Secure testing commits - Sep 2010 - r15371 - data/CVE

Author: kees
Date: 2010-09-23 21:29:57 +0000 (Thu, 23 Sep 2010)
New Revision: 15371

Modified:
   data/CVE/list
Log:
NFUs: 12

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-09-23 21:14:38 UTC (rev 15370)
+++ data/CVE/list	2010-09-23 21:29:57 UTC (rev 15371)
@@ -1,23 +1,23 @@
 CVE-2010-3489 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: CMS Digital Workroom
 CVE-2010-3488 (Directory traversal vulnerability in QuickShare 1.0 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: QuickShare
 CVE-2010-3487 (Directory traversal vulnerability in YelloSoft Pinky 1.0 for
Windows ...)
-	TODO: check
+	NOT-FOR-US: YelloSoft Pinky
 CVE-2010-3486 (Directory traversal vulnerability in FileStorageUpload.ashx in
...)
-	TODO: check
+	NOT-FOR-US: SmarterMail
 CVE-2010-3483 (cms_write.php in Primitive CMS 1.0.9 does not properly restrict
...)
-	TODO: check
+	NOT-FOR-US: Primitive CMS
 CVE-2010-3482 (Multiple SQL injection vulnerabilities in cms_write.php in
Primitive ...)
-	TODO: check
+	NOT-FOR-US: Primitive CMS
 CVE-2010-3481 (Multiple SQL injection vulnerabilities in login.php in ApPHP PHP
...)
-	TODO: check
+	NOT-FOR-US: MicroCMS
 CVE-2010-3480 (Directory traversal vulnerability in index.php in ApPHP PHP
MicroCMS ...)
-	TODO: check
+	NOT-FOR-US: MicroCMS
 CVE-2010-3479 (SQL injection vulnerability in list.php in BoutikOne 1.0 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: BoutikOne
 CVE-2009-5003 (SQL injection vulnerability in click.php in e-soft24 Banner
Exchange ...)
-	TODO: check
+	NOT-FOR-US: e-soft24 Banner Exchange Script
 CVE-2010-3478
 	RESERVED
 CVE-2010-3477 (The tcf_act_police_dump function in net/sched/act_police.c in
the ...)
@@ -579,7 +579,7 @@
 CVE-2010-3333
 	RESERVED
 CVE-2010-3332 (Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5
SP1, ...)
-	TODO: check
+	NOT-FOR-US: Microsoft .NET Framework
 CVE-2010-3331
 	RESERVED
 CVE-2010-3330
@@ -6132,7 +6132,7 @@
 	- cvsnt 2.5.04.3236-1.2 (medium; bug #593884)
 	NOTE: http://march-hare.com/cvspro/vuln.htm
 CVE-2010-1325 (Cross-site request forgery (CSRF) vulnerability in the
apache2-slms ...)
-	TODO: check
+	NOT-FOR-US: SUSE Lifecycle Management Server
 CVE-2010-1324
 	RESERVED
 CVE-2010-1323