thr3ads.net - Secure testing commits - [Secure-testing-commits] r10678

If this information is useful, please help other people find it:
Share via:
atomo64-guest at alioth.debian.org
2008-Dec-11 20:32 UTC
[Secure-testing-commits] r10678 - data/CVE

Author: atomo64-guest
Date: 2008-12-11 20:32:30 +0000 (Thu, 11 Dec 2008)
New Revision: 10678

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-12-11 18:27:22 UTC (rev 10677)
+++ data/CVE/list	2008-12-11 20:32:30 UTC (rev 10678)
@@ -107,9 +107,9 @@
 CVE-2008-5366 (The postinst script in ppp 2.4.4rel on Debian GNU/Linux allows
local ...)
 	TODO: check
 CVE-2008-5365 (SQL injection vulnerability in VoteHistory.asp in
ActiveWebSoftwares ...)
-	TODO: check
+	NOT-FOR-US: ActiveWebSoftwares
 CVE-2008-5364 (Stack-based buffer overflow in the getPlus ActiveX control in
gp.ocx ...)
-	TODO: check
+	NOT-FOR-US: getPlus
 CVE-2008-5363 (The ActionScript 2 virtual machine in Adobe Flash Player 10.x
before ...)
 	TODO: check
 CVE-2008-5362 (The DefineConstantPool action in the ActionScript 2 virtual
machine in ...)
@@ -1088,7 +1088,7 @@
 	- nagios3 3.0.6-1 (low; bug #504894)
 	[etch] - nagios2 <no-dsa> (CSRF can only cause DoS and needs
admin''s browser)
 CVE-2008-4917 (Unspecified vulnerability in VMware Workstation 5.5.8 and
earlier, and ...)
-	TODO: check
+	NOT-FOR-US: VMware Workstation
 CVE-2008-4916
 	RESERVED
 CVE-2008-4915 (The CPU hardware emulation in VMware Workstation 6.0.5 and
earlier and ...)
@@ -1282,7 +1282,7 @@
 CVE-2008-4842
 	RESERVED
 CVE-2008-4841 (The WordPad Text Converter for Word 97 files in Microsoft
Windows 2000 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2008-4840
 	RESERVED
 CVE-2008-4839
@@ -1290,7 +1290,7 @@
 CVE-2008-4838
 	RESERVED
 CVE-2008-4837 (Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007
Gold and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4836
 	RESERVED
 CVE-2008-4835
@@ -2352,9 +2352,9 @@
 CVE-2008-4392
 	RESERVED
 CVE-2008-4391 (Stack-based buffer overflow in the SetSource method in the ...)
-	TODO: check
+	NOT-FOR-US: Cisco Linksys WVC54GC
 CVE-2008-4390 (The Cisco Linksys WVC54GC wireless video camera before firmware
1.25 ...)
-	TODO: check
+	NOT-FOR-US: Cisco Linksys WVC54GC
 CVE-2008-4389
 	RESERVED
 CVE-2008-4388
@@ -2642,41 +2642,41 @@
 CVE-2008-4270
 	RESERVED
 CVE-2008-4269 (The search-ms protocol handler in Windows Explorer in Microsoft
...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows Explorer
 CVE-2008-4268 (The Windows Search component in Microsoft Windows Vista Gold and
SP1 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Excel
 CVE-2008-4267
 	RESERVED
 CVE-2008-4266 (Microsoft Office Excel 2000 SP3, 2002 SP3, and 2003 SP3; Excel
Viewer ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Excel
 CVE-2008-4265 (Microsoft Office Excel 2000 SP3 allows remote attackers to
execute ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Excel
 CVE-2008-4264 (Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007
Gold and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Excel
 CVE-2008-4263
 	RESERVED
 CVE-2008-4262
 	RESERVED
 CVE-2008-4261 (Microsoft Internet Explorer 5.01 SP4, 6 SP1 on Windows 2000, and
6 on ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2008-4260 (Microsoft Internet Explorer 7 sometimes attempts to access a
deleted ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2008-4259 (Microsoft Internet Explorer 7 sometimes attempts to access ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2008-4258 (Microsoft Internet Explorer 5.01 SP4 and 6 SP1 does not properly
...)
-	TODO: check
+	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2008-4257
 	RESERVED
 CVE-2008-4256 (The Charts ActiveX control in Microsoft Visual Basic 6.0, Visual
...)
-	TODO: check
+	NOT-FOR-US: Microsoft Visual Basic
 CVE-2008-4255 (The Windows Common ActiveX control in Microsoft Visual Basic
6.0, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Visual Basic
 CVE-2008-4254 (The Hierarchical FlexGrid ActiveX control in Microsoft Visual
Basic ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Visual Basic
 CVE-2008-4253 (The FlexGrid ActiveX control in Microsoft Visual Basic 6.0,
Visual ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Visual Basic
 CVE-2008-4252 (The DataGrid ActiveX control in Microsoft Visual Basic 6.0 and
Visual ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Visual Basic
 CVE-2008-4251
 	RESERVED
 CVE-2008-4250 (The Server service in Microsoft Windows 2000 SP4, XP SP2 and
SP3, ...)
@@ -3218,23 +3218,23 @@
 CVE-2008-4033 (Cross-domain vulnerability in Microsoft XML Core Services 3.0
through ...)
 	NOT-FOR-US: Microsoft XML Core
 CVE-2008-4032 (Microsoft Office SharePoint Server 2007 Gold and SP1 and
Microsoft ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4031 (Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007
Gold and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4030 (Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007
Gold and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4029 (Cross-domain vulnerability in Microsoft XML Core Services 3.0
and 4.0, ...)
 	NOT-FOR-US: Microsoft XML Core
 CVE-2008-4028 (Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007
Gold and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4027 (Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007
Gold and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4026 (Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007
Gold and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4025 (Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007
Gold and ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4024 (Microsoft Office Word 2000 SP3 and 2002 SP3 and Office 2004 for
Mac ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4023 (Active Directory in Microsoft Windows 2000 SP4 does not properly
...)
 	NOT-FOR-US: Microsoft Windows
 CVE-2008-4022
@@ -4710,7 +4710,7 @@
 CVE-2008-3466 (Microsoft Host Integration Server (HIS) 2000, 2004, and 2006
does not ...)
 	NOT-FOR-US: Microsoft
 CVE-2008-3465 (Heap-based buffer overflow in an API in GDI in Microsoft Windows
2000 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows 
 CVE-2008-3464 (afd.sys in the Ancillary Function Driver (AFD) component in
Microsoft ...)
 	NOT-FOR-US: Microsoft
 CVE-2008-3463
@@ -5764,9 +5764,9 @@
 CVE-2008-3011
 	RESERVED
 CVE-2008-3010 (Microsoft Windows Media Player 6.4, Windows Media Format Runtime
7.1 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows Media Player
 CVE-2008-3009 (Microsoft Windows Media Player 6.4, Windows Media Format Runtime
7.1 ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows Media Player
 CVE-2008-3008 (Stack-based buffer overflow in the WMEncProfileManager ActiveX
control ...)
 	NOT-FOR-US: Microsoft Windows Media Encoder
 CVE-2008-3007 (Microsoft Office XP SP3, 2003 SP2 and SP3, 2007 Office System
Gold and ...)
@@ -7505,7 +7505,7 @@
 CVE-2008-2250 (The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server
2003 ...)
 	NOT-FOR-US: Microsoft
 CVE-2008-2249 (Integer overflow in GDI in Microsoft Windows 2000 SP4, XP SP2
and SP3, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2008-2248 (Cross-site scripting (XSS) vulnerability in Outlook Web Access
(OWA) ...)
 	NOT-FOR-US: Exchange Server
 CVE-2008-2247 (Cross-site scripting (XSS) vulnerability in Outlook Web Access
(OWA) ...)
Secure testing commits - Dec 2008 - r10678 - data/CVE

[Secure-testing-commits] r10678 - data/CVE
