Author: nion Date: 2007-09-22 16:56:21 +0000 (Sat, 22 Sep 2007) New Revision: 6674 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-09-22 11:09:04 UTC (rev 6673) +++ data/CVE/list 2007-09-22 16:56:21 UTC (rev 6674) @@ -1,27 +1,28 @@ CVE-2007-5019 (Buffer overflow in the Sun Java Web Start ActiveX control in Java ...) TODO: check CVE-2007-5018 (Stack-based buffer overflow in IMAPD in Mercury/32 4.52 allows remote ...) - TODO: check + NOT-FOR-US: Pegasus Mail Mercury CVE-2007-5017 (Absolute path traversal vulnerability in a certain ActiveX control in ...) - TODO: check + NOT-FOR-US: Yahoo! Messenger CVE-2007-5016 (SQL injection vulnerability in userreviews.php in OneCMS 2.4 allows ...) - TODO: check + NOT-FOR-US: OneCMS CVE-2007-5015 (Multiple PHP remote file inclusion vulnerabilities in Streamline PHP ...) - TODO: check + NOT-FOR-US: Streamline CVE-2007-5014 (Multiple PHP remote file inclusion vulnerabilities in pSlash 0.70 ...) - TODO: check + NOT-FOR-US: pSlash CVE-2007-5013 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...) - TODO: check + NOT-FOR-US: Phormer CVE-2007-5012 (Cross-site scripting (XSS) vulnerability in picture.php in ...) - TODO: check + NOT-FOR-US: PhpWebGallery CVE-2007-5011 (webbatch.exe in WebBatch allows remote attackers to obtain sensitive ...) - TODO: check + NOT-FOR-US: WebBatch CVE-2007-5010 (Cross-site scripting (XSS) vulnerability in WebBatch allows remote ...) - TODO: check + NOT-FOR-US: WebBatch CVE-2007-5009 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: Phpbb Plus + NOTE: vulnerable code not included in phpbb2 CVE-2007-5008 (The logins command in HP-UX B.11.31, B.11.23, and B.11.11 does not ...) - TODO: check + NOT-FOR-US: HP-UX CVE-2007-5007 (Stack-based buffer overflow in the ir_fetch_seq function in balsa ...) - balsa 2.3.20-1 (low) NOTE: attacker needs to get the victim a prepared server to use