Secure testing commits - Nov 2006 - r4986 - data/CVE

Author: stef-guest
Date: 2006-11-20 21:35:24 +0100 (Mon, 20 Nov 2006)
New Revision: 4986

Modified:
   data/CVE/list
Log:
some NFUs

Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-11-20 20:29:14 UTC (rev 4985)
+++ data/CVE/list	2006-11-20 20:35:24 UTC (rev 4986)
@@ -3,19 +3,19 @@
 CVE-2006-XXXX [Firefox Sage Extension Feed Script Insertion Vulnerability]
 	- firefox-sage <unfixed> (medium; bug #399170)
 CVE-2006-5972 (Stack-based buffer overflow in WG111v2.SYS in NetGear WG111v2
wireless ...)
-	TODO: check
+	NOT-FOR-US: NetGear
 CVE-2006-5971 (Absolute path traversal vulnerability in admin/logfile.txt in
Verity ...)
-	TODO: check
+	NOT-FOR-US: Verity Ultraseek
 CVE-2006-5970 (Verity Ultraseek before 5.7 allows remote attackers to obtain
...)
-	TODO: check
+	NOT-FOR-US: Verity Ultraseek
 CVE-2006-5969 (CRLF injection vulnerability in the evalFolderLine function in
fvwm ...)
 	TODO: check
 CVE-2006-5968 (MDaemon 9.0.5, 9.0.6, 9.51, and 9.53, and possibly other
versions, ...)
-	TODO: check
+	NOT-FOR-US: MDaemon
 CVE-2006-5967 (Race condition in Panda ActiveScan 5.53.00, and other versions
before ...)
-	TODO: check
+	NOT-FOR-US: Panda ActiveScan
 CVE-2006-5966 (Panda ActiveScan 5.53.00, and other versions before 5.54.01,
allows ...)
-	TODO: check
+	NOT-FOR-US: Panda ActiveScan
 CVE-2006-5965
 	RESERVED
 CVE-2006-5964
@@ -23,29 +23,29 @@
 CVE-2006-5963
 	RESERVED
 CVE-2006-5962 (Multiple SQL injection vulnerabilities in Hpecs Shopping Cart
allow ...)
-	TODO: check
+	NOT-FOR-US: Hpecs Shopping Cart
 CVE-2006-5961 (Buffer overflow in Mercury Mail Transport System 4.01b for
Windows has ...)
-	TODO: check
+	NOT-FOR-US: Mercury Mail Transport
 CVE-2006-5960 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: A+ Store E-Commerce
 CVE-2006-5959 (SQL injection vulnerability in browse.asp in A+ Store E-Commerce
...)
-	TODO: check
+	NOT-FOR-US: A+ Store E-Commerce
 CVE-2006-5958 (Multiple cross-site scripting (XSS) vulnerabilities in
INFINICART ...)
-	TODO: check
+	NOT-FOR-US: INFINICART
 CVE-2006-5957 (Multiple SQL injection vulnerabilities in INFINICART allow
remote ...)
-	TODO: check
+	NOT-FOR-US: INFINICART
 CVE-2006-5956 (XLineSoft PHPRunner 3.1 stores the (1) database server name, (2)
...)
-	TODO: check
+	NOT-FOR-US: PHPRunner
 CVE-2006-5955 (SQL injection vulnerability in listings.asp in 20/20 DataShed
(aka ...)
-	TODO: check
+	NOT-FOR-US: DataShed
 CVE-2006-5954 (SQL injection vulnerability in page.asp in NetVIOS 2.0 and
earlier ...)
-	TODO: check
+	NOT-FOR-US: NetVIOS
 CVE-2006-5953 (SQL injection vulnerability in viewcart.asp in Evolve shopping
cart ...)
-	TODO: check
+	NOT-FOR-US: Evolve shopping cart
 CVE-2006-5952 (SQL injection vulnerability in admin/default.asp in ASP Smiley
1.0 ...)
-	TODO: check
+	NOT-FOR-US: ASP Smiley
 CVE-2006-5951 (PHP remote file inclusion vulnerability in pipe.php in
Exophpdesk 1.2 ...)
-	TODO: check
+	NOT-FOR-US: Exophpdesk
 CVE-2006-5950 (Unspecified vulnerability in ALTools ALFTP FTP Server 4.1 beta
1, and ...)
 	TODO: check
 CVE-2006-5949 (Directory traversal vulnerability in ALTools ALFTP FTP Server
4.1 beta ...)