Author: nion
Date: 2007-12-29 02:38:31 +0000 (Sat, 29 Dec 2007)
New Revision: 7751
Modified:
data/CVE/list
Log:
NFUs
CVE-2007-6538 does not affect moodle
tikiwiki was removed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-12-29 02:14:41 UTC (rev 7750)
+++ data/CVE/list 2007-12-29 02:38:31 UTC (rev 7751)
@@ -5,79 +5,79 @@
CVE-2007-6562 (Multiple stack-based buffer overflows in the use of FD_SET in
TCPreen ...)
- tcpreen 1.4.3-0.3 (medium; bug #457781)
CVE-2007-6561 (Multiple stack-based buffer overflows in PDFLib allow
user-assisted ...)
- TODO: check
+ NOT-FOR-US: PDFLib
CVE-2007-6560 (Multiple cross-site scripting (XSS) vulnerabilities in
Logaholic allow ...)
- TODO: check
+ NOT-FOR-US: Logaholic
CVE-2007-6559 (Multiple SQL injection vulnerabilities in Logaholic allow
remote ...)
- TODO: check
+ NOT-FOR-US: Logaholic
CVE-2007-6558 (TotalPlayer 3.0 allows user-assisted remote attackers to cause
a ...)
- TODO: check
+ NOT-FOR-US: TotalPlayer
CVE-2007-6557 (Multiple SQL injection vulnerabilities in MeGaCheatZ 1.1 allow
remote ...)
- TODO: check
+ NOT-FOR-US: MeGaCheatZ
CVE-2007-6556 (Multiple SQL injection vulnerabilities in websihirbazi 5.1.1
allow ...)
- TODO: check
+ NOT-FOR-US: websihirbazi
CVE-2007-6555 (PHP remote file inclusion vulnerability in
modules/mod_pxt_latest.php ...)
- TODO: check
+ NOT-FOR-US: Joomla! extension
CVE-2007-6554 (Multiple directory traversal vulnerabilities in TeamCal Pro
3.1.000 ...)
- TODO: check
+ NOT-FOR-US: TeamCal
CVE-2007-6553 (Multiple PHP remote file inclusion vulnerabilities in TeamCal
Pro ...)
- TODO: check
+ NOT-FOR-US: TeamCal
CVE-2007-6552 (Directory traversal vulnerability in index.php in AuraCMS 2.2
allows ...)
- TODO: check
+ NOT-FOR-US: AuraCMS
CVE-2007-6551 (SQL injection vulnerability in showMsg.php in MailMachine Pro
2.2.4 ...)
- TODO: check
+ NOT-FOR-US: MailMachine
CVE-2007-6550 (form.php in PMOS Help Desk 2.4 and earlier sends a redirect to
the web ...)
- TODO: check
+ NOT-FOR-US: PMOS Help Desk
CVE-2007-6549 (Unspecified vulnerability in RunCMS before 1.6.1 has unknown
impact ...)
- TODO: check
+ NOT-FOR-US: RunCMS
CVE-2007-6548 (Multiple direct static code injection vulnerabilities in RunCMS
before ...)
- TODO: check
+ NOT-FOR-US: RunCMS
CVE-2007-6547 (RunCMS before 1.6.1 does not require entry of the old password
during ...)
- TODO: check
+ NOT-FOR-US: RunCMS
CVE-2007-6546 (RunCMS before 1.6.1 uses a predictable session id, which makes
it ...)
- TODO: check
+ NOT-FOR-US: RunCMS
CVE-2007-6545 (Multiple cross-site scripting (XSS) vulnerabilities in RunCMS
before ...)
- TODO: check
+ NOT-FOR-US: RunCMS
CVE-2007-6544 (Multiple SQL injection vulnerabilities in RunCMS before 1.6.1
allow ...)
- TODO: check
+ NOT-FOR-US: RunCMS
CVE-2007-6543 (SQL injection vulnerability in suggest-link.php in eSyndiCat
Link ...)
- TODO: check
+ NOT-FOR-US: eSyndiCat Link Exchange Script
CVE-2007-6542 (PHP remote file inclusion vulnerability in
admin/frontpage_right.php ...)
- TODO: check
+ NOT-FOR-US: Arcadem LEArcadem LE
CVE-2007-6541 (Multiple cross-site scripting (XSS) vulnerabilities in neuron
news 1.0 ...)
- TODO: check
+ NOT-FOR-US: neuron news
CVE-2007-6540 (SQL injection vulnerability in neuron news 1.0 allows remote
attackers ...)
- TODO: check
+ NOT-FOR-US: neuron news
CVE-2007-6539 (PHP local file inclusion vulnerability in index.php in IDevspot
...)
- TODO: check
+ NOT-FOR-US: IDevspot iSupport
CVE-2007-6538 (SQL injection vulnerability in
ing/blocks/mrbs/code/web/view_entry.php ...)
- TODO: check
+ - moodle <not-affected> (Vulnerable code not present, third party
module)
CVE-2007-6537 (Stack-based buffer overflow in the zfile_gunzip function in
zfile.c in ...)
- TODO: check
+ NOT-FOR-US: WinUAE
CVE-2007-6536 (The Custom Button Installer dialog in Google Toolbar 4 and 5
beta ...)
TODO: check
CVE-2007-6535 (Buffer overflow in the YShortcut ActiveX control in
YShortcut.dll ...)
- TODO: check
+ NOT-FOR-US: YShortcut ActiveX control
CVE-2007-6534 (Multiple unspecified vulnerabilities in Microsoft Office
Publisher ...)
- TODO: check
+ NOT-FOR-US: Microsoft Office Publisher
CVE-2007-6533 (Buffer overflow in Zoom Player 6.00 beta 2 and earlier allows
...)
- TODO: check
+ NOT-FOR-US: Zoom Player
CVE-2007-6532
RESERVED
CVE-2007-6531
RESERVED
CVE-2007-6530 (Buffer overflow in the XUpload.ocx ActiveX control in Persits
Software ...)
- TODO: check
+ NOT-FOR-US: XUpload
CVE-2007-6529 (Multiple unspecified vulnerabilities in TikiWiki before 1.9.9
have ...)
- TODO: check
+ - tikiwiki <removed>
CVE-2007-6528 (Directory traversal vulnerability in tiki-listmovies.php in
TikiWiki ...)
- TODO: check
+ - tikiwiki <removed>
CVE-2007-6527 (uploadimg.php in the Automatic Image Upload with Thumbnails ...)
TODO: check
CVE-2007-6526 (Cross-site scripting (XSS) vulnerability in
tiki-special_chars.php in ...)
- TODO: check
+ - tikiwiki <removed>
CVE-2007-6525 (Unspecified vulnerability in eClient in IBM DB2 Content Manager
(CM) ...)
- TODO: check
+ NOT-FOR-US: IBM DB2 Content Manager
CVE-2007-6524 (Opera before 9.25 allows remote attackers to obtain potentially
...)
NOT-FOR-US: Opera
CVE-2007-6523 (Algorithmic complexity vulnerability in Opera 9.50 beta and 9.x
before ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
