Author: federico-guest Date: 2010-12-21 20:44:56 +0000 (Tue, 21 Dec 2010) New Revision: 15725 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-12-21 18:36:50 UTC (rev 15724) +++ data/CVE/list 2010-12-21 20:44:56 UTC (rev 15725) @@ -1,9 +1,9 @@ CVE-2010-4558 (phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and ...) - TODO: check + NOT-FOR-US: phpMyFAQ CVE-2010-4557 (Buffer overflow in the lm_tcp service in Invensys Wonderware InBatch ...) - TODO: check + NOT-FOR-US: Invensys Wonderware InBatch CVE-2010-4556 (Stack-based buffer overflow in the SapThemeRepository ActiveX control ...) - TODO: check + NOT-FOR-US: SAP NetWeaver Business Client CVE-2010-XXXX - opensc <unfixed> (bug #607427) CVE-2010-4555 @@ -148,9 +148,9 @@ CVE-2010-4515 (Cross-site scripting (XSS) vulnerability in Citrix Web Interface 5.0, ...) NOT-FOR-US: Citrix Web Interface CVE-2010-4514 (Cross-site scripting (XSS) vulnerability in Install/InstallWizard.aspx ...) - TODO: check + NOT-FOR-US: DotNetNuke CVE-2010-4513 (Multiple cross-site scripting (XSS) vulnerabilities in Zimplit CMS ...) - TODO: check + NOT-FOR-US: Zimplit CMS CVE-2010-4512 (Cobbler before 2.0.4 uses an incorrect umask value, which allows local ...) - cobbler <itp> (bug #545583) CVE-2010-4511 (Unspecified vulnerability in Movable Type 4.x before 4.35 and 5.x ...) @@ -188,17 +188,17 @@ CVE-2010-4506 RESERVED CVE-2010-4505 (Multiple SQL injection vulnerabilities in login.php in Injader 2.4.4, ...) - TODO: check + NOT-FOR-US: Injader CVE-2010-4504 (Multiple cross-site scripting (XSS) vulnerabilities in eSyndiCat ...) - TODO: check + NOT-FOR-US: eSyndiCat CVE-2010-4503 (SQL injection vulnerability in indexlight.php in Aigaion 1.3.4 allows ...) - TODO: check + NOT-FOR-US: Aigaion CVE-2010-4502 (Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite ...) - TODO: check + NOT-FOR-US: CA Internet Security Suite CVE-2010-4501 (IO::Socket::SSL Perl module 1.35, when verify_mode is not VERIFY_NONE, ...) TODO: check CVE-2010-4500 (Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY ...) - TODO: check + NOT-FOR-US: MRCGIGUY FreeTicket CVE-2010-XXXX - puppet 2.6.2-3 CVE-2011-0025 @@ -260,7 +260,7 @@ CVE-2010-4496 RESERVED CVE-2010-4495 (Unspecified vulnerability in the ActiveMatrix Runtime component in ...) - TODO: check + NOT-FOR-US: TIBCO ActiveMatrix CVE-2010-4494 (Double free vulnerability in Google Chrome before 8.0.552.215 allows ...) - chromium-browser <undetermined> - webkit <undetermined> @@ -1211,7 +1211,7 @@ CVE-2010-4116 RESERVED CVE-2010-4115 (HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, ...) - TODO: check + NOT-FOR-US: HP StorageWorks CVE-2010-4114 RESERVED CVE-2010-4113 @@ -1670,11 +1670,11 @@ - movabletype-opensource 4.3.5+dfsg-1 (bug #606311) TODO: check CVE-2010-3920 (The Seiko Epson printer driver installers for LP-S9000 before 4.1.11 ...) - TODO: check + NOT-FOR-US: Seiko Epson printer driver CVE-2010-3919 (Fenrir Grani 4.5 and earlier does not prevent interaction between web ...) - TODO: check + NOT-FOR-US: Fenrir Grani CVE-2010-3918 (Fenrir Sleipnir 2.9.6 and earlier does not prevent interaction between ...) - TODO: check + NOT-FOR-US: Fenrir Sleipnir CVE-2010-3917 RESERVED CVE-2010-3916 (Unspecified vulnerability in JustSystems Ichitaro and Ichitaro ...) @@ -5324,9 +5324,9 @@ CVE-2010-2604 RESERVED CVE-2010-2603 (RIM BlackBerry Desktop Software 4.7 through 6.0 for PC, and 1.0 for ...) - TODO: check + NOT-FOR-US: RIM BlackBerry Desktop Software CVE-2010-2602 (Multiple buffer overflows in the PDF distiller component in the ...) - TODO: check + NOT-FOR-US: BlackBerry Enterprise Serve CVE-2010-2601 (Multiple buffer overflows in the PDF distiller in the Attachment ...) NOT-FOR-US: BlackBerry Enterprise Server CVE-2010-2600 (Untrusted search path vulnerability in BlackBerry Desktop Software ...) @@ -8220,7 +8220,7 @@ CVE-2010-1509 (IrfanView before 4.27 does not properly handle an unspecified integer ...) NOT-FOR-US: IrfanView CVE-2010-1508 (Heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows ...) - TODO: check + NOT-FOR-US: Apple QuickTime CVE-2010-1507 (WebYaST in yast2-webclient in SUSE Linux Enterprise (SLE) 11 on the ...) NOT-FOR-US: YAST CVE-2010-1506 (The Google V8 bindings in Google Chrome before 4.1.249.1059 allow ...)