Secure testing commits - Apr 2006 - r3833 - data/CVE

Author: stef-guest
Date: 2006-04-19 19:13:35 +0000 (Wed, 19 Apr 2006)
New Revision: 3833

Modified:
   data/CVE/list
Log:
cgiwrap already fixed
some NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2006-04-19 18:43:26 UTC (rev 3832)
+++ data/CVE/list	2006-04-19 19:13:35 UTC (rev 3833)
@@ -2477,44 +2477,42 @@
 	NOT-FOR-US: Teca Scripts Guestex
 CVE-2006-0775 (Multiple SQL injection vulnerabilities in show.php in BirthSys
3.1 ...)
 	NOT-FOR-US: BirthSys
-begin claimed by stef-guest
 CVE-2006-0774 (SQL injection vulnerability in deleteSession() in DB_eSession
library ...)
-	TODO: check
+	NOT-FOR-US: DB_eSession
 CVE-2006-0773 (Cross-site scripting (XSS) vulnerability in Hitachi Business
Logic - ...)
 	NOT-FOR-US: Hitachi Business Logic
 CVE-2006-0772 (SQL injection vulnerability in Hitachi Business Logic -
Container ...)
 	NOT-FOR-US: Hitachi Business Logic
 CVE-2006-0771 (Format string vulnerability in PunkBuster 1.180 and earlier, as
used ...)
-	TODO: check
+	NOT-FOR-US: PunkBuster
 CVE-2006-0770 (Cross-site scripting (XSS) vulnerability in calendar.php in ...)
-	TODO: check
+	NOT-FOR-US: MyBB
 CVE-2006-0769 (Unspecified vulnerability in in.rexecd in Solaris 10 allows
local ...)
-	TODO: check
+	NOT-FOR-US: Solaris
 CVE-2006-0768 (Kadu 0.4.3 allows remote attackers to cause a denial of service
...)
-	TODO: check
+	NOT-FOR-US: Kadu
 CVE-2006-0767 (CGIWrap before 3.10 allows remote attackers to obtain sensitive
...)
-	TODO: check
+	- cgiwrap 3.9-3.1
 CVE-2006-0766 (ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite
4.1, ...)
-	TODO: check
+	NOT-FOR-US: ICQ
 CVE-2006-0765 (GUI display truncation vulnerability in ICQ Inc. (formerly
Mirabilis) ...)
-	TODO: check
+	NOT-FOR-US: ICQ
 CVE-2006-0764 (The Authentication, Authorization, and Accounting (AAA)
capability in ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2006-0763 (Cross-site scripting (XSS) vulnerability in dowebmailforward.cgi
in ...)
-	TODO: check
+	NOT-FOR-US: cPanel (not the same as in the cpanel package)
 CVE-2006-0762 (WinAbility Folder Guard 4.11 allows local users to gain
unauthorized ...)
-	TODO: check
+	NOT-FOR-US: WinAbility Folder Guard
 CVE-2006-0761 (Buffer overflow in BlackBerry Attachment Service in Research in
Motion ...)
-	TODO: check
+	NOT-FOR-US: BlackBerry
 CVE-2006-0760 (LightTPD 1.4.8 and earlier, when the web root is on a
case-insensitive ...)
-	TODO: check
+	NOT-FOR-US: LightTPD on windows
 CVE-2006-0759 (Multiple SQL injection vulnerabilities in HiveMail 1.3 and
earlier ...)
-	TODO: check
+	NOT-FOR-US: HiveMail
 CVE-2006-0758 (Multiple cross-site scripting (XSS) vulnerabilities in HiveMail
1.3 ...)
-	TODO: check
+	NOT-FOR-US: HiveMail
 CVE-2006-0757 (Multiple eval injection vulnerabilities in HiveMail 1.3 and
earlier ...)
-	TODO: check
-end claimed by stef-guest
+	NOT-FOR-US: HiveMail
 CVE-2006-0756 (** DISPUTED ** ...)
 	NOT-FOR-US: dotProject
 CVE-2006-0755 (** DISPUTED ** ...)