thr3ads.net - Secure testing commits - [Secure-testing-commits] r3943

If this information is useful, please help other people find it:
Share via:
Stefan Fritsch
2006-May-12 12:54 UTC
[Secure-testing-commits] r3943 - data/CVE

Author: stef-guest
Date: 2006-05-12 12:53:52 +0000 (Fri, 12 May 2006)
New Revision: 3943

Modified:
   data/CVE/list
Log:
some NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-05-12 12:36:30 UTC (rev 3942)
+++ data/CVE/list	2006-05-12 12:53:52 UTC (rev 3943)
@@ -145,17 +145,17 @@
 CVE-2006-2227 (Cross-site scripting (XSS) vulnerability in misc.php in PunBB
1.2.11 ...)
 	NOT-FOR-US: PunBB
 CVE-2006-2226 (Buffer overflow in XM Easy Personal FTP Server 4.2 allows remote
...)
-	TODO: check
+	NOT-FOR-US: Easy Personal FTP Server
 CVE-2006-2225 (Buffer overflow in XM Easy Personal FTP Server 4.3 and earlier
allows ...)
-	TODO: check
+	NOT-FOR-US: Easy Personal FTP Server
 CVE-2006-2224 (RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly
enforce ...)
 	- quagga 0.99.3-2 (bug #365940; medium)
 CVE-2006-2223 (RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly
...)
 	- quagga 0.99.3-2 (bug #365940; medium)
 CVE-2006-2222 (Buffer overflow in zawhttpd 0.8.23, and possibly previous
versions, ...)
-	TODO: check
+	NOT-FOR-US: zawhttpd
 CVE-2006-2221 (A third-party installer generation tool, possibly BitRock ...)
-	TODO: check
+	- ejabberd <not-affected> (only binary distribution is affected)
 CVE-2006-2220
 	RESERVED
 CVE-2006-2219
@@ -163,7 +163,7 @@
 CVE-2006-2218 (Unspecified vulnerability in Internet Explorer 6.0 on Microsoft
...)
 	NOT-FOR-US: MS IE
 CVE-2006-2217 (SQL injection vulnerability in index.php in Invision Power Board
...)
-	TODO: check
+	NOT-FOR-US: Invision Power Board
 CVE-2006-2216 (Open Bulletin Board (OpenBB) 1.0.8 allows remote attackers to
obtain ...)
 	NOT-FOR-US: OpenBB
 CVE-2006-2215 (Multiple cross-site scripting (XSS) vulnerabilities in Albinator
2.x ...)
@@ -182,34 +182,34 @@
 CVE-2006-XXXX [cyrus-imapd allows user probes]
 	- cyrus-imapd-2.2 2.2.13-3
 CVE-2006-2214 (Multiple SQL injection vulnerabilities in 4images 1.7.1 and
earlier ...)
-	TODO: check
+	NOT-FOR-US: 4images
 CVE-2006-2213 (Hostapd 0.3.7-2 allows remote attackers to cause a denial of
service ...)
 	- hostapd 0.5.0-1 (bug #365897; high)
 	[sarge] - hostapd <unfixed> (bug #365897; high)
 CVE-2006-2212 (Buffer overflow in KarjaSoft Sami FTP Server 2.0.2 and earlier
allows ...)
-	TODO: check
+	NOT-FOR-US: KarjaSoft Sami FTP Server
 CVE-2006-2211 (Absolute path traversal vulnerability in index.php in 321soft
...)
-	TODO: check
+	NOT-FOR-US: 321soft PhP-Gallery
 CVE-2006-2210 (Cross-site scripting (XSS) vulnerability in index.php in 321soft
...)
-	TODO: check
+	NOT-FOR-US: 321soft PhP-Gallery
 CVE-2006-2209 (Multiple SQL injection vulnerabilities in index.php in PHP Arena
...)
 	TODO: check
 CVE-2006-2208 (Multiple cross-site scripting (XSS) vulnerabilities in
mynews.inc.php ...)
-	TODO: check
+	NOT-FOR-US: paCheckBook
 CVE-2006-2207
 	RESERVED
 CVE-2006-2206 (The MS-Logon authentication scheme in UltraVNC (aka Ultr@VNC)
1.0.1 ...)
-	TODO: check
+	NOT-FOR-US: UltraVNC
 CVE-2006-2205 (The audio_write function in NetBSD 3.0 allows local users to
cause a ...)
-	TODO: check
+	NOT-FOR-US: NetBSD kernel
 CVE-2006-2204 (SQL injection vulnerability in the topic deletion functionality
...)
-	TODO: check
