Secure testing commits - Jun 2010 - r14890 - data/CVE

Author: nion
Date: 2010-06-20 13:20:40 +0000 (Sun, 20 Jun 2010)
New Revision: 14890

Modified:
   data/CVE/list
Log:
- NFUs
- new webkit issue CVE-2010-2304


Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-06-20 12:48:44 UTC (rev 14889)
+++ data/CVE/list	2010-06-20 13:20:40 UTC (rev 14890)
@@ -1,37 +1,37 @@
 CVE-2010-2320
 	RESERVED
 CVE-2010-2319 (SQL injection vulnerability in index.php in IDevSpot TextAds
2.08 ...)
-	TODO: check
+	NOT-FOR-US: IDevSpot TextAds
 CVE-2010-2318 (Cross-site scripting (XSS) vulnerability in cms_data.php in ...)
-	TODO: check
+	NOT-FOR-US: PHPCityPortal
 CVE-2010-2317 (Multiple SQL injection vulnerabilities in WmsCms 2.0 and earlier
allow ...)
-	TODO: check
+	NOT-FOR-US: WmsCms
 CVE-2010-2316 (Multiple cross-site scripting (XSS) vulnerabilities in
default.asp in ...)
-	TODO: check
+	NOT-FOR-US: WmsCms
 CVE-2010-2315 (PHP remote file inclusion vulnerability in picturelib.php in
...)
-	TODO: check
+	NOT-FOR-US: SmartISoft phpBazar
 CVE-2010-2314 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: NP_Twitter Plugin
 CVE-2010-2313 (Directory traversal vulnerability in index.php in Anodyne
Productions ...)
-	TODO: check
+	NOT-FOR-US: SIMM Management System
 CVE-2010-2312 (SQL injection vulnerability in index.php in HauntmAx Haunted
House ...)
-	TODO: check
+	NOT-FOR-US: HauntmAx Haunted House Directory Listing CMS
 CVE-2010-2311 (Stack-based buffer overflow in Power Tab Editor 1.7 build 80
allows ...)
-	TODO: check
+	NOT-FOR-US: Power Tab Editor
 CVE-2010-2310 (SolarWinds TFTP Server 10.4.0.13 allows remote attackers to
cause a ...)
-	TODO: check
+	NOT-FOR-US: SolarWinds TFTP Server
 CVE-2010-2309 (Buffer overflow in the web server for EvoLogical EvoCam 3.6.6
and ...)
-	TODO: check
+	NOT-FOR-US: EvoLogical EvoCam
 CVE-2010-2308 (Unspecified vulnerability in the filter driver
(savonaccessfilter.sys) ...)
-	TODO: check
+	NOT-FOR-US: Sophos Anti-Virus
 CVE-2010-2307 (Multiple directory traversal vulnerabilities in the web server
for ...)
-	TODO: check
+	NOT-FOR-US: Motorola firmware
 CVE-2010-2306 (The default installation of Sourcefire 3D Sensor 1000, 2000, and
9900; ...)
-	TODO: check
+	NOT-FOR-US: Sourcefire 3D Sensor
 CVE-2010-2305 (Buffer overflow in an ActiveX control in SSHelper.dll for
Symantec ...)
-	TODO: check
+	NOT-FOR-US: Symantec Sygate Personal Firewall
 CVE-2010-2304 (The toAlphabetic function in rendering/RenderListMarker.cpp in
WebCore ...)
-	TODO: check
+	- webkit <unfixed> (medium; bug #586547)
 CVE-2010-2303 (page/Geolocation.cpp in WebCore in WebKit in Google Chrome
before ...)
 	TODO: check
 CVE-2010-2302 (Use-after-free vulnerability in WebCore in WebKit in Google
Chrome ...)