Secure testing commits - Feb 2008 - r8225 - data/CVE

Author: nion
Date: 2008-02-26 17:44:34 +0000 (Tue, 26 Feb 2008)
New Revision: 8225

Modified:
   data/CVE/list
Log:
NFUs, vmware not affected by directory traversal

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-02-26 16:07:41 UTC (rev 8224)
+++ data/CVE/list	2008-02-26 17:44:34 UTC (rev 8225)
@@ -81,25 +81,25 @@
 CVE-2008-0943 (Multiple SQL injection vulnerabilities in Eagle Software Aeries
...)
 	NOT-FOR-US: Eagle Software Aeries
 CVE-2008-0942 (SQL injection vulnerability in GradebookStuScores.asp in Eagle
...)
-	TODO: check
+	NOT-FOR-US: Eagle Software Aeries Browser Interface
 CVE-2008-0941 (Cross-site scripting (XSS) vulnerability in Eagle Software
Aeries ...)
-	TODO: check
+	NOT-FOR-US: Eagle Software Aeries Browser Interface
 CVE-2008-0940 (Cross-site scripting (XSS) vulnerability in Plain Black WebGUI
before ...)
-	TODO: check
+	NOT-FOR-US: Plain Black WebGUI
 CVE-2008-0939 (Multiple SQL injection vulnerabilities in wppa.php in the WP
Photo ...)
-	TODO: check
+	NOT-FOR-US: WP Photo Album plugin for WordPress
 CVE-2008-0938 (Unspecified vulnerability in the dynamic tracing framework
(DTrace) in ...)
-	TODO: check
+	NOT-FOR-US: Sun Solaris
 CVE-2008-0937 (SQL injection vulnerability in index.php in the Tiny Event
(tinyevent) ...)
-	TODO: check
+	NOT-FOR-US: XOOPS module
 CVE-2008-0936 (SQL injection vulnerability in index.php in the Prayer List ...)
-	TODO: check
+	NOT-FOR-US: XOOPS module
 CVE-2008-0935 (Stack-based buffer overflow in the Novell iPrint Control ActiveX
...)
-	TODO: check
+	NOT-FOR-US: Novell iPrint Client
 CVE-2008-0934 (SQL injection vulnerability in modules.php in the NukeC 2.1
module for ...)
-	TODO: check
+	NOT-FOR-US: NukeC phpnuke module
 CVE-2008-0933 (Multiple race conditions in the CPU Performance Counters (cpc)
...)
-	TODO: check
+	NOT-FOR-US: Sun Solaris
 CVE-2008-0931
 	RESERVED
 CVE-2008-0930
@@ -117,9 +117,9 @@
 CVE-2008-0924
 	RESERVED
 CVE-2008-0923 (Directory traversal vulnerability in the Shared Folders feature
for ...)
-	TODO: check
+	- vmware-package <not-affected> (Only vulnerable on windows hosted
systems)
 CVE-2008-0922 (SQL injection vulnerability in the Manuales 0.1 module for
PHP-Nuke ...)
-	TODO: check
+	NOT-FOR-US: Manuales module for PHP-Nuke
 CVE-2008-0921 (SQL injection vulnerability in news.php in beContent 0.3.1
allows ...)
 	TODO: check
 CVE-2008-0920 (SQL injection vulnerability in port/modifyportform.php in Open
Source ...)