Secure testing commits - Jun 2007 - r5967 - data/CVE

Author: fw
Date: 2007-06-02 08:01:30 +0000 (Sat, 02 Jun 2007)
New Revision: 5967

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-06-02 08:00:02 UTC (rev 5966)
+++ data/CVE/list	2007-06-02 08:01:30 UTC (rev 5967)
@@ -310,43 +310,43 @@
 CVE-2007-2821 (SQL injection vulnerability in wp-admin/admin-ajax.php in
WordPress ...)
 	- wordpress 2.2-1 (high)
 CVE-2007-2820 (Multiple stack-based buffer overflows in the KSign KSignSWAT
ActiveX ...)
-	TODO: check
+	NOT-FOR-US: KSign
 CVE-2007-2819 (Cross-site scripting (XSS) vulnerability in reportItem.do in
Track+ ...)
-	TODO: check
+	NOT-FOR-US: Track+
 CVE-2007-2818 (Cross-site scripting (XSS) vulnerability in cand_login.asp in
...)
-	TODO: check
+	NOT-FOR-US: Parodia
 CVE-2007-2817 (SQL injection vulnerability in read/index.php in
ol''bookmarks 0.7.4 ...)
-	TODO: check
+	NOT-FOR-US: ol''bookmarks
 CVE-2007-2816 (Multiple PHP remote file inclusion vulnerabilities in
ol''bookmarks ...)
-	TODO: check
+	NOT-FOR-US: ol''bookmarks
 CVE-2007-2815 (The "hit-highlighting" functionality in
webhits.dll in Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft IIS
 CVE-2007-2814 (Multiple stack-based buffer overflows in the Pegasus
ImagN'' ActiveX ...)
-	TODO: check
+	NOT-FOR-US: Pegasus ImagN''
 CVE-2007-2813 (Cisco IOS 12.4 and earlier, when using the crypto packages and
SSL ...)
-	TODO: check
+	NOT-FOR-US: Cisco
 CVE-2007-2812 (Cross-site scripting (XSS) vulnerability in hlstats.php in
HLstats ...)
-	TODO: check
+	NOT-FOR-US: HLstats
 CVE-2007-2811 (Cross-site scripting (XSS) vulnerability in OSK Advance-Flow
4.41 and ...)
-	TODO: check
+	NOT-FOR-US: OSK Advance-Flow
 CVE-2007-2810 (SQL injection vulnerability in down_indir.asp in Gazi Download
Portal ...)
-	TODO: check
+	NOT-FOR-US: Gazi Download Portal
 CVE-2007-2809 (Buffer overflow in the transfer manager in Opera before 9.21 for
...)
-	TODO: check
+	NOT-FOR-US: Opera
 CVE-2007-2808 (Cross-site scripting (XSS) vulnerability in gnatsweb.pl in
Gnatsweb ...)
 	- gnatsweb <unfixed> (low; bug #427156)
 CVE-2007-2807 (Stack-based buffer overflow in mod/server.mod/servrmsg.c in
Eggdrop ...)
 	- eggdrop <unfixed> (medium; bug #427157)
 CVE-2007-2806 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
in ...)
-	TODO: check
+	NOT-FOR-US: GaliX
 CVE-2007-2805 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
in ...)
-	TODO: check
+	NOT-FOR-US: ClientExec
 CVE-2007-2804 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: CandyPress Store
 CVE-2007-2803 (SQL injection vulnerability in default.asp in Vizayn Urun
Tanitim ...)
-	TODO: check
+	NOT-FOR-US: Vizayn Urun Tanitim Sitesi
 CVE-2007-2802 (Cross-site scripting (XSS) vulnerability in
cp/ps/Main/login/Login in ...)
-	TODO: check
+	NOT-FOR-US: RM EasyMail Plus
 CVE-2007-2801
 	RESERVED
 CVE-2007-2800
@@ -618,13 +618,13 @@
 CVE-2007-2688 (The Cisco Intrusion Prevention System (IPS) and IOS with
Firewall/IPS ...)
 	NOT-FOR-US: Cisco
 CVE-2007-2687 (Stack-based buffer overflow in the MicroWorld Agent service ...)
-	TODO: check
+	NOT-FOR-US: MicroWorld
 CVE-2007-2686 (Cross-site scripting (XSS) vulnerability in index.php in Jetbox
CMS ...)
-	TODO: check
+	NOT-FOR-US: Jetbox CMS
 CVE-2007-2685 (Multiple SQL injection vulnerabilities in index.php in Jetbox
CMS 2.1 ...)
 	NOT-FOR-US: Jetbox CMS
 CVE-2007-2684 (Jetbox CMS 2.1 allows remote attackers to obtain sensitive
information ...)
-	TODO: check
+	NOT-FOR-US: Jetbox CMS
 CVE-2007-2683 (Buffer overflow in Mutt 1.4.2 might allow local users to execute
...)
 	- mutt <unfixed> (low; bug #426116)
 CVE-2007-2682 (The installer for Adobe Version Cue CS3 Server on Apple Mac OS
X, as ...)