Secure testing commits - Jul 2006 - r4356 - data/CVE

Author: alec-guest
Date: 2006-07-08 15:56:39 +0000 (Sat, 08 Jul 2006)
New Revision: 4356

Modified:
   data/CVE/list
Log:
NOT-FOR-US

Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-07-08 15:41:20 UTC (rev 4355)
+++ data/CVE/list	2006-07-08 15:56:39 UTC (rev 4356)
@@ -237,25 +237,25 @@
 CVE-2006-3238 (Multiple SQL injection vulnerabilities in VBZooM 1.00 and
earlier ...)
 	NOT-FOR-US: VBZooM
 CVE-2006-3237 (Cross-site scripting (XSS) vulnerability in index.php in
Enterprise ...)
-	TODO: check
+	NOT-FOR-US: Enterprise Groupware System
 CVE-2006-3236 (Multiple SQL injection vulnerabilities in thinkWMS 1.0 and
earlier ...)
-	TODO: check
+	NOT-FOR-US: thinkWMS
 CVE-2006-3235 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
in ...)
-	TODO: check
+	NOT-FOR-US: FineShop
 CVE-2006-3234 (Multiple SQL injection vulnerabilities in index.php in FineShop
3.0 ...)
-	TODO: check
+	NOT-FOR-US: FineShop
 CVE-2006-3233 (Cross-site scripting (XSS) vulnerability in openwebmail-read.pl
in ...)
-	TODO: check
+	NOT-FOR-US: OpenWebMail
 CVE-2006-3232 (Unspecified vulnerability in IBM WebSphere Application Server
before ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere
 CVE-2006-3231 (Unspecified vulnerability in IBM WebSphere Application Server
before ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere
 CVE-2006-3230 (Cross-site scripting (XSS) vulnerability in index.tmpl in
Azureus ...)
 	TODO: check
 CVE-2006-3229 (Cross-site scripting (XSS) vulnerability in OpenWebMail (OWM)
2.52, ...)
-	TODO: check
+	NOT-FOR-US: OpenWebMail
 CVE-2006-3228 (Buffer overflow in in_midi.dll for WinAmp 2.90 up to 5.23,
including ...)
-	TODO: check
+	NOT-FOR-US: WinAmp
 CVE-2006-3227 (Interpretation conflict between Internet Explorer and other web
...)
 	NOT-FOR-US: Internet Explorer
 CVE-2006-3226 (Cisco Secure Access Control Server (ACS) 4.x for Windows uses
the ...)
@@ -265,7 +265,7 @@
 CVE-2006-3224 (Apple Safari 2.0.3 (417.9.3) on Mac OS X 10.4.6 allows remote
...)
 	NOT-FOR-US: Apple Safari
 CVE-2006-3223 (Format string vulnerability in CA Integrated Threat Management
(ITM), ...)
-	TODO: check
+	NOT-FOR-US: CA Integrated Threat Management (ITM), eTrust Antivirus (eAV), and
eTrust PestPatrol (ePP)
 CVE-2006-3222 (The FTP proxy module in Fortinet FortiOS (FortiGate) before 2.80
MR12 ...)
 	NOT-FOR-US: Fortinet FortiOS
 CVE-2006-3221 (SQL injection vulnerability in index.php in DataLife Engine 4.1
and ...)
@@ -368,23 +368,23 @@
 	- squirrelmail 2:1.4.7-1 (bug #375782; low)
 	[sarge] - squirrelmail <no-dsa> (Operation with registers_globals not
supported)
 CVE-2006-3173 (Multiple PHP remote file inclusion vulnerabilities in
Content*Builder ...)
-	TODO: check
+	NOT-FOR-US: Content*Builder
 CVE-2006-3172 (Multiple PHP remote file inclusion vulnerabilities in
Content*Builder ...)
-	TODO: check
+	NOT-FOR-US: Content*Builder
 CVE-2006-3171 (CRLF injection vulnerability in CS-Forum before 0.82 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: CS-Forum
 CVE-2006-3170 (CS-Forum before 0.82 allows remote attackers to obtain sensitive
...)
-	TODO: check
+	NOT-FOR-US: CS-Forum
 CVE-2006-3169 (Multiple cross-site scripting (XSS) vulnerabilities in CS-Forum
0.81 ...)
-	TODO: check
+	NOT-FOR-US: CS-Forum
 CVE-2006-3168 (SQL injection vulnerability in CS-Forum before 0.82 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: CS-Forum
 CVE-2006-3167 (Free Realty before 2.9 allows remote attackers to obtain the
full path ...)
-	TODO: check
+	NOT-FOR-US: Free Realty
 CVE-2006-3166 (Cross-site scripting (XSS) vulnerability in propview.php in Free
...)
-	TODO: check
+	NOT-FOR-US: Free Realty
 CVE-2006-3165 (SQL injection vulnerability in propview.php in Free Realty
2.9-0.7 and ...)
-	TODO: check
+	NOT-FOR-US: Free Realty
 CVE-2006-3164 (SQL injection vulnerability in category.php in TPL Design
tplShop 2.0 ...)
 	TODO: check
 CVE-2006-3163 (Multiple SQL injection vulnerabilities in galeria.php in
IMGallery 2.4 ...)