Author: frolic-guest Date: 2007-03-27 14:08:55 +0000 (Tue, 27 Mar 2007) New Revision: 5594 Modified: data/CVE/list Log: Some NFUs fixed. Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-03-27 03:44:36 UTC (rev 5593) +++ data/CVE/list 2007-03-27 14:08:55 UTC (rev 5594) @@ -157,7 +157,7 @@ CVE-2006-7172 (Multiple SQL injection vulnerabilities in php-stats.recphp.php in ...) NOT-FOR-US: PHP-Stats CVE-2003-1322 (Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR ...) - TODO: check + NOT-FOR-US: MERCUR IMAPD CVE-2007-1561 (Asterisk before 1.2.17 and 1.4.x before 1.4.2 allows remote attackers ...) - asterisk <unfixed> (bug #415466; medium) NOTE: http://voipsa.org/pipermail/voipsec_voipsa.org/2007-March/002275.html @@ -174,7 +174,7 @@ CVE-2007-1513 (PHP remote file inclusion vulnerability in comanda.php in GraFX ...) NOT-FOR-US: WebSite Builder CVE-2007-1512 (Stack-based buffer overflow in the AfxOleSetEditMenu function in the ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2007-1511 (Buffer overflow in FrontBase Relational Database Server 4.2.7 and ...) NOT-FOR-US: FrontBase Relational Database Server CVE-2007-1510 (SQL injection vulnerability in post.php in Particle Blogger 1.0.0 ...) @@ -203,7 +203,7 @@ CVE-2007-1500 (The Linux Security Auditing Tool (LSAT) allows local users to ...) NOT-FOR-US: Linux Security Auditing Tool CVE-2007-1499 (Cross-site scripting (XSS) vulnerability in Microsoft Internet ...) - TODO: check + NOT-FOR-US: Internet Explorer CVE-2007-1498 (Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ...) NOT-FOR-US: SiteManager.SiteMgr.1 ActiveX control CVE-2007-1497 (nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not ...) @@ -217,7 +217,7 @@ CVE-2007-1493 (nukesentinel.php in NukeSentinel 2.5.06 and earlier uses a permissive ...) NOT-FOR-US: NukeSentinel CVE-2007-1492 (winmm.dll in Microsoft Windows XP allows user-assisted remote ...) - TODO: check + NOT-FOR-US: Microsoft Windows XP CVE-2007-1491 (Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3.1.3, and ...) NOT-FOR-US: Avaya S87XX CVE-2007-1490 (Unspecified maintenance web pages in Avaya S87XX, S8500, and S8300 ...) @@ -352,7 +352,7 @@ CVE-2005-4833 (IBM WebSphere Application Server (WAS) 6.0 before 20050201, when ...) NOT-FOR-US: IBM WebSphere Application Server CVE-2003-1321 (Buffer overflow in Avant Browser 8.02 allows remote attackers to cause ...) - TODO: check + NOT-FOR-US: Avant Browser CVE-2007-1437 (Unspecified vulnerability in LedgerSMB before 1.1.5 and SQL-Ledger ...) - sql-ledger <unfixed> (bug #409703) CVE-2007-1436 (Unspecified vulnerability in admin.pl in SQL-Ledger before 2.6.26 and ...) @@ -744,7 +744,7 @@ CVE-2007-1279 RESERVED CVE-2007-1278 (Unspecified vulnerability in the IIS connector in Adobe JRun 4.0 ...) - TODO: check + NOT-FOR-US: Adobe JRun and Coldfusion CVE-2007-1277 (WordPress 2.1.1, as downloaded from some official distribution sites ...) - wordpress <not-affected> (orig.tar.gz not compromised) CVE-2007-1276 (Multiple cross-site scripting (XSS) vulnerabilities in chooser.cgi in ...) @@ -2419,7 +2419,7 @@ CVE-2007-0724 (The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through ...) NOT-FOR-US: Apple Mac CVE-2007-0723 (Unspecified vulnerability in the authentication feature for ...) - TODO: check + NOT-FOR-US: Mac OS X CVE-2007-0722 (Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 ...) NOT-FOR-US: Apple Mac CVE-2007-0721 (Unspecified vulnerability in diskimages-helper in Apple Mac OS X ...)