Author: jamie-guest
Date: 2008-11-03 21:46:05 +0000 (Mon, 03 Nov 2008)
New Revision: 10267
Modified:
data/CVE/list
Log:
cve NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-11-03 21:23:04 UTC (rev 10266)
+++ data/CVE/list 2008-11-03 21:46:05 UTC (rev 10267)
@@ -2,21 +2,21 @@
REJECTED
TODO: check
CVE-2008-4878 (Unrestricted file upload vulnerability in the "Add Image
Macro" ...)
- TODO: check
+ NOT-FOR-US: - WebCards
CVE-2008-4877 (SQL injection vulnerability in admin.php in WebCards 1.3, when
...)
- TODO: check
+ NOT-FOR-US: - WebCards
CVE-2008-4876 (Cross-site scripting (XSS) vulnerability in the web server
component ...)
- TODO: check
+ NOT-FOR-US: - Philips Electronics VOIP841 DECT Phone
CVE-2008-4875 (Directory traversal vulnerability in the web server in Philips
...)
- TODO: check
+ NOT-FOR-US: - Philips Electronics VOIP841 DECT Phone
CVE-2008-4874 (The web component in Philips Electronics VOIP841 DECT Phone
with ...)
- TODO: check
+ NOT-FOR-US: - Philips Electronics VOIP841 DECT Phone
CVE-2008-4873 (board.cgi in Sepal SPBOARD 4.5 allows remote attackers to
execute ...)
- TODO: check
+ NOT-FOR-US: - Sepal SPBOARD
CVE-2008-4872 (Cross-site scripting (XSS) vulnerability in bidhistory.php in
...)
- TODO: check
+ NOT-FOR-US: - iTechBids Gold
CVE-2008-4871 (Cross-site scripting (XSS) vulnerability in My Little Forum
1.75 and ...)
- TODO: check
+ NOT-FOR-US: - My Little Forum
CVE-2008-4870 (dovecot 1.0.7 in Red Hat Enterprise Linux (RHEL) 5, and
possibly ...)
TODO: check
CVE-2008-4869 (FFmpeg 0.4.9, as used by MPlayer, allows context-dependent
attackers ...)
@@ -140,21 +140,21 @@
CVE-2008-4810 (The _expand_quoted_text function in
libs/Smarty_Compiler.class.php in ...)
TODO: check
CVE-2008-4809 (Multiple unspecified vulnerabilities in the Profiles search
pages in ...)
- TODO: check
+ NOT-FOR-US: - IBM Lotus Connections
CVE-2008-4808 (IBM Lotus Connections 2.x before 2.0.1 allows attackers to
discover ...)
- TODO: check
+ NOT-FOR-US: - IBM Lotus Connections
CVE-2008-4807 (IBM Lotus Connections 2.x before 2.0.1 stores the password for
the ...)
- TODO: check
+ NOT-FOR-US: - IBM Lotus Connections
CVE-2008-4806 (Multiple SQL injection vulnerabilities in IBM Lotus Connections
2.x ...)
- TODO: check
+ NOT-FOR-US: - IBM Lotus Connections
CVE-2008-4805 (Multiple cross-site scripting (XSS) vulnerabilities in IBM
Lotus ...)
- TODO: check
+ NOT-FOR-US: - IBM Lotus Connections
CVE-2008-4804 (SQL injection vulnerability in the Gallery module 1.3 for
PHP-Nuke ...)
- TODO: check
+ NOT-FOR-US: NFU Gallery module 1.3 for PHP-Nuke
CVE-2008-4803 (Cross-site scripting (XSS) vulnerability in index.php in Simple
PHP ...)
- TODO: check
+ NOT-FOR-US: - Simple PHP Scripts gallery
CVE-2008-4802 (Cross-site scripting (XSS) vulnerability in complete.php in
Simple PHP ...)
- TODO: check
+ NOT-FOR-US: - Simple PHP Scripts blog
CVE-2008-XXXX [buffer overflow via large mailbox in dmail/tmail of uw-imap]
- uw-imap 7:2007d~dfsg-1
NOTE: CVE id requested on oss-sec
@@ -12132,7 +12132,7 @@
CVE-2007-6433 (The getRenderedEjbql method in the
org.jboss.seam.framework.Query ...)
- jbosseam <itp> (bug #451956)
CVE-2007-6432 (Stack-based buffer overflow in AldFs32.dll in Adobe PageMaker
7.0.1 ...)
- TODO: check
+ NOT-FOR-US: - Adobe PageMaker
CVE-2007-6431 (Unspecified vulnerability in Adobe Flash Media Server 2 before
2.0.5, ...)
NOT-FOR-US: Adobe Flash Media Server
CVE-2007-6430 (Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x before
1.4.16, and ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
