keescook-guest at alioth.debian.org
2007-Aug-16 23:04 UTC
[Secure-testing-commits] r6344 - data/CVE
Author: keescook-guest Date: 2007-08-16 23:04:39 +0000 (Thu, 16 Aug 2007) New Revision: 6344 Modified: data/CVE/list Log: NFUs: 19 Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-08-16 21:14:08 UTC (rev 6343) +++ data/CVE/list 2007-08-16 23:04:39 UTC (rev 6344) @@ -510,29 +510,29 @@ CVE-2007-4129 RESERVED CVE-2007-4128 (SQL injection vulnerability in index.php in the Firestorm Technologies ...) - TODO: check + NOT-FOR-US: com_gmaps for Joomla! CVE-2007-4127 (** DISPUTED ** ...) - TODO: check + NOT-FOR-US: Ralf Image Gallery CVE-2007-4126 (Unspecified vulnerability in the dynamic tracing framework (DTrace) on ...) - TODO: check + NOT-FOR-US: Sun Solaris CVE-2007-4125 (Unspecified vulnerability in the Address and Routing Parameter Area ...) - TODO: check + NOT-FOR-US: HP-UX CVE-2007-4124 (The session failover function in Cosminexus Component Container in ...) - TODO: check + NOT-FOR-US: Cosminexus CVE-2007-4123 (The Groupmax Scheduler_Facilities management tool in Hitachi Groupmax ...) - TODO: check + NOT-FOR-US: Hitachi Groupmax CVE-2007-4122 (Unspecified vulnerability in Hitachi JP1/Cm2/Hierarchical Viewer (HV) ...) - TODO: check + NOT-FOR-US: Hitachi Hierarchical Viewer CVE-2007-4121 (Multiple SQL injection vulnerabilities in admin.aspx in E-Commerce ...) - TODO: check + NOT-FOR-US: E-Commerce Scripts Shopping Cart Script CVE-2007-4120 (** DISPUTED ** ...) - TODO: check + NOT-FOR-US: vBulletin CVE-2007-4119 (Multiple SQL injection vulnerabilities in yonetici.asp in Berthanas ...) - TODO: check + NOT-FOR-US: Defteri CVE-2007-4118 (PHP remote file inclusion vulnerability in includes/functions.inc.php ...) - TODO: check + NOT-FOR-US: phpVoter CVE-2007-4117 (** DISPUTED ** ...) - TODO: check + NOT-FOR-US: phpVoter CVE-2005-4860 (Spectrum Cash Receipting System before 6.504 uses weak cryptography ...) NOT-FOR-US: Spectrum Cash Receipting System CVE-2007-XXXX [teamspeak-server arbitrary file disclosure] @@ -1008,7 +1008,7 @@ CVE-2007-3892 RESERVED CVE-2007-3891 (Unspecified vulnerability in Windows Vista Weather Gadgets in Windows ...) - TODO: check + NOT-FOR-US: Windows Vista CVE-2007-3890 (Microsoft Excel in Office 2000 SP3, Office XP SP3, Office 2003 SP2, ...) TODO: check CVE-2007-3889 (Multiple SQL injection vulnerabilities in Insanely Simple Blog 0.5 and ...) @@ -1046,7 +1046,7 @@ CVE-2007-3873 RESERVED CVE-2007-3872 (Multiple stack-based buffer overflows in the Shared Trace Service ...) - TODO: check + NOT-FOR-US: HP OpenView CVE-2007-3871 RESERVED CVE-2006-7221 (Multiple off-by-one errors in fsplib.c in fsplib before 0.8 allow ...) @@ -1345,9 +1345,9 @@ CVE-2007-3744 (Heap-based buffer overflow in the UPnP IGD (Internet Gateway Device ...) TODO: check CVE-2007-3743 (Stack-based buffer overflow in bookmark handling in Apple Safari 3 ...) - TODO: check + NOT-FOR-US: Apple Safari CVE-2007-3742 (WebKit in Apple Safari 3 Beta before Update 3.0.3, and iPhone before ...) - TODO: check + NOT-FOR-US: Apple Safari CVE-2007-3741 RESERVED CVE-2007-3740 @@ -1420,7 +1420,7 @@ CVE-2007-3719 (The process scheduler in the Linux kernel 2.6.16 gives preference to ...) - linux-2.6 <unfixed> CVE-2007-3718 (Multiple unspecified vulnerabilities in the SVG parsing engine in ...) - TODO: check + NOT-FOR-US: Apple Safari CVE-2007-3717 (rcp on Sun Solaris 8, 9, and 10 before 20070710 does not properly call ...) NOT-FOR-US: Sun Solaris CVE-2007-3716 (The Java XML Digital Signature implementation in Sun JDK and JRE 6 ...) @@ -1822,7 +1822,7 @@ CVE-2007-3526 (Multiple SQL injection vulnerabilities in Buddy Zone 1.5 and earlier ...) NOT-FOR-US: Buddy Zone CVE-2007-3525 (Ripe Website Manager 0.8.9 and earlier allows remote attackers to ...) - TODO: check + NOT-FOR-US: Ripe Website Manager CVE-2007-3524 (Multiple PHP remote file inclusion vulnerabilities in Ripe Website ...) NOT-FOR-US: Ripe Website Manager CVE-2007-3523 (Multiple directory traversal vulnerabilities in Module/Galerie.php in ...) @@ -1840,7 +1840,7 @@ CVE-2007-3517 (Multiple cross-site scripting (XSS) vulnerabilities in Claroline 1.8.3 ...) NOT-FOR-US: Claroline CVE-2007-3516 (Multiple cross-site scripting (XSS) vulnerabilities in kayit.asp in ...) - TODO: check + NOT-FOR-US: Gorki Online Santrac Sitesi CVE-2007-3515 (SQL injection vulnerability in view_event.php in TotalCalendar 2.402 ...) NOT-FOR-US: TotalCalendar CVE-2006-7220 (Unspecified vulnerability in SAP SAPLPD and SAPSPRINT allows remote ...)