+	NOT-FOR-US: Invision Power Board 
 CVE-2006-2203 (Unspecified vulnerability in Kerio MailServer before 6.1.4 has
unknown ...)
-	TODO: check
+	NOT-FOR-US: Kerio MailServer
 CVE-2006-2202 (SQL injection vulnerability in post.php in Invision Gallery
2.0.6 ...)
-	TODO: check
+	NOT-FOR-US: Invision Gallery
 CVE-2006-2201 (Unspecified vulnerability in CA Resource Initialization Manager
...)
-	TODO: check
+	NOT-FOR-US: CA Resource Initialization Manager
 CVE-2006-2200
 	RESERVED
 CVE-2006-2199
@@ -231,47 +231,47 @@
 CVE-2006-2191
 	RESERVED
 CVE-2006-2190 (Cross-site scripting (XSS) vulnerability in ow-shared.pl in ...)
-	TODO: check
+	NOT-FOR-US: OpenWebMail
 CVE-2006-2189 (SQL injection vulnerability in search.php in Servous sBLOG 0.7.2
...)
-	TODO: check
+	NOT-FOR-US: Servous sBLOG
 CVE-2006-2188 (Multiple cross-site scripting (XSS) vulnerabilities in CMScout
1.10 ...)
-	TODO: check
+	NOT-FOR-US: CMScout
 CVE-2006-2187 (Multiple cross-site scripting (XSS) vulnerabilities in zenphoto
1.0.1 ...)
-	TODO: check
+	NOT-FOR-US: zenphoto
 CVE-2006-2186 (zenphoto 1.0.1 beta and earlier allow remote attackers to obtain
...)
-	TODO: check
+	NOT-FOR-US: zenphoto
 CVE-2006-2185
 	RESERVED
 CVE-2006-2184 (Cross-site scripting (XSS) vulnerability in search.php in PHPKB
...)
-	TODO: check
+	NOT-FOR-US: PHPKB Knowledge Base
 CVE-2006-2183 (Untrusted search path vulnerability in Truecrypt 4.1, when
running ...)
-	TODO: check
+	NOT-FOR-US: Truecrypt
 CVE-2006-2182 (Multiple PHP remote file inclusion vulnerabilities in (1)
eday.php, ...)
-	TODO: check
+	NOT-FOR-US: albinator
 CVE-2006-2181 (Multiple cross-site scripting (XSS) vulnerabilities in albinator
2.0.8 ...)
-	TODO: check
+	NOT-FOR-US: albinator
 CVE-2006-2180 (Buffer overflow in Golden FTP Server Pro 2.70 allows remote
attackers ...)
-	TODO: check
+	NOT-FOR-US: Golden FTP Server Pro
 CVE-2006-2179 (Multiple SQL injection vulnerabilities in CyberBuild allow
remote ...)
-	TODO: check
+	NOT-FOR-US: CyberBuild
 CVE-2006-2178 (Mulitiple cross-site scripting (XSS) vulnerabilities in
CyberBuild ...)
-	TODO: check
+	NOT-FOR-US: CyberBuild
 CVE-2006-2177 (Cross-site scripting (XSS) vulnerability in viewcat.php in
geoBlog 1.0 ...)
-	TODO: check
+	NOT-FOR-US: geoBlog
 CVE-2006-2176 (Multiple cross-site scripting (XSS) vulnerabilities in links.php
in ...)
-	TODO: check
+	NOT-FOR-US: PHP Linkliste
 CVE-2006-2175 (PHP remote file inclusion vulnerability in FtrainSoft Fast Click
2.3.8 ...)
 	NOT-FOR-US: Fast Click
 CVE-2006-2174 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: Virtual Hosting Control System (VHCS)
 CVE-2006-2173 (Buffer overflow in FileZilla FTP Server allows remote
authenticated ...)
-	TODO: check
+	NOT-FOR-US: FileZilla FTP Server
 CVE-2006-2172 (Buffer overflow in Gene6 FTP Server 3.1.0 allows remote
authenticated ...)
-	TODO: check
+	NOT-FOR-US: Gene6 FTP Server
 CVE-2006-2171 (Buffer overflow in WDM.exe in WarFTPD allows remote attackers to
...)
-	TODO: check
+	NOT-FOR-US: WarFTPD
 CVE-2006-2170 (Buffer overflow in ArgoSoft FTP Server allows remote attackers
to ...)
-	TODO: check
+	NOT-FOR-US: ArgoSoft FTP Server
 CVE-2006-2169 (RT: Request Tracker 3.5.HEAD allows remote attackers to obtain
...)
 	TODO: check
 CVE-2006-2168 (FileProtection Express 1.0.1 and earlier allows remote attackers
to ...)
Secure testing commits - May 2006 - r3943 - data/CVE

[Secure-testing-commits] r3943 - data/CVE
