Author: sf Date: 2009-01-03 12:25:25 +0000 (Sat, 03 Jan 2009) New Revision: 10842 Modified: data/CVE/list Log: more NFUs, new: pdfjam, zaptel Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-01-03 12:08:18 UTC (rev 10841) +++ data/CVE/list 2009-01-03 12:25:25 UTC (rev 10842) @@ -109,28 +109,28 @@ CVE-2008-5753 (Stack-based buffer overflow in BulletProof FTP Client 2.63 allows ...) NOT-FOR-US: BulletProof FTP Client CVE-2008-5752 (Directory traversal vulnerability in getConfig.php in the Page Flip ...) - TODO: check + NOT-FOR-US: Page Flip Image Gallery plugin for WordPress CVE-2008-5751 (SQL injection vulnerability in index.php in AlstraSoft Web Email ...) - TODO: check + NOT-FOR-US: AlstraSoft Web Email Script Enterprise CVE-2008-5750 (Argument injection vulnerability in Microsoft Internet Explorer 8 beta ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2008-5749 (** DISPUTED ** ...) - TODO: check + NOT-FOR-US: Google Chrome CVE-2008-5748 (Directory traversal vulnerability in plugins/spaw2/dialogs/dialog.php ...) - TODO: check + NOT-FOR-US: BloofoxCMS CVE-2008-5747 (F-Prot 4.6.8 for GNU/Linux allows remote attackers to bypass ...) - TODO: check + NOT-FOR-US: F-Prot CVE-2008-5746 (Sun SNMP Management Agent (SUNWmasf) 1.4u2 through 1.5.4 allows local ...) - TODO: check + NOT-FOR-US: Sun SNMP Management Agent CVE-2008-5745 (Integer overflow in Microsoft Windows Media Player 9, 10, and 11 ...) - TODO: check + NOT-FOR-US: Microsoft CVE-2009-XXXX [buffer overflow in libaudiofile] - audiofile <unfixed> (medium; bug #510205) TODO: request CVE id CVE-2008-5744 (Array index error in the dahdi/tor2.c driver in Zaptel (aka DAHDI) ...) - TODO: check + - zaptel <unfixed> (bug filed) CVE-2008-5743 (pdfjam creates the (1) pdf90, (2) pdfjoin, and (3) pdfnup files with a ...) - TODO: check + - pdfjam <unfixed> (low; bug filed) CVE-2008-5742 (Multiple open redirect vulnerabilities in AIST NetCat 3.12 and earlier ...) TODO: check CVE-2008-5741 @@ -138,17 +138,17 @@ CVE-2008-5740 RESERVED CVE-2008-5739 (SQL injection vulnerability in evb/check_url.php in Pligg CMS 9.9.5 ...) - TODO: check + NOT-FOR-US: Pligg CMS CVE-2008-5738 (Nodstrum MySQL Calendar 1.1 and 1.2 allows remote attackers to bypass ...) - TODO: check + NOT-FOR-US: Nodstrum MySQL Calendar CVE-2008-5737 (SQL injection vulnerability in index.php in Nodstrum MySQL Calendar ...) - TODO: check + NOT-FOR-US: Nodstrum MySQL Calendar CVE-2008-5736 (Multiple unspecified vulnerabilities in FreeBSD 6 before 6.4-STABLE, ...) TODO: check CVE-2008-5735 (Stack-based buffer overflow in skin.c in CoolPlayer 2.17 through 2.19 ...) - TODO: check + NOT-FOR-US: CoolPlayer CVE-2008-5734 (Cross-site scripting (XSS) vulnerability in WebMail Pro in IceWarp ...) - TODO: check + NOT-FOR-US: IceWarp Software Merak Mail Server CVE-2008-5733 (SQL injection vulnerability in blog.php in the Team Impact TI Blog ...) TODO: check CVE-2008-5732 (Unrestricted file upload vulnerability in lib/image_upload.php in ...)