Secure testing commits - Nov 2007 - r7185 - data/CVE

Author: nion
Date: 2007-11-01 21:24:07 +0000 (Thu, 01 Nov 2007)
New Revision: 7185

Modified:
   data/CVE/list
Log:
NFUs

Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-11-01 21:14:11 UTC (rev 7184)
+++ data/CVE/list	2007-11-01 21:24:07 UTC (rev 7185)
@@ -103,129 +103,129 @@
 CVE-2007-5741
 	RESERVED
 CVE-2004-2745 (Directory traversal vulnerability in Anteco Visual Technologies
...)
-	TODO: check
+	NOT-FOR-US: Anteco Visual Technologies OwnServer
 CVE-2002-2425 (Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to
execute ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2424 (Cross-site scripting (XSS) vulnerability in PHP(Reactor) 1.2.7
pl1 ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2423 (Sendmail 8.12.0 through 8.12.6 truncates log messages longer
than 100 ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2422 (Cross-site scripting (XSS) vulnerability in Compaq Insight
Management ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2421 (acWEB 1.14 allows remote attackers to cause a denial of service
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2420 (site_searcher.cgi in Super Site Searcher allows remote attackers
to ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2419 (Direct connect text client (DCTC) client 0.83.3 allows remote
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2418 (Cross-site scripting (XSS) vulnerability in acFreeProxy (aka
acFP) ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2417 (acFTP 1.4 does not properly handle when an invalid password is
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2416 (Directory traversal vulnerability in Zeroo web server 1.5 allows
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2415 (Allied Telesyn AT-8024 1.3.1 and Rapier 24 switches allow remote
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2414 (Opera 6.0.3, when using Squid 2.4 for HTTPS proxying, does not
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2413 (WebSite Pro 3.1.11.0 on Windows allows remote attackers to read
script ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2412 (Winamp 2.80 stores authentication credentials in plaintext in
the (1) ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2411 (Buffer overflow in badmin.c in BannerWheel 1.0 allows remote
attackers ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2410 (openwebmail.pl in Open WebMail 1.7 and 1.71 reveals sensitive
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2409 (Photon microGUI in QNX Neutrino realtime operating system (RTOS)
6.1.0 ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2408 (Gordano Messaging Server (GMS) Mail 8 (a.k.a. NTMail) only
filters ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2407 (Certain patches for QNX Neutrino realtime operating system
(RTOS) ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2406 (Buffer overflow in HTTP server in LiteServe 2.0, 2.0.1 and 2.0.2
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2405 (Check Point FireWall-1 4.1 and Next Generation (NG), with
UserAuth ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2404 (Buffer overflow in IISPop email server 1.161 and 1.181 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2403 (Directory traversal vulnerability in KeyFocus web server 1.0.8
allows ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2402 (SURECOM broadband router EP-4501 uses a default SNMP read
community ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2401 (NT Virtual DOS Machine (NTVDM.EXE) in Windows 2000, NT and XP
does not ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2400 (Buffer overflow in the httpdProcessRequest function in LibHTTPD
1.2 ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2399 (Directory traversal vulnerability in viewAttachment.cgi in
W3Mail ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2398 (The new thread posting page in APBoard 2.02 and 2.03 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2397 (Sygate personal firewall 5.0 could allow remote attackers to
bypass ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2396 (Buffer overflow in Advanced TFTP (atftp) 0.5 and 0.6, if
installed ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2395 (InterScan VirusWall 3.52 for Windows allows remote attackers to
bypass ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2394 (InterScan VirusWall 3.6 for Linux and 3.52 for Windows allows
remote ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2393 (Serv-U FTP server 3.0, 3.1 and 4.0.0.4 does not accept new
connections ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2392 (Winamp 2.65 through 3.0 stores skin files in a predictable file
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2391 (SQL injection vulnerability in index.php of WebChat 1.5 included
in ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2390 (Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351,
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2389 (TheServer 1.74 web server stores server.ini under the web
document ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2388 (Buffer overflow in INweb POP3 mail server 2.01 allows remote
attackers ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2387 (Directory traversal vulnerability in Hyperion FTP server 2.8.1
allows ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2386 (Cross-site scripting (XSS) vulnerability in the Quizz module for
XOOPS ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2385 (Buffer overflow in hotfoon4.exe in Hotfoon 4.0 allows remote
attackers ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2384 (hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2383 (SQL injection vulnerability in f2html.pl 0.1 through 0.4 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2382 (cvsupd.sh in CVSup 1.2 allows local users to overwrite arbitrary
files ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2381 (Multiple buffer overflows in (1) tetrinet_inmessage, (2)
speclist_add ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2380 (NetDSL ADSL Modem 800 with Microsoft Network firmware 5.5.11
allows ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2379 (** DISPUTED ** ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2378 (Cross-site scripting (XSS) vulnerability in AN HTTP 1.41d allows
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2377 (Cross-site scripting (XSS) vulnerability in addentry.cgi in ZAP
1.0.3 ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2376 (Cross-site scripting (XSS) vulnerability in E-Guest_sign.pl in
E-Guest ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2375 (Directory traversal vulnerability in CommuniGate Pro 4.0b4 and
...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2374 (Unspecified vulnerability in pprosetup in Sun PatchPro 2.0 has
unknown ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2373 (The default configuration of the TCP/IP printer configuration
utility ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2372 (The telnet server in Infoprint 21 running controller software
before ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2371 (Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to
cause ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2370 (SWS web server 0.0.4, 0.0.3 and 0.1.0 allows remote attackers to
cause ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2369 (Perception LiteServe 2.0 allows remote attackers to read
password ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2368 (Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier
allow ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2367 (Off-by-one buffer overflow in NEC SOCKS5 1.0 r11 and earlier
allows ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2366 (Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and
0.73 ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-2365 (Simple WAIS (SWAIS) 1.11 allows remote attackers to execute
arbitrary ...)
-	TODO: check
+	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2007-5740 (The format string protection mechanism in IMAPD for Perdition
Mail ...)
 	- perdition 1.17.1-1 (medium; bug #448853)
 CVE-2007-5751 (Liferea before 1.4.6 uses weak permissions (0644) for the ...)