thr3ads.net - Secure testing commits - [Secure-testing-commits] r11532

If this information is useful, please help other people find it:
Share via:
jmm-guest at alioth.debian.org
2009-Apr-01 21:42 UTC
[Secure-testing-commits] r11532 - data/CVE

Author: jmm-guest
Date: 2009-04-01 21:42:49 +0000 (Wed, 01 Apr 2009)
New Revision: 11532

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-04-01 21:33:39 UTC (rev 11531)
+++ data/CVE/list	2009-04-01 21:42:49 UTC (rev 11532)
@@ -77,51 +77,51 @@
 CVE-2009-1179
 	RESERVED
 CVE-2009-1178 (Unspecified vulnerability in the server in IBM Tivoli Storage
Manager ...)
-	TODO: check
+	NOT-FOR-US: Tivoli
 CVE-2009-1177 (Multiple stack-based buffer overflows in maptemplate.c in
mapserv in ...)
 	TODO: check
 CVE-2009-1176 (mapserv.c in mapserv in MapServer 4.x before 4.10.4 and 5.x
before ...)
 	TODO: check
 CVE-2008-6572 (SQL injection vulnerability in search_results.php in ABK-Soft
...)
-	TODO: check
+	NOT-FOR-US: ABK-Soft AbleDating
 CVE-2008-6571 (Multiple cross-site scripting (XSS) vulnerabilities in LinPHA
before ...)
-	TODO: check
+	NOT-FOR-US: LinPHA
 CVE-2008-6570 (Cross-site scripting (XSS) vulnerability in the RSS reader in
Cybozu ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Garoon
 CVE-2008-6569 (Session fixation vulnerability in Cybozu Garoon 2.0.0 through
2.1.3 ...)
-	TODO: check
+	NOT-FOR-US: Cybozu Garoon
 CVE-2008-6568 (Unrestricted file upload vulnerability in Yehe 2.0 allows remote
...)
-	TODO: check
+	NOT-FOR-US: Yehe
 CVE-2008-6567 (Multiple cross-site scripting (XSS) vulnerabilities in
Gallarific Free ...)
-	TODO: check
+	NOT-FOR-US: Gallarific Free Edition
 CVE-2008-6566 (Unspecified vulnerability in Octopussy before 0.9.5.8 has
unknown ...)
-	TODO: check
+	NOT-FOR-US: Octopussy
 CVE-2008-6565 (Cross-site scripting (XSS) vulnerability in Invision Power Board
2.3.1 ...)
-	TODO: check
+	NOT-FOR-US: Invision Power Board
 CVE-2008-6564 (Nortel UNIStim protocol, as used in Communication Server 1000
and ...)
-	TODO: check
+	NOT-FOR-US: Nortel Communication Server
 CVE-2008-6563 (Buffer overflow in the XML parser in Trillian 3.1.9.0, and
possibly ...)
-	TODO: check
+	NOT-FOR-US: Trillian
 CVE-2008-6562 (Cross-site scripting (XSS) vulnerability in jax_linklists.php in
Jack ...)
-	TODO: check
+	NOT-FOR-US: Jack (tR) Jax LinkLists 
 CVE-2008-6561 (Citrix Presentation Server Client for Windows before 10.200 does
not ...)
-	TODO: check
+	NOT-FOR-US: Citrix
 CVE-2007-6724 (Vidalia bundle before 0.1.2.18, when running on Windows and Mac
OS X, ...)
-	TODO: check
+	NOT-FOR-US: Vidalia
 CVE-2007-6723 (TorK before 0.22, when running on Windows and Mac OS X, installs
...)
-	TODO: check
+	- tork <not-affected> (Affects only Windows and MacOS)
 CVE-2007-6722 (Vidalia bundle before 0.1.2.18, when running on Windows and Mac
OS X, ...)
-	TODO: check
+	NOT-FOR-US: Vidalia
 CVE-2006-7237 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Ixprim 
 CVE-2005-4880 (Jax Guestbook 3.1 and 3.31 stores sensitive information under
the web ...)
-	TODO: check
+	NOT-FOR-US: Jax Guestbook
 CVE-2005-4879 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: Jax Guestbook
 CVE-2004-2762 (The server in IBM Tivoli Storage Manager (TSM) 4.2.x on MVS,
5.1.9.x ...)
-	TODO: check
+	NOT-FOR-US: Tivoli
 CVE-2003-1570 (The server in IBM Tivoli Storage Manager (TSM) 5.1.x, 5.2.x
before ...)
-	TODO: check
+	NOT-FOR-US: Tivoli
 CVE-2009-1175 (Cross-site scripting (XSS) vulnerability in apps/web/vs_diag.cgi
in ...)
 	- banshee <unfixed> (unimportant)
 	NOTE: banshee is intented as a desktop music player with no serious
Secure testing commits - Apr 2009 - r11532 - data/CVE

[Secure-testing-commits] r11532 - data/CVE
