Author: fw
Date: 2007-06-02 08:01:30 +0000 (Sat, 02 Jun 2007)
New Revision: 5967
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-06-02 08:00:02 UTC (rev 5966)
+++ data/CVE/list 2007-06-02 08:01:30 UTC (rev 5967)
@@ -310,43 +310,43 @@
CVE-2007-2821 (SQL injection vulnerability in wp-admin/admin-ajax.php in
WordPress ...)
- wordpress 2.2-1 (high)
CVE-2007-2820 (Multiple stack-based buffer overflows in the KSign KSignSWAT
ActiveX ...)
- TODO: check
+ NOT-FOR-US: KSign
CVE-2007-2819 (Cross-site scripting (XSS) vulnerability in reportItem.do in
Track+ ...)
- TODO: check
+ NOT-FOR-US: Track+
CVE-2007-2818 (Cross-site scripting (XSS) vulnerability in cand_login.asp in
...)
- TODO: check
+ NOT-FOR-US: Parodia
CVE-2007-2817 (SQL injection vulnerability in read/index.php in ol'bookmarks
0.7.4 ...)
- TODO: check
+ NOT-FOR-US: ol'bookmarks
CVE-2007-2816 (Multiple PHP remote file inclusion vulnerabilities in
ol'bookmarks ...)
- TODO: check
+ NOT-FOR-US: ol'bookmarks
CVE-2007-2815 (The "hit-highlighting" functionality in webhits.dll
in Microsoft ...)
- TODO: check
+ NOT-FOR-US: Microsoft IIS
CVE-2007-2814 (Multiple stack-based buffer overflows in the Pegasus ImagN'
ActiveX ...)
- TODO: check
+ NOT-FOR-US: Pegasus ImagN'
CVE-2007-2813 (Cisco IOS 12.4 and earlier, when using the crypto packages and
SSL ...)
- TODO: check
+ NOT-FOR-US: Cisco
CVE-2007-2812 (Cross-site scripting (XSS) vulnerability in hlstats.php in
HLstats ...)
- TODO: check
+ NOT-FOR-US: HLstats
CVE-2007-2811 (Cross-site scripting (XSS) vulnerability in OSK Advance-Flow
4.41 and ...)
- TODO: check
+ NOT-FOR-US: OSK Advance-Flow
CVE-2007-2810 (SQL injection vulnerability in down_indir.asp in Gazi Download
Portal ...)
- TODO: check
+ NOT-FOR-US: Gazi Download Portal
CVE-2007-2809 (Buffer overflow in the transfer manager in Opera before 9.21
for ...)
- TODO: check
+ NOT-FOR-US: Opera
CVE-2007-2808 (Cross-site scripting (XSS) vulnerability in gnatsweb.pl in
Gnatsweb ...)
- gnatsweb <unfixed> (low; bug #427156)
CVE-2007-2807 (Stack-based buffer overflow in mod/server.mod/servrmsg.c in
Eggdrop ...)
- eggdrop <unfixed> (medium; bug #427157)
CVE-2007-2806 (Multiple cross-site scripting (XSS) vulnerabilities in
index.php in ...)
- TODO: check
+ NOT-FOR-US: GaliX
CVE-2007-2805 (Multiple cross-site scripting (XSS) vulnerabilities in
index.php in ...)
- TODO: check
+ NOT-FOR-US: ClientExec
CVE-2007-2804 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: CandyPress Store
CVE-2007-2803 (SQL injection vulnerability in default.asp in Vizayn Urun
Tanitim ...)
- TODO: check
+ NOT-FOR-US: Vizayn Urun Tanitim Sitesi
CVE-2007-2802 (Cross-site scripting (XSS) vulnerability in
cp/ps/Main/login/Login in ...)
- TODO: check
+ NOT-FOR-US: RM EasyMail Plus
CVE-2007-2801
RESERVED
CVE-2007-2800
@@ -618,13 +618,13 @@
CVE-2007-2688 (The Cisco Intrusion Prevention System (IPS) and IOS with
Firewall/IPS ...)
NOT-FOR-US: Cisco
CVE-2007-2687 (Stack-based buffer overflow in the MicroWorld Agent service ...)
- TODO: check
+ NOT-FOR-US: MicroWorld
CVE-2007-2686 (Cross-site scripting (XSS) vulnerability in index.php in Jetbox
CMS ...)
- TODO: check
+ NOT-FOR-US: Jetbox CMS
CVE-2007-2685 (Multiple SQL injection vulnerabilities in index.php in Jetbox
CMS 2.1 ...)
NOT-FOR-US: Jetbox CMS
CVE-2007-2684 (Jetbox CMS 2.1 allows remote attackers to obtain sensitive
information ...)
- TODO: check
+ NOT-FOR-US: Jetbox CMS
CVE-2007-2683 (Buffer overflow in Mutt 1.4.2 might allow local users to
execute ...)
- mutt <unfixed> (low; bug #426116)
CVE-2007-2682 (The installer for Adobe Version Cue CS3 Server on Apple Mac OS
X, as ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits