Secure testing commits - Mar 2008 - r8320 - data/CVE

Author: nion
Date: 2008-03-12 12:59:32 +0000 (Wed, 12 Mar 2008)
New Revision: 8320

Modified:
   data/CVE/list
Log:
NFUs
new hordee issue (CVE-2008-1284)


Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-03-12 09:14:10 UTC (rev 8319)
+++ data/CVE/list	2008-03-12 12:59:32 UTC (rev 8320)
@@ -1,40 +1,39 @@
 CVE-2008-1288 (IBM Rational ClearQuest 7.0.1.1 and 7.0.0.2 might allow local or
...)
-	TODO: check
+	NOT-FOR-US: IBM Rational ClearQuest
 CVE-2008-1287 (IBM Rational ClearQuest 7.0.1.1 and 7.0.0.2 ggenerates different
error ...)
-	TODO: check
+	NOT-FOR-US: IBM Rational ClearQuest
 CVE-2008-1286 (Unspecified vulnerability in Sun Java Web Console 3.0.2, 3.0.3,
and ...)
-	TODO: check
+	NOT-FOR-US: Sun Javav Web Console
 CVE-2008-1285 (Cross-site scripting (XSS) vulnerability in Sun Java Server
Faces ...)
-	TODO: check
+	NOT-FOR-US: Sun Java Server Faces
 CVE-2008-1284 (Directory traversal vulnerability in Horde 3.1.6, Groupware
before ...)
-	TODO: check
+	- horde3 <unfixed> (medium; bug #470640)
 CVE-2008-1283 (Cross-site scripting (XSS) vulnerability in Neptune Web Server
3.0 ...)
-	TODO: check
+	NOT-FOR-US: Neptune Web Server
 CVE-2008-1282 (Buffer overflow in the BFup ActiveX control (BFup.dll) in
B21Soft BFup ...)
-	TODO: check
+	NOT-FOR-US: B21Soft BFup
 CVE-2008-1281 (Directory traversal vulnerability in TFTPsrvs.exe 2.5.3.1 and
earlier, ...)
-	TODO: check
+	NOT-FOR-US: Argon Technology Client Management Services
 CVE-2008-1280 (Acronis True Image Windows Agent 1.0.0.54 and earlier, included
in ...)
-	TODO: check
+	NOT-FOR-US: Acronis True Image
 CVE-2008-1279 (Acronis True Image Group Server 1.5.19.191 and earlier, included
in ...)
-	TODO: check
+	NOT-FOR-US: Acronis True Image
 CVE-2008-1278 (The RemotelyAnywhere.exe service in the Remotely Anywhere Server
and ...)
-	TODO: check
+	NOT-FOR-US: Remotely Anywhere
 CVE-2008-1277 (The IMAP service (MEIMAPS.exe) in MailEnable Professional
Edition and ...)
-	TODO: check
+	NOT-FOR-US: MailEnable
 CVE-2008-1276 (Multiple buffer overflows in the IMAP service (MEIMAPS.EXE) in
...)
-	TODO: check
+	NOT-FOR-US: MailEnable
 CVE-2008-1275 (Multiple unspecified vulnerabilities in the SMTP service in
MailEnable ...)
-	TODO: check
+	NOT-FOR-US: MailEnable
 CVE-2008-1274 (Untrusted search path vulnerability in man in IBM AIX 6.1.0
invokes ...)
-	TODO: check
+	NOT-FOR-US: IBM AIX
 CVE-2008-1273 (Multiple cross-site scripting (XSS) vulnerabilities in imageVue
1.7 ...)
-	TODO: check
+	NOT-FOR-US: imageVue
 CVE-2008-1272 (Multiple SQL injection vulnerabilities in BM Classifieds
20080309 and ...)
-	TODO: check
+	NOT-FOR-US: BM Classifieds
 CVE-2008-1271
 	REJECTED
-	TODO: check
 CVE-2004-2759 (Shared Sun StorEdge QFS and SAM-QFS file systems, as used in
...)
 	TODO: check
 CVE-2008-1270 (mod_userdir in lighttpd 1.4.18 and earlier, when userdir.path is
not ...)
@@ -171,9 +170,9 @@
 CVE-2008-1204 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
 	NOT-FOR-US: Sun Java System
 CVE-2008-1203 (The administrator interface for Adobe ColdFusion 8 and
ColdFusion MX7 ...)
-	TODO: check
+	NOT-FOR-US: Adobe ColdFusion
 CVE-2008-1202 (Cross-site scripting (XSS) vulnerability in the web management
...)
-	TODO: check
+	NOT-FOR-US: Adobe LiveCycle Workflow
 CVE-2008-1201
 	RESERVED
 CVE-2008-1200 (Unspecified vulnerability in Microsoft Access allows remote ...)