[Secure-testing-commits] r3153 - data/CVE

Sat, 24 Dec 2005 06:44:05 -0800 

Author: jmm-guest
Date: 2005-12-24 14:43:37 +0000 (Sat, 24 Dec 2005)
New Revision: 3153

Modified:
   data/CVE/list
Log:
lots of NFUs
claim more


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2005-12-24 13:42:30 UTC (rev 3152)
+++ data/CVE/list       2005-12-24 14:43:37 UTC (rev 3153)
@@ -123,54 +123,54 @@
        NOT-FOR-US: LogicBill
 begin claimed by jmm
 CVE-2005-4429 (SQL injection vulnerability in CS-Cart 1.3.0 allows remote 
attackers ...)
-       TODO: check
+       NOT-FOR-US: CS-Cart
 CVE-2005-4428 (Cross-site scripting (XSS) vulnerability in index.php in 
Cerberus ...)
-       TODO: check
+       NOT-FOR-US: Cerberus Helpdesk
 CVE-2005-4427 (Multiple SQL injection vulnerabilities in Cerberus Helpdesk 
allow ...)
-       TODO: check
+       NOT-FOR-US: Cerberus Helpdesk
 CVE-2005-4426 (Interpretation conflict in YaBB before 2.1 allows remote 
authenticated ...)
-       TODO: check
+       NOT-FOR-US: YaBB
 CVE-2005-4425 (Unspecified vulnerability in Kerio WinRoute Firewall before 
6.1.3 ...)
-       TODO: check
+       NOT-FOR-US: Kerio Firewall
 CVE-2005-4424 (Directory traversal vulnerability in PHPKIT 1.6.1 R2 and 
earlier might ...)
-       TODO: check
+       NOT-FOR-US: PHPKIT
 CVE-2005-4423 (Unrestricted file upload vulnerability in PHPFM before 0.2.3 
allows ...)
-       TODO: check
+       NOT-FOR-US: PHPFM
 CVE-2005-4422 (Unrestricted file upload vulnerability in toendaCMS before 
0.6.2 ...)
-       TODO: check
+       NOT-FOR-US: toendaCMS
 CVE-2005-4421 (Dev-Editor 3.0 allows remote attackers to access any directory 
outside ...)
-       TODO: check
+       NOT-FOR-US: Dev-Editor
 CVE-2005-4420 (Cross-site scripting (XSS) vulnerability in Honeycomb Archive 
...)
-       TODO: check
+       NOT-FOR-US: Honeycomb Archive Enterprise 
 CVE-2005-4419 (Multiple SQL injection vulnerabilities in CategoryResults.cfm 
in ...)
-       TODO: check
+       NOT-FOR-US: Honeycomb Archive Enterprise 
 CVE-2005-4417 (The default configuration of Widcomm Bluetooth for Windows 
(BTW) ...)
-       TODO: check
+       NOT-FOR-US: Widcomm Bluetooth for Windows
 CVE-2005-4416 (SQL injection vulnerability in index.php in TML CMS 0.5 allows 
remote ...)
-       TODO: check
+       NOT-FOR-US: TML CMS
 CVE-2005-4415 (Cross-site scripting (XSS) vulnerability in index.php in TML 
CMS 0.5 ...)
-       TODO: check
+       NOT-FOR-US: TML CMS
 CVE-2005-4414 (Unspecified vulnerability in Teamwork 3 before alpha 1.7 has 
unknown ...)
-       TODO: check
+       NOT-FOR-US: Teamwork 3
 CVE-2005-4413 (Multiple cross-site scripting (XSS) vulnerabilities in sample 
scripts ...)
-       TODO: check
+       NOT-FOR-US: Websphere
 CVE-2005-4412 (Citrix Program Neighborhood client before 9.150 caches the user 
...)
-       TODO: check
+       NOT-FOR-US: Citrix
 CVE-2005-4411 (Buffer overflow in Mercury Mail Transport System 4.01b allows 
remote ...)
-       TODO: check
+       NOT-FOR-US: Mercury Mail Transport System
 CVE-2005-4410 (Cross-site scripting (XSS) vulnerability in NQcontent 3 allows 
remote ...)
-       TODO: check
+       NOT-FOR-US: NQcontent
 CVE-2005-4409 (Cross-site scripting (XSS) vulnerability in MMBase 1.7.4 and 
earlier ...)
-       TODO: check
+       NOT-FOR-US: MMBase
 CVE-2005-4408 (Multiple SQL injection vulnerabilities in Miraserver 1.0 RC4 
and ...)
-       TODO: check
+       NOT-FOR-US: Miraserver
 CVE-2005-4407 (Cross-site scripting (XSS) vulnerability in index.cfm in 
Mercury CMS ...)
-       TODO: check
+       NOT-FOR-US: Mercury CMS 
 CVE-2005-4406 (SQL injection vulnerability in index.cfm in Mercury CMS 4.0 and 
...)
-       TODO: check
+       NOT-FOR-US: Mercury CMS 
 CVE-2005-4405 (redqueen.cgi in Red Queen 1.02 and earlier allows remote 
attackers to ...)
-       TODO: check
-end claimed by jmm
+       NOT-FOR-US: Red Queen
+begin claimed by jmm
 CVE-2005-4404 (SQL injection vulnerability in default.asp in Media2 CMS Shop 
18.x ...)
        TODO: check
 CVE-2005-4403 (SQL injection vulnerability in index.php in Marwel 2.7 and 
earlier ...)
@@ -285,6 +285,7 @@
        TODO: check
 CVE-2002-2208 (Extended Interior Gateway Routing Protocol (EIGRP), as 
implemented in ...)
        TODO: check
+end claimed by jmm
 CVE-2005-4348 (fetchmail before 6.3.1 and before 6.2.5.5, when configured for 
...)
        - fetchmail <unfixed> (bug #343836; low)
 CVE-2005-4418 [Default policy in util-vserver prior to 0.30.208 trusted 
unknown capabilities]


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to