Secure testing commits - May 2008 - r8674 - data/CVE

Author: white
Date: 2008-05-02 11:23:43 +0000 (Fri, 02 May 2008)
New Revision: 8674

Modified:
   data/CVE/list
Log:
More NFUs

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-05-02 11:22:44 UTC (rev 8673)
+++ data/CVE/list	2008-05-02 11:23:43 UTC (rev 8674)
@@ -110,43 +110,43 @@
 CVE-2008-1986 (Cross-site scripting (XSS) vulnerability in liste_article.php in
Blog ...)
 	NOT-FOR-US: PixelMotion
 CVE-2008-1985 (Cross-site scripting (XSS) vulnerability in base.php in
DigitalHive ...)
-	TODO: check
+	NOT-FOR-US: DigitalHive
 CVE-2008-1984 (The eTrust Common Services (Transport) Daemon (eCSqdmn) in CA
Secure ...)
-	TODO: check
+	NOT-FOR-US: eTrust
 CVE-2008-1983 (Cross-site scripting (XSS) vulnerability in Advanced Electron
Forum ...)
-	TODO: check
+	NOT-FOR-US: Advanced Electron Forum (AEF)
 CVE-2008-1982 (SQL injection vulnerability in ss_load.php in the Spreadsheet
(wpSS) ...)
 	TODO: check
 CVE-2008-1981 (Cross-site request forgery (CSRF) vulnerability in E-Publish 5.x
...)
-	TODO: check
+	NOT-FOR-US: e-publish
 CVE-2008-1980 (Cross-site scripting (XSS) vulnerability in E-Publish 5.x before
...)
-	TODO: check
+	NOT-FOR-US: e-publish
 CVE-2008-1979 (The Discovery Service (casdscvc) in CA ARCserve Backup
12.0.5454.0 and ...)
-	TODO: check
+	NOT-FOR-US: CA ARCserve Backup
 CVE-2008-1978 (Cross-site scripting (XSS) vulnerability in the Ubercart 5.x
before ...)
-	TODO: check
+	NOT-FOR-US: Ubercart
 CVE-2008-1977 (Cross-site request forgery (CSRF) vulnerability in the ...)
 	TODO: check
 CVE-2008-1976 (Multiple cross-site scripting (XSS) vulnerabilities in the
Drupal ...)
 	TODO: check
 CVE-2008-1975 (SQL injection vulnerability in index.php in E-RESERV 2.1 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: E-RESERV
 CVE-2008-1973 (Heap-based buffer overflow in SubEdit Player build 4056 and 4066
...)
-	TODO: check
+	NOT-FOR-US: SubEdit Player
 CVE-2008-1972 (Multiple cross-site scripting (XSS) vulnerabilities in the user
...)
-	TODO: check
+	NOT-FOR-US: Exponent CMS
 CVE-2008-1971 (phShoutBox Final 1.5 and earlier only checks passwords when
specified ...)
-	TODO: check
+	NOT-FOR-US: phShoutBox
 CVE-2008-1970 (muCommander before 0.8.2 stores credentials.xml with insecure
...)
-	TODO: check
+	NOT-FOR-US: muCommander
 CVE-2008-1969 (Multiple cross-site scripting (XSS) vulnerabilities in Cezanne
6.5.1 ...)
-	TODO: check
+	NOT-FOR-US: Cezanne
 CVE-2008-1968 (Multiple SQL injection vulnerabilities in Cezanne 7 allow remote
...)
-	TODO: check
+	NOT-FOR-US: Cezanne
 CVE-2008-1967 (Cross-site scripting (XSS) vulnerability in CFLogon/CFLogon.asp
in ...)
-	TODO: check
+	NOT-FOR-US: Cezanne
 CVE-2008-1966 (IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 on
Windows ...)
-	TODO: check
+	NOT-FOR-US: Windows specific
 CVE-2008-1965 (Argument injection vulnerability in the cai: URI handler in ...)
 	TODO: check
 CVE-2008-1964 (** DISPUTED ** ...)