Secure testing commits - Jan 2011 - r15922 - data/CVE

Author: jmm
Date: 2011-01-18 22:06:34 +0000 (Tue, 18 Jan 2011)
New Revision: 15922

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-01-18 21:56:40 UTC (rev 15921)
+++ data/CVE/list	2011-01-18 22:06:34 UTC (rev 15922)
@@ -374,7 +374,7 @@
 CVE-2011-0311
 	RESERVED
 CVE-2011-0310 (Buffer overflow in IBM WebSphere MQ 7.0 before 7.0.1.4 allows
remote ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere MQ
 CVE-2011-0309
 	RESERVED
 CVE-2011-0308
@@ -684,27 +684,27 @@
 CVE-2011-0272
 	RESERVED
 CVE-2011-0271 (The CGI scripts in HP OpenView Network Node Manager (OV NNM)
7.51 and ...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0270 (Format string vulnerability in nnmRptConfig.exe in HP OpenView
Network ...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0269 (Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node
...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0268 (Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node
...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0267 (Multiple buffer overflows in nnmRptConfig.exe in HP OpenView
Network ...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0266 (Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node
...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0265 (Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node
...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0264 (Stack-based buffer overflow in ovutil.dll in HP OpenView Network
Node ...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0263 (Multiple stack-based buffer overflows in ovas.exe in the OVAS
service ...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0262 (Buffer overflow in the stringToSeconds function in ovutil.dll in
...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0261 (Unspecified vulnerability in jovgraph.exe in jovgraph in HP
OpenView ...)
-	TODO: check
+	NOT-FOR-US: HP OpenView
 CVE-2011-0260
 	RESERVED
 CVE-2011-0259
@@ -1179,7 +1179,7 @@
 	NOTE: http://code.google.com/p/chromium/issues/detail?id=56449
 	NOTE: http://codereview.chromium.org/4716006
 CVE-2010-4573 (The Update Installer in VMware ESXi 4.1, when a modified
sfcb.cfg is ...)
-	NOT-FOR-US: VMware ESXi
+ 	NOT-FOR-US: VMware ESXi
 CVE-2010-4572
 	RESERVED
 CVE-2010-4571
@@ -1193,7 +1193,7 @@
 CVE-2010-4567
 	RESERVED
 CVE-2010-4566 (Unspecified vulnerability in the NT4 authentication component in
...)
-	TODO: check
+ 	NOT-FOR-US: Citrix Acces Gateway
 CVE-2010-4565 (The bcm_connect function in net/can/bcm.c (aka the Broadcast
Manager) ...)
 	- linux-2.6 <unfixed>
 CVE-2010-4564
@@ -1340,7 +1340,7 @@
 	{DSA-2144-1}
 	- wireshark 1.2.11-6 (bug #608990)
 CVE-2010-4537 (Unspecified vulnerability in CrawlTrack before 3.2.7, when a
public ...)
-	TODO: check
+	NOT-FOR-US: CrawlTrack
 CVE-2010-4536 (Multiple cross-site scripting (XSS) vulnerabilities in KSES, as
used ...)
 	- wordpress 3.0.4+dfsg-1
 	- moodle <unfixed>
@@ -2936,9 +2936,9 @@
 CVE-2010-3926 (Multiple cross-site scripting (XSS) vulnerabilities in Shop.cgi
in ...)
 	NOT-FOR-US: SGX-SP Final
 CVE-2010-3925 (Contents-Mall before 15 does not properly handle passwords,
which ...)
-	TODO: check
+	NOT-FOR-US: Contents-Mall
 CVE-2010-3924 (SQL injection vulnerability in Aimluck Aipo before 5.1.0.1
allows ...)
-	TODO: check
+	NOT-FOR-US: Aimluck Aipo
 CVE-2010-3923 (Untrusted search path vulnerability in AttacheCase before 2.70
allows ...)
 	NOT-FOR-US: AttacheCase
 CVE-2010-3922 (SQL injection vulnerability in Movable Type 4.x before 4.35 and
5.x ...)
@@ -2964,7 +2964,7 @@
 CVE-2010-3913 (CRLF injection vulnerability in TransWARE Active! mail 6 build
...)
 	NOT-FOR-US: TransWARE Active! mail
 CVE-2010-3912 (The supportconfig script in supportutils in SUSE Linux
Enterprise 11 ...)
-	TODO: check
+	NOT-FOR-US: SLES support scripts
 CVE-2010-3911 (Multiple cross-site scripting (XSS) vulnerabilities in vtiger
CRM ...)
 	NOT-FOR-US: vTiger CRM
 CVE-2010-3910 (Multiple directory traversal vulnerabilities in the ...)