Author: fw Date: 2007-05-26 09:24:22 +0000 (Sat, 26 May 2007) New Revision: 5927 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-05-26 09:14:09 UTC (rev 5926) +++ data/CVE/list 2007-05-26 09:24:22 UTC (rev 5927) @@ -143,32 +143,32 @@ CVE-2007-2735 (SQL injection vulnerability in edit_day.php in the ResManager 1.2.1 ...) TODO: check CVE-2007-2734 (The 3Com TippingPoint IPS do not properly handle certain full-width ...) - TODO: check + NOT-FOR-US: TippingPoint IPS CVE-2007-2733 (Unrestricted file upload vulnerability in Jetbox CMS allows remote ...) - TODO: check + NOT-FOR-US: Jetbox CMS CVE-2007-2732 (Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS ...) - TODO: check + NOT-FOR-US: Jetbox CMS CVE-2007-2731 (CRLF injection vulnerability in formmail.php in Jetbox CMS 2.1 might ...) - TODO: check + NOT-FOR-US: Jetbox CMS CVE-2007-2730 (Check Point ZoneAlarm Pro before 6.5.737.000 does not properly test ...) - TODO: check + NOT-FOR-US: Check Point Zone Labs ZoneAlarm Internet Security Suite CVE-2007-2729 (Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81, ...) - TODO: check + NOT-FOR-US: Comodo Personal Firewall CVE-2007-2728 (The soap extension in PHP calls php_rand_r with an uninitialized seed ...) - php5 <unfixed> (low) - php4 <not-affected> (no soap functions in php4) CVE-2007-2727 (The mcrypt_create_iv function in ext/mcrypt/mcrypt.c in PHP before ...) TODO: check CVE-2007-2726 (BitsCast 0.13.0 allows remote attackers to cause a denial of service ...) - TODO: check + NOT-FOR-US: BitsCast CVE-2007-2725 (The DB Software Laboratory DeWizardX (DEWizardAX.ocx) ActiveX control ...) - TODO: check + NOT-FOR-US: DeWizardX CVE-2007-2724 (Cross-site scripting (XSS) vulnerability in all_photos.html in fotolog ...) - TODO: check + NOT-FOR-US: fotolog CVE-2007-2723 (Media Player Classic 6.4.9.0 allows user-assisted remote attackers to ...) - TODO: check + NOT-FOR-US: guliverkli Media Player Classic CVE-2007-2722 (Unspecified vulnerability in NewzCrawler 1.8 allows remote attackers ...) - TODO: check + NOT-FOR-US: NewzCrawler CVE-2007-2721 (The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer ...) TODO: check CVE-2007-2720 (Group-Office before 2.16-13 does not properly validate user IDs, which ...)