Author: stef-guest Date: 2006-08-09 19:00:51 +0000 (Wed, 09 Aug 2006) New Revision: 4541 Modified: data/CVE/list Log: some NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-08-09 17:20:16 UTC (rev 4540) +++ data/CVE/list 2006-08-09 19:00:51 UTC (rev 4541) @@ -32,7 +32,7 @@ CVE-2006-4012 (Multiple PHP remote file inclusion vulnerabilities in circeOS SaveWeb ...) NOT-FOR-US: circeOS SaveWeb CVE-2006-4011 (PHP remote file inclusion vulnerability in ...) - TODO: check + NOT-FOR-US: Kayako eSupport CVE-2006-4010 (SQL injection vulnerability in war.php in Virtual War (Vwar) 1.5.0 and ...) NOT-FOR-US: Virtual War CVE-2006-4009 (Cross-site scripting (XSS) vulnerability in war.php in Virtual War ...) @@ -600,29 +600,29 @@ CVE-2006-3775 (SQL injection vulnerability in class_session.php in MyBB (aka ...) NOT-FOR-US: MyBB CVE-2006-3774 (PHP remote file inclusion vulnerability in performs.php in the ...) - TODO: check + NOT-FOR-US: perForms component (com_performs) for Joomla! CVE-2006-3773 (PHP remote file inclusion vulnerability in smf.php in the SMF-Forum ...) - TODO: check + NOT-FOR-US: MF-Forum Bridge Component (com_smf) For Joomla! and Mambo CVE-2006-3772 (PHP-Post 0.21 and 1.0, and possibly earlier versions, when auto-login ...) - TODO: check + NOT-FOR-US: PHP-Post CVE-2006-3771 (Multiple PHP remote file inclusion vulnerabilities in component.php in ...) - TODO: check + NOT-FOR-US: iManage CMS CVE-2006-3770 (Multiple SQL injection vulnerabilities in index.php in phpFaber ...) - TODO: check + NOT-FOR-US: phpFaber TopSites CVE-2006-3769 (Multiple cross-site scripting (XSS) vulnerabilities in Top XL 1.1 and ...) - TODO: check + NOT-FOR-US: Top XL CVE-2006-3768 (Integer underflow in filecpnt.exe in FileCOPA FTP Server 1.01 before ...) - TODO: check + NOT-FOR-US: FileCOPA FTP Server CVE-2006-3767 (Cross-site scripting (XSS) vulnerability in showprofile.php in ...) - TODO: check + NOT-FOR-US: Darren''s $5 Script Archive osDate CVE-2006-3766 (Darren''s $5 Script Archive osDate 1.1.7 and earlier allows users to ...) - TODO: check + NOT-FOR-US: Darren''s $5 Script Archive osDate CVE-2006-3765 (Multiple cross-site scripting (XSS) vulnerabilities in Huttenlocher ...) - TODO: check + NOT-FOR-US: uttenlocher Webdesign hwdeGUEST CVE-2006-3764 (Till Gerken phpPolls 1.0.3 allows remote attackers to create a new ...) - TODO: check + NOT-FOR-US: phpPolls CVE-2006-3763 (SQL injection vulnerability in category.php in Diesel Joke Site allows ...) - TODO: check + NOT-FOR-US: Diesel Joke Site CVE-2006-3762 (The Touch Control ActiveX control 2.0.0.55 allows remote attackers to ...) NOT-FOR-US: Touch Control ActiveX control CVE-2006-3761 (Cross-site scripting (XSS) vulnerability in inc/function_post.php in ...) @@ -1056,7 +1056,7 @@ CVE-2006-3571 (Multiple cross-site scripting (XSS) vulnerabilities in ...) NOT-FOR-US: Papoo CVE-2006-3570 (Cross-site scripting (XSS) vulnerability in the webform module in ...) - TODO: check + - drupal <not-affected> (webform module is not in Debian Drupal 4.5 package) CVE-2006-3569 (Unspecified vulnerability in IBM Data ONTAP 7.1 and 7.1.0.1, when used ...) NOT-FOR-US: IBM Data ONTAP CVE-2006-3568 (Multiple cross-site scripting (XSS) vulnerabilities in guestbook.php ...) @@ -1250,7 +1250,7 @@ CVE-2006-3474 (Multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO ...) NOT-FOR-US: Belchior Foundry vCard PRO CVE-2006-3473 (CRLF injection vulnerability in form_mail Drupal Module before 1.8.2.2 ...) - TODO: check + - drupal <not-affected> (form_mail Module not in debian) CVE-2006-3472 (Microsoft Internet Explorer 6.0 and 6.0 SP1 allows remote attackers to ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2006-3471 (Microsoft Internet Explorer 6 on Windows XP allows remote attackers to ...) @@ -8595,7 +8595,7 @@ CVE-2006-0396 (Buffer overflow in Mail in Apple Mac OS X 10.4 up to 10.4.5, when ...) NOT-FOR-US: Apple CVE-2006-0395 (The Download Validation in Mail in Mac OS X 10.4 does not properly ...) - TODO: check + NOT-FOR-US: Apple CVE-2006-0394 REJECTED CVE-2006-0393 (OpenSSH in Apple Mac OS X 10.4.7 allows remote attackers to cause a ...) @@ -21850,7 +21850,7 @@ CVE-2005-0986 (NLSCCSTR.DLL in the web service in IBM Lotus Domino Server 6.5.1, ...) NOT-FOR-US: Lotus Domino CVE-2005-0985 (Unspecified vulnerability in the Mac OS X kernel before 10.3.8 allows ...) - TODO: check + NOT-FOR-US: Apple CVE-2005-0984 (Buffer overflow in the G_Printf function in Star Wars Jedi Knight: ...) NOT-FOR-US: Star Wars game CVE-2005-0983 (Quake 3 engine, as used in multiple games, allows remote attackers to ...)