jamie-guest at alioth.debian.org
2008-Nov-03 21:46 UTC
[Secure-testing-commits] r10267 - data/CVE
Author: jamie-guest Date: 2008-11-03 21:46:05 +0000 (Mon, 03 Nov 2008) New Revision: 10267 Modified: data/CVE/list Log: cve NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-11-03 21:23:04 UTC (rev 10266) +++ data/CVE/list 2008-11-03 21:46:05 UTC (rev 10267) @@ -2,21 +2,21 @@ REJECTED TODO: check CVE-2008-4878 (Unrestricted file upload vulnerability in the "Add Image Macro" ...) - TODO: check + NOT-FOR-US: - WebCards CVE-2008-4877 (SQL injection vulnerability in admin.php in WebCards 1.3, when ...) - TODO: check + NOT-FOR-US: - WebCards CVE-2008-4876 (Cross-site scripting (XSS) vulnerability in the web server component ...) - TODO: check + NOT-FOR-US: - Philips Electronics VOIP841 DECT Phone CVE-2008-4875 (Directory traversal vulnerability in the web server in Philips ...) - TODO: check + NOT-FOR-US: - Philips Electronics VOIP841 DECT Phone CVE-2008-4874 (The web component in Philips Electronics VOIP841 DECT Phone with ...) - TODO: check + NOT-FOR-US: - Philips Electronics VOIP841 DECT Phone CVE-2008-4873 (board.cgi in Sepal SPBOARD 4.5 allows remote attackers to execute ...) - TODO: check + NOT-FOR-US: - Sepal SPBOARD CVE-2008-4872 (Cross-site scripting (XSS) vulnerability in bidhistory.php in ...) - TODO: check + NOT-FOR-US: - iTechBids Gold CVE-2008-4871 (Cross-site scripting (XSS) vulnerability in My Little Forum 1.75 and ...) - TODO: check + NOT-FOR-US: - My Little Forum CVE-2008-4870 (dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and possibly ...) TODO: check CVE-2008-4869 (FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers ...) @@ -140,21 +140,21 @@ CVE-2008-4810 (The _expand_quoted_text function in libs/Smarty_Compiler.class.php in ...) TODO: check CVE-2008-4809 (Multiple unspecified vulnerabilities in the Profiles search pages in ...) - TODO: check + NOT-FOR-US: - IBM Lotus Connections CVE-2008-4808 (IBM Lotus Connections 2.x before 2.0.1 allows attackers to discover ...) - TODO: check + NOT-FOR-US: - IBM Lotus Connections CVE-2008-4807 (IBM Lotus Connections 2.x before 2.0.1 stores the password for the ...) - TODO: check + NOT-FOR-US: - IBM Lotus Connections CVE-2008-4806 (Multiple SQL injection vulnerabilities in IBM Lotus Connections 2.x ...) - TODO: check + NOT-FOR-US: - IBM Lotus Connections CVE-2008-4805 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus ...) - TODO: check + NOT-FOR-US: - IBM Lotus Connections CVE-2008-4804 (SQL injection vulnerability in the Gallery module 1.3 for PHP-Nuke ...) - TODO: check + NOT-FOR-US: NFU Gallery module 1.3 for PHP-Nuke CVE-2008-4803 (Cross-site scripting (XSS) vulnerability in index.php in Simple PHP ...) - TODO: check + NOT-FOR-US: - Simple PHP Scripts gallery CVE-2008-4802 (Cross-site scripting (XSS) vulnerability in complete.php in Simple PHP ...) - TODO: check + NOT-FOR-US: - Simple PHP Scripts blog CVE-2008-XXXX [buffer overflow via large mailbox in dmail/tmail of uw-imap] - uw-imap 7:2007d~dfsg-1 NOTE: CVE id requested on oss-sec @@ -12132,7 +12132,7 @@ CVE-2007-6433 (The getRenderedEjbql method in the org.jboss.seam.framework.Query ...) - jbosseam <itp> (bug #451956) CVE-2007-6432 (Stack-based buffer overflow in AldFs32.dll in Adobe PageMaker 7.0.1 ...) - TODO: check + NOT-FOR-US: - Adobe PageMaker CVE-2007-6431 (Unspecified vulnerability in Adobe Flash Media Server 2 before 2.0.5, ...) NOT-FOR-US: Adobe Flash Media Server CVE-2007-6430 (Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before 1.4.16, and ...)