Author: kees Date: 2009-04-16 20:20:52 +0000 (Thu, 16 Apr 2009) New Revision: 11634 Modified: data/CVE/list Log: NFUs: 65 Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-04-16 18:34:01 UTC (rev 11633) +++ data/CVE/list 2009-04-16 20:20:52 UTC (rev 11634) @@ -769,7 +769,7 @@ CVE-2009-1120 RESERVED CVE-2009-1119 (Multiple heap-based buffer overflows in EMC RepliStor 6.2 before SP5 ...) - TODO: check + NOT-FOR-US: EMC RepliStor CVE-2009-1118 RESERVED CVE-2009-1117 @@ -1160,97 +1160,97 @@ CVE-2009-1018 RESERVED CVE-2009-1017 (Unspecified vulnerability in the BI Publisher component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-1016 (Unspecified vulnerability in the WebLogic Server component in BEA ...) - TODO: check + NOT-FOR-US: BEA Product Suite CVE-2009-1015 RESERVED CVE-2009-1014 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2009-1013 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2009-1012 (Unspecified vulnerability in the WebLogic Server component in BEA ...) - TODO: check + NOT-FOR-US: BEA Product Suite CVE-2009-1011 (Unspecified vulnerability in the Outside In Technology component in ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-1010 (Unspecified vulnerability in the Outside In Technology component in ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-1009 (Unspecified vulnerability in the Outside In Technology component in ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-1008 (Unspecified vulnerability in the Outside In Technology component in ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-1007 RESERVED CVE-2009-1006 (Unspecified vulnerability in the JRockit component in BEA Product ...) - TODO: check + NOT-FOR-US: BEA Product Suite CVE-2009-1005 (Unspecified vulnerability in the Oracle Data Service Integrator ...) - TODO: check + NOT-FOR-US: BEA Product Suite CVE-2009-1004 (Unspecified vulnerability in the WebLogic Server component in BEA ...) - TODO: check + NOT-FOR-US: BEA Product Suite CVE-2009-1003 (Unspecified vulnerability in the WebLogic Server component in BEA ...) - TODO: check + NOT-FOR-US: BEA Product Suite CVE-2009-1002 (Unspecified vulnerability in the WebLogic Server component in BEA ...) - TODO: check + NOT-FOR-US: BEA Product Suite CVE-2009-1001 (Unspecified vulnerability in the WebLogic Portal component in BEA ...) - TODO: check + NOT-FOR-US: BEA Product Suite CVE-2009-1000 (The Oracle Applications Framework component in Oracle E-Business Suite ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2009-0999 (Unspecified vulnerability in the Oracle Application Object Library ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2009-0998 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS - ...) - TODO: check + NOT-FOR-US: PeopleSoft Enterprise HRMS CVE-2009-0997 (Unspecified vulnerability in the Database Vault component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0996 (Unspecified vulnerability in the BI Publisher component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-0995 (Unspecified vulnerability in the Oracle Applications Framework ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2009-0994 (Unspecified vulnerability in the BI Publisher component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-0993 (Unspecified vulnerability in the OPMN component in Oracle Application ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-0992 (Unspecified vulnerability in the Advanced Queuing component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0991 (Unspecified vulnerability in the Listener component in Oracle Database ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0990 (Unspecified vulnerability in the BI Publisher component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-0989 (Unspecified vulnerability in the BI Publisher component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-0988 (Unspecified vulnerability in the Password Policy component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0987 RESERVED CVE-2009-0986 (Unspecified vulnerability in the Workspace Manager component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0985 (Unspecified vulnerability in the Core RDBMS component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0984 (Unspecified vulnerability in the Database Vault component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0983 (Unspecified vulnerability in the Portal component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-0982 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Enterprise CVE-2009-0981 (Unspecified vulnerability in the Application Express component in ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0980 (Unspecified vulnerability in the SQLX Functions component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0979 (Unspecified vulnerability in the Resource Manager component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0978 (Unspecified vulnerability in the Workspace Manager component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0977 (Unspecified vulnerability in the Advanced Queuing component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0976 (Unspecified vulnerability in the Workspace Manager component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0975 (Unspecified vulnerability in the Workspace Manager component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0974 (Unspecified vulnerability in the Portal component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Application Server CVE-2009-0973 (Unspecified vulnerability in the Cluster Ready Services component in ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2009-0972 (Unspecified vulnerability in the Workspace Manager