Author: nion Date: 2010-06-10 18:09:37 +0000 (Thu, 10 Jun 2010) New Revision: 14854 Modified: data/CVE/list Log: CVE-2010-2103 doesnt affect axis, lets check axis2c ;) Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-06-10 17:14:26 UTC (rev 14853) +++ data/CVE/list 2010-06-10 18:09:37 UTC (rev 14854) @@ -262,7 +262,8 @@ CVE-2010-2104 (Directory traversal vulnerability in Orbit Downloader 3.0.0.4 and ...) NOT-FOR-US: Orbit Downloader CVE-2010-2103 (Cross-site scripting (XSS) vulnerability in ...) - - axis <undetermined> + - axis <not-affected> (axis != axis2, vulnerable code not present) + TODO: find out if the axis2 c implementation (axis2c) is affected by this CVE-2010-2102 (Buffer overflow in Webby Webserver 1.01 allows remote attackers to ...) NOT-FOR-US: Webby Webserver CVE-2010-2101 (The (1) strip_tags, (2) setcookie, (3) strtok, (4) wordwrap, (5) ...)