVE-2012-1244 (The NTT DOCOMO sp mode mail application 5400 and earlier for Android ...) @@ -5082,51 +5082,51 @@ CVE-2012-0672 (WebKit in Apple iOS before 5.1.1 allows remote attackers to execute ...) TODO: check CVE-2012-0671 (Apple QuickTime before 7.7.2 allows remote attackers to execute ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2012-0670 (Integer overflow in Apple QuickTime before 7.7.2 allows remote ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2012-0669 (Buffer overflow in Apple QuickTime before 7.7.2 on Windows allows ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2012-0668 (Buffer overflow in Apple QuickTime before 7.7.2 allows remote ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2012-0667 (Integer signedness error in Apple QuickTime before 7.7.2 on Windows ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2012-0666 (Stack-based buffer overflow in the plugin in Apple QuickTime before ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2012-0665 (Heap-based buffer overflow in Apple QuickTime before 7.7.2 allows ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2012-0664 (Heap-based buffer overflow in Apple QuickTime before 7.7.2 on Windows ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2012-0663 (Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2012-0662 (Integer overflow in the Security Framework in Apple Mac OS X before ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0661 (Use-after-free vulnerability in QuickTime in Apple Mac OS X 10.7.x ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0660 (Buffer underflow in QuickTime in Apple Mac OS X before 10.7.4 allows ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0659 (Integer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0658 (Buffer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0657 (Quartz Composer in Apple Mac OS X before 10.7.4, when the RSS ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0656 (Race condition in LoginUIFramework in Apple Mac OS X 10.7.x before ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0655 (libsecurity in Apple Mac OS X before 10.7.4 does not properly restrict ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0654 (libsecurity in Apple Mac OS X before 10.7.4 accesses uninitialized ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0653 RESERVED CVE-2012-0652 (Login Window in Apple Mac OS X 10.7.3, when Legacy File Vault or ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0651 (The directory server in Directory Service in Apple Mac OS X 10.6.8 ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0650 RESERVED CVE-2012-0649 (Race condition in the initialization routine in blued in Bluetooth in ...) - TODO: check + NOT-FOR-US: Apple Mac OS X CVE-2012-0648 (WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle ...) - webkit <undetermined> CVE-2012-0647 (WebKit in Apple Safari before 5.1.4 does not properly handle redirects ...) @@ -5261,29 +5261,29 @@ - mysql-5.1 5.1.62-1 (bug #670636) - mysql-5.5 5.5.23-1 CVE-2012-0582 (Unspecified vulnerability in the Siebel Clinical component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Industry Applications CVE-2012-0581 (Unspecified vulnerability in the Oracle Agile component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Supply Chain Products Suite CVE-2012-0580 (Unspecified vulnerability in the Oracle Agile PLM for Process ...) - TODO: check + NOT-FOR-US: Oracle Supply Chain Products Suite CVE-2012-0579 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...) - TODO: check + NOT-FOR-US: Oracle Financial Services Software CVE-2012-0578 RESERVED CVE-2012-0577 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...) - TODO: check + NOT-FOR-US: Oracle Financial Services Software CVE-2012-0576 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...) - TODO: check + NOT-FOR-US: Oracle Financial Services Software CVE-2012-0575 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...) - TODO: check + NOT-FOR-US: Oracle Financial Services Software CVE-2012-0574 RESERVED CVE-2012-0573 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...) - TODO: check + NOT-FOR-US: Oracle Financial Services Software CVE-2012-0572 RESERVED CVE-2012-0571 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...) - TODO: check + NOT-FOR-US: Oracle Financial Services Software CVE-2012-0570 RESERVED CVE-2012-0569 @@ -5291,17 +5291,17 @@ CVE-2012-0568 RESERVED CVE-2012-0567 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...) - TODO: check + NOT-FOR-US: Oracle Financial Services Software CVE-2012-0566 (Unspecified vulnerability in the Oracle Agile component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Supply Chain Products Suite CVE-2012-0565 (Unspecified vulnerability in the Oracle Agile component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Supply Chain Products Suite CVE-2012-0564 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Products CVE-2012-0563 RESERVED CVE-2012-0562 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Products CVE-2012-0561 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) NOT-FOR-US: Oracle PeopleSoft Products CVE-2012-0560 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) @@ -5893,11 +5893,11 @@ CVE-2012-0379 RESERVED CVE-2012-0378 (Cisco Adaptive Security Appliances (ASA) 5500 series devices with ...) - TODO: check + NOT-FOR-US: Cisco Adaptive Security Appliances CVE-2012-0377 RESERVED CVE-2012-0376 (The voice-sipstack component in Cisco Unified Communications Manager ...) - TODO: check + NOT-FOR-US: Cisco Unified Communications Manager CVE-2012-0375 RESERVED CVE-2012-0374 @@ -6206,7 +6206,7 @@ CVE-2012-0266 (Multiple stack-based buffer overflows in the NTR ActiveX control ...) NOT-FOR-US: NTR ActiveX control CVE-2012-0265 (Stack-based buffer overflow in Apple QuickTime before 7.7.2 on Windows ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2011-5046 (The Graphics Device Interface (GDI) in win32k.sys in the kernel-mode ...) NOT-FOR-US: Microsoft Windows 7 CVE-2011-5045 (Cross-site scripting (XSS) vulnerability in details_view.php in PHP ...) @@ -6993,7 +6993,7 @@ CVE-2012-0203 RESERVED CVE-2012-0202 (Multiple stack-based buffer overflows in tm1admsd.exe in the Admin ...) - TODO: check + NOT-FOR-US: Admin Server in IBM Cognos TM1 CVE-2012-0201 (Stack-based buffer overflow in pcspref.dll in pcsws.exe in IBM ...) NOT-FOR-US: IBM Personal Communications CVE-2012-0200 (The server in IBM solidDB 6.5 before Interim Fix 6 does not properly ...) @@ -7090,7 +7090,7 @@ CVE-2012-0179 (Double free vulnerability in tcpip.sys in Microsoft Windows Server ...) NOT-FOR-US: Microsoft Windows CVE-2012-0178 (Race condition in partmgr.sys in Windows Partition Manager in ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2012-0177 (Heap-based buffer overflow in the Office Works File Converter in ...) NOT-FOR-US: Microsoft CVE-2012-0176 (Double free vulnerability in Microsoft Silverlight 4 before 4.1.10329 ...) @@ -17809,7 +17809,7 @@ CVE-2011-1391 (The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll ...) NOT-FOR-US: IBM Rational Rhapsody CVE-2011-1390 (SQL injection vulnerability in the Maintenance tool in IBM Rational ...) - TODO: check + NOT-FOR-US: IBM Rational ClearQuest CVE-2011-1389 (Multiple directory traversal vulnerabilities in the vendor daemon in ...) NOT-FOR-US: Telelogic License Server CVE-2011-1388 (The Blueberry FlashBack ActiveX control in BB FlashBack Recorder.dll ...)