Author: federico-guest Date: 2012-08-02 21:57:10 +0000 (Thu, 02 Aug 2012) New Revision: 19865 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-08-02 21:48:03 UTC (rev 19864) +++ data/CVE/list 2012-08-02 21:57:10 UTC (rev 19865) @@ -2270,7 +2270,7 @@ CVE-2012-3127 (Unspecified vulnerability in Oracle Sun Solaris 10 allows remote ...) NOT-FOR-US: Oracle Sun Solaris CVE-2012-3126 (Unspecified vulnerability in the Solaris Cluster component in Oracle ...) - TODO: check + NOT-FOR-US: Solaris Cluster CVE-2012-3125 (Unspecified vulnerability in Oracle Sun Solaris 8, 9, and 10 allows ...) NOT-FOR-US: Oracle Sun Solaris CVE-2012-3124 (Unspecified vulnerability in Oracle Sun Solaris 10 allows remote ...) @@ -2490,13 +2490,13 @@ CVE-2012-3019 RESERVED CVE-2012-3018 (The lockout-recovery feature in the Security Configurator component in ...) - TODO: check + NOT-FOR-US: ICONICS GENESIS32 CVE-2012-3017 (Siemens SIMATIC S7-400 PN CPU devices with firmware 5.x allow remote ...) - TODO: check + NOT-FOR-US: Siemens SIMATIC CVE-2012-3016 (Siemens SIMATIC S7-400 PN CPU devices with firmware 6 before 6.0.3 ...) - TODO: check + NOT-FOR-US: Siemens SIMATIC CVE-2012-3015 (Untrusted search path vulnerability in Siemens SIMATIC STEP7 before ...) - TODO: check + NOT-FOR-US: Siemens SIMATIC CVE-2012-3014 RESERVED CVE-2012-3013 @@ -2510,13 +2510,13 @@ CVE-2012-3009 RESERVED CVE-2012-3008 (Stack-based buffer overflow in OSIsoft PI OPC DA Interface before ...) - TODO: check + NOT-FOR-US: OSIsoft PI OPC DA Interface CVE-2012-3007 (Stack-based buffer overflow in slssvc.exe before 58.x in Invensys ...) NOT-FOR-US: Not in Debian CVE-2012-3006 (The Innominate mGuard Smart HW before HW-101130 and BD before ...) NOT-FOR-US: Innominate mGuard Smart CVE-2012-3005 (Untrusted search path vulnerability in Invensys Wonderware InTouch ...) - TODO: check + NOT-FOR-US: Wonderwar CVE-2012-3004 RESERVED CVE-2012-3003 (Open redirect vulnerability in an unspecified web application in ...) @@ -2618,11 +2618,11 @@ CVE-2012-2956 RESERVED CVE-2012-2955 (Multiple cross-site scripting (XSS) vulnerabilities in the ...) - TODO: check + NOT-FOR-US: IBM Lotus Protector, IBM ISS Proventia Network Mail Security CVE-2012-2954 RESERVED CVE-2012-2953 (The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 ...) - TODO: check + NOT-FOR-US: Symantec Web Gateway CVE-2012-2952 (SQL injection vulnerability in add_ons.php in Jaow 2.4.5 and earlier ...) NOT-FOR-US: Jaow CVE-2012-2951 (SQL injection vulnerability in plog-rss.php in Plogger allows remote ...) @@ -3372,7 +3372,7 @@ CVE-2012-2648 RESERVED CVE-2012-2647 (Yahoo! Toolbar 1.0.0.5 and earlier for Chrome and Safari allows remote ...) - TODO: check + NOT-FOR-US: Yahoo! Toolbar CVE-2012-2646 (The Sleipnir Mobile application before 2.1.0 and Sleipnir Mobile Black ...) TODO: check CVE-2012-2645 (The Yahoo! Japan Yahoo! Browser application 1.2.0 and earlier for ...) @@ -3413,9 +3413,9 @@ CVE-2012-2628 RESERVED CVE-2012-2627 (d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell ...) - TODO: check + NOT-FOR-US: Plixer Scrutinizer CVE-2012-2626 (cgi-bin/admin.cgi in the web console in Plixer Scrutinizer (aka Dell ...) - TODO: check + NOT-FOR-US: Plixer Scrutinizer CVE-2012-2625 RESERVED - xen <unfixed> (low) @@ -3794,7 +3794,7 @@ CVE-2012-2443 RESERVED CVE-2012-2442 (Buffer overflow in the Video Manager in Nokia PC Suite 7.1.180.64 and ...) - TODO: check + NOT-FOR-US: Nokia PC Suite CVE-2012-2441 (RuggedCom Rugged Operating System (ROS) before 3.3 has a factory ...) NOT-FOR-US: RuggedCom Rugged Operating System CVE-2012-2440 (The default configuration of the TP-Link 8840T router enables ...) @@ -4536,7 +4536,7 @@ CVE-2012-2203 RESERVED CVE-2012-2202 (Directory traversal vulnerability