stef-guest at alioth.debian.org
2007-Aug-29 19:29 UTC
[Secure-testing-commits] r6431 - data/CVE
Author: stef-guest Date: 2007-08-29 19:29:30 +0000 (Wed, 29 Aug 2007) New Revision: 6431 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-08-29 19:18:22 UTC (rev 6430) +++ data/CVE/list 2007-08-29 19:29:30 UTC (rev 6431) @@ -117,17 +117,17 @@ CVE-2007-4528 (The Foreign Function Interface (ffi) extension in PHP 5.0.5 does not ...) NOT-FOR-US: ffi extension for php CVE-2007-4527 (Unrestricted file upload vulnerability in phUploader.php in phphq.Net ...) - TODO: check + NOT-FOR-US: phUploader CVE-2007-4526 (The Client Login Extension (CLE) in Novell Identity Manager before ...) - TODO: check + NOT-FOR-US: Novell Identity Manager CVE-2007-4525 (** DISPUTED ** ...) TODO: check CVE-2007-4524 (PHP remote file inclusion vulnerability in adisplay.php in PhPress ...) - TODO: check + NOT-FOR-US: PhPress CVE-2007-4523 (Multiple cross-site scripting (XSS) vulnerabilities in Ripe Website ...) - TODO: check + NOT-FOR-US: Ripe Website Manager CVE-2007-4522 (Multiple SQL injection vulnerabilities in Ripe Website Manager 0.8.9 ...) - TODO: check + NOT-FOR-US: Ripe Website Manager CVE-2007-4521 (Asterisk Open Source 1.4.5 through 1.4.11, when configured to use an ...) - asterisk <unfixed> (low) NOTE: Patch: http://lists.digium.com/pipermail/asterisk-commits/2007-August/015743.html @@ -159,30 +159,30 @@ RESERVED TODO: check CVE-2007-4511 (The Sun Admin Console in Sun Application Server 9.0_0.1 does not apply ...) - TODO: check + NOT-FOR-US: Sun Application Server CVE-2007-4510 (ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and ...) - clamav 0.91.2-1 [sarge] - clamav <not-affected> (Vulnerable code not present) CVE-2007-4509 (SQL injection vulnerability in index.php in the EventList component ...) - TODO: check + NOT-FOR-US: EventList component for Joomla! CVE-2007-4508 (Stack-based buffer overflow in Rebellion Asura engine, as used for the ...) - TODO: check + NOT-FOR-US: Rebellion Asura engine CVE-2007-4507 (Multiple buffer overflows in the php_ntuser component for PHP 5.2.3 ...) TODO: check CVE-2007-4506 (SQL injection vulnerability in index.php in the NeoRecruit component ...) - TODO: check + NOT-FOR-US: NeoRecruit component for Joomla! CVE-2007-4505 (SQL injection vulnerability in index.php in the RemoSitory component ...) - TODO: check + NOT-FOR-US: RemoSitory component for Mambo CVE-2007-4504 (Directory traversal vulnerability in index.php in the RSfiles ...) - TODO: check + NOT-FOR-US: RSfiles component for Joomla! CVE-2007-4503 (SQL injection vulnerability in index.php in the Nice Talk component ...) - TODO: check + NOT-FOR-US: Nice Talk component for Joomla! CVE-2007-4502 (SQL injection vulnerability in index.php in the BibTeX component ...) - TODO: check + NOT-FOR-US: BibTeX component for Joomla! CVE-2007-4501 (Unspecified vulnerability in PassphraseRequester in SSHKeychain before ...) - TODO: check + NOT-FOR-US: SSHKeychain CVE-2007-4500 (Unspecified vulnerability in TunnelRunner in SSHKeychain before 0.8.2 ...) - TODO: check + NOT-FOR-US: SSHKeychain CVE-2007-4499 (Unrestricted file upload vulnerability in output.php in American ...) TODO: check CVE-2007-4498 (The Grandstream SIP Phone GXV-3000 with firmware 1.0.1.7, Loader ...)