Secure testing commits - Jan 2007 - r5269 - data/CVE

Author: jmm-guest
Date: 2007-01-16 00:25:59 +0100 (Tue, 16 Jan 2007)
New Revision: 5269

Modified:
   data/CVE/list
Log:
new phpmyadmin non-issue
NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-01-15 23:12:55 UTC (rev 5268)
+++ data/CVE/list	2007-01-15 23:25:59 UTC (rev 5269)
@@ -269,7 +269,8 @@
 CVE-2007-0096 (CarbonCommunities stores sensitive information under the web
root with ...)
 	TODO: check
 CVE-2007-0095 (phpMyAdmin 2.9.1.1 allows remote attackers to obtain sensitive
...)
-	TODO: check
+	- phpmyadmin <unfixed> (bug #399329; unimportant)
+	NOTE: Only path disclosure
 CVE-2007-0094 (Sven Moderow GuestBook 0.3a stores sensitive information under
the web ...)
 	TODO: check
 CVE-2007-0093 (SQL injection vulnerability in page.php in Simple Web Content
...)
@@ -517,27 +518,27 @@
 CVE-2007-0035
 	RESERVED
 CVE-2007-0034 (Microsoft Outlook 2000, 2002, and 2003 allows user-assisted
remote attackers ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Outlook
 CVE-2007-0033 (Microsoft Outlook 2002 and 2003 allows user-assisted remote
attackers to ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Outlook
 CVE-2007-0032
 	RESERVED
 CVE-2007-0031 (Heap-based buffer overflow in Microsoft Excel 2000 SP3, 2002
SP3, 2003 SP2, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Excel
 CVE-2007-0030 (Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and
v.X ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Excel
 CVE-2007-0029 (Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and
v.X for Mac ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Excel
 CVE-2007-0028 (Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and
v.X ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Excel
 CVE-2007-0027 (Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and
v.X for Mac ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Excel
 CVE-2007-0026
 	RESERVED
 CVE-2007-0025
 	RESERVED
 CVE-2007-0024 (Integer overflow in the Vector Markup Language (VML)
implementation ...)
-	TODO: check
+	NOT-FOR-US: Microsoft IE
 CVE-2007-0023
 	RESERVED
 CVE-2007-0022