Author: frolic-guest Date: 2007-01-12 03:03:53 +0100 (Fri, 12 Jan 2007) New Revision: 5245 Modified: data/CVE/list Log: CVE not-for-us entries updated. Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-01-11 21:41:05 UTC (rev 5244) +++ data/CVE/list 2007-01-12 02:03:53 UTC (rev 5245) @@ -74,19 +74,19 @@ CVE-2007-0168 TODO: check CVE-2007-0167 (Multiple PHP file inclusion vulnerabilities in WGS-PPC (aka PPC Search ...) - TODO: check + NOT-FOR-US: PPC Search CVE-2007-0166 RESERVED CVE-2007-0165 (Unspecified vulnerability in libnsl in Sun Solaris 8 and 9 allows ...) - TODO: check + NOT-FOR-US: Solaris CVE-2007-0164 (Camouflage 1.2.1 embeds password information in the carrier file, ...) - TODO: check + NOT-FOR-US: Camouflage CVE-2007-0163 (SecureKit Steganography 1.7.1 and 1.8 embeds password information in ...) - TODO: check + NOT-FOR-US: Steganography CVE-2007-0162 (Unsanity Application Enhancer (APE) 2.0.2 installs with insecure ...) - TODO: check + NOT-FOR-US: Mac OS X CVE-2007-0161 (The PML Driver HPZ12 (HPZipm12.exe) in the HP all-in-one drivers, as ...) - TODO: check + NOT-FOR-US: HP all-in-one drivers CVE-2007-0160 (Stack-based buffer overflow in the LiveJournal support ...) TODO: check CVE-2007-0159 (Directory traversal vulnerability in the GeoIP_update_database_general ...) @@ -96,21 +96,21 @@ CVE-2007-0157 (Array index error in the uri_lookup function in the URI parser for ...) TODO: check CVE-2007-0156 (M-Core stores the database under the web document root, which allows ...) - TODO: check + NOT-FOR-US: M-Core CVE-2007-0155 (HarikaOnline 2.0 stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: HarikaOnline CVE-2007-0154 (Webulas stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: Webulas CVE-2007-0153 (AJLogin 3.5 stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: AJLogin CVE-2007-0152 (OhhASP stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: OhhASP CVE-2007-0151 (MitiSoft stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: MitiSoft CVE-2007-0150 (Multiple PHP remote file inclusion vulnerabilities in index.php in ...) - TODO: check + NOT-FOR-US: Dayfox CVE-2007-0149 (EMembersPro 1.0 stores sensitive information under the web root with ...) - TODO: check + NOT-FOR-US: EMembersPro CVE-2007-0148 (Format string vulnerability in OmniGroup OmniWeb 5.5.1 allows remote ...) TODO: check CVE-2007-0147 (Cuyahoga before 1.0.1 installs the FCKEditor component with an ...) @@ -199,21 +199,21 @@ CVE-2007-0115 (Static code injection vulnerability in Coppermine Photo Gallery 1.4.10 ...) TODO: check CVE-2007-0114 (Sun Java System Content Delivery Server 5.0 and 5.0 PU1 allows remote ...) - TODO: check + NOT-FOR-US: Sun Java System Content Delivery Server CVE-2007-0113 (Buffer overflow in Packeteer PacketShaper PacketWise 8.x allows remote ...) - TODO: check + NOT-FOR-US: PacketWise CVE-2007-0112 (SQL injection vulnerability in cats.asp in createauction allows remote ...) TODO: check CVE-2007-0111 (Buffer overflow in Resco Photo Viewer for PocketPC 4.11 and 6.01, as ...) - TODO: check + NOT-FOR-US: PocketPC CVE-2007-0110 (Cross-site scripting (XSS) vulnerability in nidp/idff/sso in Novell ...) TODO: check CVE-2007-0109 (wp-login.php in WordPress 2.0.5 and earlier displays different error ...) TODO: check CVE-2007-0108 (nwgina.dll in Novell Client 4.91 SP3 for Windows 2000/XP/2003 does not ...) - TODO: check + NOT-FOR-US: Novell Client CVE-2007-0105 (Stack-based buffer overflow in the CSAdmin service in Cisco Secure ...) - TODO: check + NOT-FOR-US: Cisco CVE-2007-0104 (The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, ...) TODO: check CVE-2007-0103 (The Adobe PDF specification 1.3, as implemented by Adobe Acrobat ...) @@ -339,11 +339,11 @@ CVE-2006-6903 (Unspecified vulnerability in the Toshiba Bluetooth stack allows remote ...) TODO: check CVE-2006-6902 (Unspecified vulnerability in the Bluetooth stack in Microsoft Windows ...) - TODO: check + NOT-FOR-US: Windows Mobile CVE-2006-6901 (Unspecified vulnerability in the Bluetooth stack in Microsoft Windows ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2006-6900 (Unspecified vulnerability in the Bluetooth stack in Apple Mac OS 10.4 ...) - TODO: check + NOT-FOR-US: Mac OS CVE-2006-6899 (hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to ...) TODO: check CVE-2006-6898 (Widcomm Bluetooth for Windows (BTW) before 4.0.1.1500 allows remote ...)