Author: jamie-guest Date: 2011-04-27 13:02:10 +0000 (Wed, 27 Apr 2011) New Revision: 16602 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-04-27 09:16:01 UTC (rev 16601) +++ data/CVE/list 2011-04-27 13:02:10 UTC (rev 16602) @@ -1,3 +1,27 @@ +CVE-2010-4801 + NOT-FOR-US: BaconMap +CVE-2010-4800 + NOT-FOR-US: BaconMap +CVE-2010-4799 + NOT-FOR-US: Chipmunk Pwngame +CVE-2010-4798 + NOT-FOR-US: OrangeHRM +CVE-2010-4797 + NOT-FOR-US: Truworth Flex Timesheet +CVE-2010-4796 + NOT-FOR-US: PHPYun +CVE-2010-4795 + NOT-FOR-US: JS Calendar component for Joomla! +CVE-2010-4794 + NOT-FOR-US: JoomlaSeller JS Calendar component for Joomla! +CVE-2010-4793 + NOT-FOR-US: Site2Nite Auto e-Manager +CVE-2010-4792 + NOT-FOR-US: OPEN IT OverLook +CVE-2010-4791 + NOT-FOR-US: MG User-Fotoalbum module for PHP-Fusion +CVE-2010-4790 + NOT-FOR-US: FilterFTP CVE-2011-1826 RESERVED CVE-2011-XXXX [fail2ban: Insecure creating/writing to tmpfile] @@ -231,7 +255,7 @@ CVE-2011-1726 RESERVED CVE-2011-1725 - RESERVED + NOT-FOR-US: HP Network Automation CVE-2011-1724 RESERVED CVE-2011-1723 (Cross-site scripting (XSS) vulnerability in ...) @@ -239,13 +263,13 @@ CVE-2011-1722 (Multiple SQL injection vulnerabilities in WEC Discussion Forum ...) TODO: check CVE-2011-1721 (Cross-site request forgery (CSRF) vulnerability in ...) - TODO: check + NOT-FOR-US: WebJaxe CVE-2011-1720 RESERVED CVE-2011-1719 - RESERVED + NOT-FOR-US: ActiveX CVE-2011-1718 - RESERVED + NOT-FOR-US: CA SiteMinder CVE-2011-1716 (Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in ...) NOT-FOR-US: Xymon CVE-2009-5071 (Unspecified vulnerability in Palm Pre WebOS before 1.2.1 has unknown ...) @@ -1783,7 +1807,7 @@ CVE-2011-1150 RESERVED CVE-2011-1149 (Android before 2.3 does not properly restrict access to the system ...) - TODO: check + NOT-FOR-US: Android CVE-2011-1148 (Use-after-free vulnerability in the substr_replace function in PHP ...) - php5 <unfixed> (unimportant) NOTE: only exploitable by malicious scripts @@ -2714,15 +2738,15 @@ CVE-2011-0848 RESERVED CVE-2011-0847 (Unspecified vulnerability in the OpenSSO Enterprise and Sun Java ...) - TODO: check + NOT-FOR-US: Oracle Sun Products Suite CVE-2011-0846 (Unspecified vulnerability in the Oracle Sun Java System Access Manager ...) - TODO: check + NOT-FOR-US: Oracle Sun Java System Access Manager Policy Agent CVE-2011-0845 RESERVED CVE-2011-0844 (Unspecified vulnerability in the OpenSSO Enterprise and Sun Java ...) - TODO: check + NOT-FOR-US: Oracle Sun Products Suite CVE-2011-0843 (Unspecified vulnerability in the Siebel CRM Core component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2011-0842 RESERVED CVE-2011-0841 (Unspecified vulnerability in Oracle Solaris 11 Express allows remote ...) @@ -2794,7 +2818,7 @@ CVE-2011-0808 (Unspecified vulnerability in the Oracle Outside In Technology ...) NOT-FOR-US: Oracle Fusion Middleware CVE-2011-0807 (Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server ...) - TODO: check + NOT-FOR-US: Oracle Sun GlassFish Enterprise Server CVE-2011-0806 (Unspecified vulnerability in the Network Foundation component in ...) NOT-FOR-US: Oracle Database Server CVE-2011-0805 (Unspecified vulnerability in the UIX component in Oracle Database ...) @@ -8899,7 +8923,7 @@ CVE-2010-3261 (Directory traversal vulnerability in RSA Authentication Agent 7.0 ...) NOT-FOR-US: RSA Authentication Agent 7.0 for Web CVE-2010-3260 - RESERVED + NOT-FOR-US: Orbeon Forms CVE-2010-3259 (WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3, ...) - chromium-browser 6.0.472.53~r57914-1 - webkit 1.2.5-1