component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database CVE-2008-6503 (Multiple cross-site scripting (XSS) vulnerabilities in PrestaShop ...) NOT-FOR-US: PrestaShop CVE-2008-6502 (Directory traversal vulnerability in Pro Chat Rooms 3.0.2 allows ...) @@ -2362,7 +2362,7 @@ CVE-2009-0682 RESERVED CVE-2009-0681 (PGP Desktop before 9.10 allows local users to (1) cause a denial of ...) - TODO: check + NOT-FOR-US: PGP Desktop CVE-2009-0680 (cgi-bin/welcome/VPN_only in the web interface in Netgear SSL312 allows ...) NOT-FOR-US: Netgear CVE-2009-0679 (Cross-site scripting (XSS) vulnerability in the Your Account module in ...) @@ -2969,15 +2969,15 @@ CVE-2009-0555 RESERVED CVE-2009-0554 (Microsoft Internet Explorer 5.01 SP4, 6 SP1, 6 and 7 on Windows XP SP2 ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2009-0553 (Microsoft Internet Explorer 6 SP1, 6 and 7 on Windows XP SP2 and SP3, ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2009-0552 (Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4, 6 ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2009-0551 (Microsoft Internet Explorer 6 SP1, 6 and 7 on Windows XP SP2 and SP3, ...) - TODO: check + NOT-FOR-US: Microsoft Internet Explorer CVE-2009-0550 (Windows HTTP Services (aka WinHTTP) in Microsoft Windows 2000 SP4, XP ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2009-0549 RESERVED CVE-2009-0548 (Cross-site scripting (XSS) vulnerability in the Additional Report ...) @@ -4219,11 +4219,11 @@ CVE-2009-0238 (Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; ...) NOT-FOR-US: Microsoft CVE-2009-0237 (Cross-site scripting (XSS) vulnerability in cookieauth.dll in the HTML ...) - TODO: check + NOT-FOR-US: Microsoft Forefront Threat Management Gateway CVE-2009-0236 RESERVED CVE-2009-0235 (Stack-based buffer overflow in the Word 97 text converter in WordPad ...) - TODO: check + NOT-FOR-US: Microsoft WordPad CVE-2009-0234 (The DNS Resolver Cache Service (aka DNSCache) in Windows DNS Server in ...) NOT-FOR-US: Microsoft Windows CVE-2009-0233 (The DNS Resolver Cache Service (aka DNSCache) in Windows DNS Server in ...) @@ -4257,7 +4257,7 @@ CVE-2009-0219 (The PDF distiller in the Attachment Service in Research in Motion ...) NOT-FOR-US: BlackBerry CVE-2009-0218 (Insecure method vulnerability in Particle Software IntraLaunch ...) - TODO: check + NOT-FOR-US: IntraLaunch Application Launcher ActiveX control CVE-2009-0217 RESERVED CVE-2009-0216 (GE Fanuc iFIX 5.0 and earlier relies on client-side authentication ...) @@ -4610,7 +4610,7 @@ CVE-2009-0101 RESERVED CVE-2009-0100 (Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; ...) - TODO: check + NOT-FOR-US: Microsoft Office Excel CVE-2009-0099 (The Electronic Messaging System Microsoft Data Base (EMSMDB32) ...) NOT-FOR-US: Microsoft CVE-2009-0098 (Microsoft Exchange 2000 Server SP3, Exchange Server 2003 SP2, and ...) @@ -4632,17 +4632,17 @@ CVE-2009-0090 RESERVED CVE-2009-0089 (Windows HTTP Services (aka WinHTTP) in Microsoft Windows 2000 SP4, XP ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2009-0088 (The WordPerfect 6.x Converter in Microsoft Office Word 2000 SP3 and ...) - TODO: check + NOT-FOR-US: Microsoft Office CVE-2009-0087 (Unspecified vulnerability in the Word 6 text converter in WordPad in ...) - TODO: check + NOT-FOR-US: Microsoft Word CVE-2009-0086 (Integer underflow in Windows HTTP Services (aka WinHTTP) in Microsoft ...) - TODO: check + NOT-FOR-US: Microsoft Windows CVE-2009-0085 (The Secure Channel (aka SChannel) authentication component in ...) NOT-FOR-US: Microsoft Windows CVE-2009-0084 (DirectShow in Microsoft DirectX 8.1 and 9.0 does not properly ...) - TODO: check + NOT-FOR-US: DirectX CVE-2009-0083 (The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server ...) NOT-FOR-US: Microsoft Windows CVE-2009-0082 (The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 ...) @@ -4650,13 +4650,13 @@ CVE-2009-0081 (The graphics device interface (GDI) implementation in the kernel in ...) NOT-FOR-US: Microsoft Windows CVE-2009-0080 (The ThreadPool class in Windows Vista Gold and SP1, and Server 2008, ...) - TODO: check + NOT-FOR-US: Windows Vista CVE-2009-0079 (The RPCSS service in Microsoft Windows XP SP2 and SP3 and Server 2003 ...) - TODO: check + NOT-FOR-US: Microsoft Windows XP CVE-2009-0078 (The Windows Management Instrumentation (WMI) provider in Microsoft ...) - TODO: check + NOT-FOR-US: Microsoft Windows XP CVE-2009-0077 (The firewall engine in Microsoft Forefront Threat Management Gateway, ...) - TODO: check + NOT-FOR-US: Microsoft Forefront Threat Management Gateway CVE-2009-0076 (Microsoft Internet Explorer 7, when XHTML strict mode is used, allows ...) NOT-FOR-US: Microsoft CVE-2009-0075 (Microsoft Internet Explorer 7 does not properly handle errors during ...) @@ -8299,7 +8299,7 @@ CVE-2008-4421 (Directory traversal vulnerability in MetaGauge 1.0.0.17, and probably ...) NOT-FOR-US: MetaGauge CVE-2008-4420 (Multiple stack-based buffer overflows in DZIP32.DLL before 5.0.0.8 in ...) - TODO: check + NOT-FOR-US: DynaZip Max CVE-2008-4419 (Directory traversal vulnerability in the HP JetDirect web ...) NOT-FOR-US: HP-ChaiSOE CVE-2008-4418 (Unspecified vulnerability in DCE in HP HP-UX B.11.11, B.11.23, and ...) @@ -25217,7 +25217,7 @@ CVE-2007-4515 (Buffer overflow in a certain ActiveX control in YVerInfo.dll before ...) NOT-FOR-US: Yahoo! Messenger CVE-2007-4514 (Unspecified vulnerability in HP ProCurve Manager and HP ProCurve ...) - TODO: check + NOT-FOR-US: HP ProCurve Manager CVE-2007-4513 (Multiple stack-based buffer overflows in IBM AIX 5.2 and 5.3 allow ...) NOT-FOR-US: IBM AIX CVE-2007-4512 (Cross-site scripting (XSS) vulnerability in Sophos Anti-Virus for ...)