thr3ads.net - Secure testing commits - [Secure-testing-commits] r4010

If this information is useful, please help other people find it:
Share via:
Alec Berryman
2006-May-20 20:00 UTC
[Secure-testing-commits] r4010 - data/CVE

Author: alec-guest
Date: 2006-05-20 19:59:30 +0000 (Sat, 20 May 2006)
New Revision: 4010

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-05-20 19:44:27 UTC (rev 4009)
+++ data/CVE/list	2006-05-20 19:59:30 UTC (rev 4010)
@@ -365,9 +365,9 @@
 CVE-2006-2317 (Unspecified vulnerability in Ideal Science Ideal BB 1.5.4a and
earlier ...)
 	NOT-FOR-US: Ideal Science
 CVE-2006-2316 (S24EvMon.exe in the Intel PROset/Wireless software, possibly
...)
-	TODO: check
+	NOT-FOR-US: Intel Windows software
 CVE-2006-2315 (PHP remote file inclusion vulnerability in session.inc.php in
...)
-	TODO: check
+	NOT-FOR-US: ISPConfig
 CVE-2006-2314
 	RESERVED
 CVE-2006-2313
@@ -525,7 +525,7 @@
 CVE-2006-2239 (SQL injection vulnerability in readarticle.php in Newsadmin 1.1
allows ...)
 	NOT-FOR-US: Newsadmin
 CVE-2006-2238 (Heap-based buffer overflow in Apple QuickTime before 7.1 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: Apple
 CVE-2006-2237 (The web interface for AWStats 6.4 and 6.5, when statistics
updates are ...)
 	{DSA-1058-1}
 	- awstats 6.5-2 (bug #365909; bug #365910; medium)
@@ -603,7 +603,7 @@
 CVE-2006-2210 (Cross-site scripting (XSS) vulnerability in index.php in 321soft
...)
 	NOT-FOR-US: 321soft PhP-Gallery
 CVE-2006-2209 (Multiple SQL injection vulnerabilities in index.php in PHP Arena
...)
-	TODO: check
+	NOT-FOR-US: paCheckBook
 CVE-2006-2208 (Multiple cross-site scripting (XSS) vulnerabilities in
mynews.inc.php ...)
 	NOT-FOR-US: paCheckBook
 CVE-2006-2207
@@ -685,24 +685,24 @@
 CVE-2006-2168 (FileProtection Express 1.0.1 and earlier allows remote attackers
to ...)
 	NOT-FOR-US: FileProtection Express
 CVE-2006-2167 (Cross-site scripting (XSS) vulnerability in SloughFlash SF-Users
1.0, ...)
-	TODO: check
+	NOT-FOR-US: SloughFlash
 CVE-2006-2166 (Unspecified vulnerability in the HTTP management interface in
Cisco ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2006-2165 (Multiple cross-site scripting (XSS) vulnerabilities in Avactis
...)
-	TODO: check
+	NOT-FOR-US: Avactis
 CVE-2006-2164 (Multiple SQL injection vulnerabilities in Avactis Shopping Cart
0.1.2 ...)
-	TODO: check
+	NOT-FOR-US: Avactis
 CVE-2006-2163 (Cross-site scripting (XSS) vulnerability in index.php in
Pinnacle Cart ...)
-	TODO: check
+	NOT-FOR-US: Pinnacle
 CVE-2006-2162 (Buffer overflow in CGI scripts in Nagios 1.x before 1.4 and 2.x
before ...)
 	- nagios 2:1.4-1 (bug #366682; bug #366803; medium)
 	- nagios2 2.3-1 (bug #366683; medium)
 CVE-2006-2161 (Buffer overflow in (1) TZipBuilder 1.79.03.01 and (2) Abakt
0.9.2 and ...)
-	TODO: check
+	NOT-FOR-US: TZipBuilder/Abakt
 CVE-2006-2160 (Cross-site scripting (XSS) vulnerability in Russcom Network
Loginphp ...)
-	TODO: check
+	NOT-FOR-US: Russcom
 CVE-2006-2159 (CRLF injection vulnerability in help.php in Russcom Network
Loginphp ...)
-	TODO: check
+	NOT-FOR-US: Russcom
 CVE-2006-2158 (Dynamic variable evaluation vulnerability in index.php in
Stadtaus ...)
 	TODO: check
 CVE-2006-2157 (SQL injection vulnerability in gallery.php in Plogger Beta 2.1
and ...)
Secure testing commits - May 2006 - r4010 - data/CVE

[Secure-testing-commits] r4010 - data/CVE
