Author: nion Date: 2007-10-10 15:00:57 +0000 (Wed, 10 Oct 2007) New Revision: 6897 Modified: data/CVE/list Log: NFUs new issue: CVE-2004-2731 linux-2.6 Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-10-10 13:48:10 UTC (rev 6896) +++ data/CVE/list 2007-10-10 15:00:57 UTC (rev 6897) @@ -92,7 +92,7 @@ CVE-2004-2732 (nbmember.cgi in Netbilling 2.0 allows remote attackers to obtain ...) NOT-FOR-US: Netbilling CVE-2004-2731 (Multiple integer overflows in Sbus PROM driver ...) - TODO: check + - linux-2.6 <unfixed> CVE-2004-2730 (Sysinternals PsTools before 2.05, including (1) PsExec before 1.54, ...) NOT-FOR-US: PsTools CVE-2004-2729 (Inetd32 Administration Tool of Hummingbird Connectivity 7.1 and 9.0 ...) @@ -3759,7 +3759,7 @@ CVE-2007-3700 (Sun Java System Access Manager (formerly Java System Identity Server) ...) NOT-FOR-US: Sun Java System Access Manager CVE-2007-3699 (The Decomposer component in multiple Symantec products allows remote ...) - TODO: check + NOT-FOR-US: Symantec CVE-2007-3698 (The Java Secure Socket Extension (JSSE) in Sun JDK and JRE 6 Update 1 ...) - sun-java5 1.5.0-12-1 - sun-java6 6-02-1 @@ -11972,7 +11972,7 @@ - php5 <unfixed> (unimportant) NOTE: open_basedir bypasses not supported CVE-2007-0447 (Heap-based buffer overflow in the Decomposer component in multiple ...) - TODO: check + NOT-FOR-US: Symantec CVE-2007-0446 (Stack-based buffer overflow in magentproc.exe for Hewlett-Packard ...) NOT-FOR-US: HP Mercury CVE-2007-0445 (Heap-based buffer overflow in the arj.ppl module in the OnDemand ...)