in javatester_init.php in IBM Lotus ...) - TODO: check + NOT-FOR-US: IBM Lotus Protector, IBM ISS Proventia Network Mail Security System CVE-2012-2201 RESERVED CVE-2012-2200 (The default configuration of sendmail in IBM AIX 6.1 and 7.1, and VIOS ...) @@ -4546,13 +4546,13 @@ CVE-2012-2198 RESERVED CVE-2012-2197 (Stack-based buffer overflow in the Java Stored Procedure ...) - TODO: check + NOT-FOR-US: IBM DB2 CVE-2012-2196 (IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8 through ...) - TODO: check + NOT-FOR-US: IBM DB2 CVE-2012-2195 RESERVED CVE-2012-2194 (Directory traversal vulnerability in the SQLJ.DB2_INSTALL_JAR stored ...) - TODO: check + NOT-FOR-US: IBM DB2 CVE-2012-2193 RESERVED CVE-2012-2192 (The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS ...) @@ -4614,7 +4614,7 @@ CVE-2012-2164 RESERVED CVE-2012-2163 (IBM Scale Out Network Attached Storage (SONAS) 1.1 through 1.3.1 ...) - TODO: check + NOT-FOR-US: IBM Scale Out Network Attached Storage CVE-2012-2162 (The Web Server Plug-in in IBM WebSphere Application Server (WAS) 8.0 ...) NOT-FOR-US: WebSphere CVE-2012-2161 (Cross-site scripting (XSS) vulnerability in deferredView.jsp in IBM ...) @@ -5618,37 +5618,37 @@ CVE-2012-1774 (Unspecified vulnerability in the Open URL feature in Gretech GOM Media ...) NOT-FOR-US: Gretech GOM Media Player CVE-2012-1773 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1772 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1771 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1770 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1769 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1768 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1767 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1766 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1765 (Unspecified vulnerability in Oracle Sun Solaris 10 allows local users ...) - TODO: check + NOT-FOR-US: Oracle Sun Solaris 10 CVE-2012-1764 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Products CVE-2012-1763 RESERVED CVE-2012-1762 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Products CVE-2012-1761 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2 allows ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2012-1760 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2 allows ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2012-1759 (Unspecified vulnerability in the Oracle AutoVue component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Supply Chain Products Suite CVE-2012-1758 (Unspecified vulnerability in the Oracle AutoVue component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Supply Chain Products Suite CVE-2012-1757 (Unspecified vulnerability in Oracle MySQL Server 5.5.23 and earlier ...) - mysql-5.1 <not-affected> (Only affects 5.5) - mysql-5.5 5.5.24+dfsg-1 (bug #682210) @@ -5658,43 +5658,43 @@ CVE-2012-1755 RESERVED CVE-2012-1754 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2 allows ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2012-1753 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Products CVE-2012-1752 (Unspecified vulnerability in Oracle Sun Solaris 11 allows local users ...) - TODO: check + NOT-FOR-US: Oracle Sun Solaris 11 CVE-2012-1751 RESERVED CVE-2012-1750 (Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 ...) - TODO: check + NOT-FOR-US: Oracle Sun Solaris 8, 9, 10, and 11 CVE-2012-1749 (Unspecified vulnerability in the Oracle MapViewer component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1748 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Products 9.1 CVE-2012-1747 (Unspecified vulnerability in the Network Layer component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database Server CVE-2012-1746 (Unspecified vulnerability in the Network Layer component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database Server CVE-2012-1745 (Unspecified vulnerability in the Network Layer component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Database Server CVE-2012-1744 (Unspecified vulnerability in the Oracle Outside In Technology ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1743 (Unspecified vulnerability in the Oracle Clinical Remote Data Capture ...) - TODO: check + NOT-FOR-US: Oracle Industry Applications CVE-2012-1742 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2 allows ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2012-1741 (Unspecified vulnerability in the Enterprise Manager for Fusion ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1740 (Unspecified vulnerability in the Oracle Application Express Listener ...) - TODO: check + NOT-FOR-US: Oracle Application Express Listener CVE-2012-1739 (Unspecified vulnerability in the Oracle E-Business Intelligence ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2012-1738 (Unspecified vulnerability in the Oracle iPlanet Web Server component ...) - TODO: check + NOT-FOR-US: Oracle Sun Products Suite, iPlanet Web Server CVE-2012-1737 (Unspecified vulnerability in the Enterprise Manager for Oracle ...) - TODO: check + NOT-FOR-US: Oracle CVE-2012-1736 (Unspecified vulnerability in the Oracle MapViewer component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Fusion Middleware CVE-2012-1735 (Unspecified vulnerability in Oracle MySQL Server 5.5.23 and earlier ...) - mysql-5.1 <not-affected> (Only affects 5.5) - mysql-5.5 5.5.24+dfsg-1 (bug #682210) @@ -5702,19 +5702,19 @@ - mysql-5.1 <removed> (bug #682212) - mysql-5.5 5.5.24+dfsg-1 (bug #682210) CVE-2012-1733 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) - TODO: check + NOT-FOR-US: Oracle PeopleSoft Products CVE-2012-1732 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2 allows ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2012-1731 (Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2 allows ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2012-1730 (Unspecified vulnerability in the Oracle Application Object Library ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2012-1729 (Unspecified vulnerability in the Hyperion BI+ component in Oracle ...) - TODO: check + NOT-FOR-US: Oracle Hyperion CVE-2012-1728 (Unspecified vulnerability in the Oracle Siebel CRM 8.1.1 and 8.2.2 ...) - TODO: check + NOT-FOR-US: Oracle Siebel CRM CVE-2012-1727 (Unspecified vulnerability in the Oracle Application Object Library ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2012-1726 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...) - openjdk-7 7~u3-2.1.1-1 (bug #677486) CVE-2012-1725 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...) @@ -5755,7 +5755,7 @@ - openjdk-6 6b24-1.11.3-1 (bug #677487) - openjdk-7 7~u3-2.1.1-1 (bug #677486) CVE-2012-1715 (Unspecified vulnerability in the Oracle Application Object Library ...) - TODO: check + NOT-FOR-US: Oracle E-Business Suite CVE-2012-1714 RESERVED CVE-2012-1713 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...) @@ -5823,7 +5823,7 @@ - mysql-5.1 5.1.62-1 (bug #670636) - mysql-5.5 5.5.23-1 CVE-2012-1687 (Unspecified vulnerability in Oracle Solaris 10 and 11 allows local ...) - TODO: check + NOT-FOR-US: Oracle Solaris 10 and 11 CVE-2012-1686 RESERVED CVE-2012-1685 @@ -8208,7 +8208,7 @@ CVE-2012-0724 (Adobe Flash Player before 11.2.202.229 in Google Chrome before ...) NOT-FOR-US: Adobe Flash Player CVE-2012-0723 (The kernel in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, ...) - TODO: check + NOT-FOR-US: IBM AIX, VIOS CVE-2012-0722 RESERVED CVE-2012-0721