Secure testing commits - Nov 2006 - r4929 - data/CVE

Author: fw
Date: 2006-11-07 20:42:05 +0100 (Tue, 07 Nov 2006)
New Revision: 4929

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-11-07 19:12:07 UTC (rev 4928)
+++ data/CVE/list	2006-11-07 19:42:05 UTC (rev 4929)
@@ -10,11 +10,11 @@
 CVE-2006-5648
 	RESERVED
 CVE-2006-5647 (Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus
for ...)
-	TODO: check
+	NOT-FOR-US: Sophos
 CVE-2006-5646 (Heap-based buffer overflow in Sophos Anti-Virus and Endpoint
Security ...)
-	TODO: check
+	NOT-FOR-US: Sophos
 CVE-2006-5645 (Unspecified vulnerability in Sophos Anti-Virus and Endpoint
Security ...)
-	TODO: check
+	NOT-FOR-US: Sophos
 CVE-2006-5644
 	RESERVED
 CVE-2006-5643 (Cross-site scripting (XSS) vulnerability in search_de.html in
foresite ...)
@@ -22,9 +22,9 @@
 CVE-2006-5642 (Unspecified vulnerability in NmnLogger 1.0.0 and earlier has
unknown ...)
 	TODO: check
 CVE-2006-5641 (SQL injection vulnerability in MainAnnounce2.asp in Techno
Dreams ...)
-	TODO: check
+	NOT-FOR-US: Techno Dreams
 CVE-2006-5640 (SQL injection vulnerability in guestbookview.asp in Techno
Dreams ...)
-	TODO: check
+	NOT-FOR-US: Techno Dreams
 CVE-2006-5639 (Unspecified vulnerability in the random number generator in
OpenWBEM ...)
 	TODO: check
 CVE-2006-5638 (Multiple SQL injection vulnerabilities in cherche.php in
PHPMyRing ...)
@@ -98,7 +98,7 @@
 CVE-2006-5604 (Directory traversal vulnerability in phpcards.header.php in
phpCards ...)
 	TODO: check
 CVE-2006-5603 (SQL injection vulnerability in pop_mail.asp in Snitz Forums 2000
...)
-	TODO: check
+	NOT-FOR-US: Snitz Forums
 CVE-2006-5600 (Axalto Protiva 1.1, possibly only non-commercial versions,
stores ...)
 	TODO: check
 CVE-2006-5599 (Cross-site scripting (XSS) vulnerability in Oracle Application
Express ...)
@@ -116,9 +116,9 @@
 CVE-2006-5593 (Buffer overflow in Desknet''s (niokeru) before 5.0J R1.0
might allow ...)
 	TODO: check
 CVE-2006-5592 (Admin/adpoll.asp in PacPoll 4.0 and earlier allows remote
attackers to ...)
-	TODO: check
+	NOT-FOR-US: PacPoll
 CVE-2006-5591 (Multiple SQL injection vulnerabilities in Admin/check.asp in
PacPoll ...)
-	TODO: check
+	NOT-FOR-US: PacPoll
 CVE-2006-5590 (PHP remote file inclusion vulnerability in index.php in
ArticleBeach ...)
 	TODO: check
 CVE-2006-5589 (Multiple SQL injection vulnerabilities in LedgerSMB (LSMB) 1.1.0
and ...)
@@ -1713,7 +1713,7 @@
 CVE-2006-4840
 	REJECTED
 CVE-2006-4839 (Sophos Anti-Virus 5.1 allows remote attackers to cause a denial
of ...)
-	TODO: check
+	NOT-FOR-US: Sophos
 CVE-2006-4838 (Multiple cross-site scripting (XSS) vulnerabilities in
DCP-Portal SE ...)
 	NOT-FOR-US: DCP-Portal
 CVE-2006-4837 (Multiple PHP remote file inclusion vulnerabilities in DCP-Portal
SE ...)