Author: nion
Date: 2009-02-10 09:29:16 +0000 (Tue, 10 Feb 2009)
New Revision: 11174
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-02-10 09:14:15 UTC (rev 11173)
+++ data/CVE/list 2009-02-10 09:29:16 UTC (rev 11174)
@@ -1,79 +1,79 @@
CVE-2009-0479 (Multiple SQL injection vulnerabilities in admin/admin_login.php
in ...)
- TODO: check
+ NOT-FOR-US: Online Grades
CVE-2009-0477 (Unspecified vulnerability in the process (aka proc) filesystem
in Sun ...)
- TODO: check
+ NOT-FOR-US: OpenSolaris
CVE-2009-0476 (Stack-based buffer overflow in MultiMedia Soft AdjMmsEng.dll
7.11.1.0 ...)
- TODO: check
+ NOT-FOR-US: MultiMedia Soft audio components
CVE-2009-0475
RESERVED
CVE-2009-0474 (The web interface in the Rockwell Automation ControlLogix
1756-ENBT/A ...)
- TODO: check
+ NOT-FOR-US: Rockwell EtherNet/IP Bridge Module
CVE-2009-0473 (Open redirect vulnerability in the web interface in the
Rockwell ...)
- TODO: check
+ NOT-FOR-US: Rockwell EtherNet/IP Bridge Module
CVE-2009-0472 (Multiple cross-site scripting (XSS) vulnerabilities in the web
...)
- TODO: check
+ NOT-FOR-US: Rockwell EtherNet/IP Bridge Module
CVE-2009-0471 (Cross-site request forgery (CSRF) vulnerability in the HTTP
server in ...)
- TODO: check
+ NOT-FOR-US: Cisco IOS
CVE-2009-0470 (Multiple cross-site scripting (XSS) vulnerabilities in the HTTP
server ...)
- TODO: check
+ NOT-FOR-US: Cisco IOS
CVE-2009-0469 (Unspecified vulnerability in futomi's CGI Cafe Fulltext search
CGI ...)
- TODO: check
+ NOT-FOR-US: futomi's CGI Cafe
CVE-2009-0468 (Multiple cross-site request forgery (CSRF) vulnerabilities in
...)
- TODO: check
+ NOT-FOR-US: Profense Web Application Firewall
CVE-2009-0467 (Cross-site scripting (XSS) vulnerability in proxy.html in
Profense Web ...)
- TODO: check
+ NOT-FOR-US: Profense Web Application Firewall
CVE-2009-0466 (Cross-site scripting (XSS) vulnerability in Vivvo CMS before
4.1.1 ...)
- TODO: check
+ NOT-FOR-US: Vivvo CMS
CVE-2009-0465 (The SaveDoc method in the All_In_The_Box.AllBox ActiveX control
in ...)
- TODO: check
+ NOT-FOR-US: Synactis ALL In-The-Box ActiveX 3
CVE-2009-0464 (PHP remote file inclusion vulnerability in includes/header.php
in ...)
- TODO: check
+ NOT-FOR-US: Groone GBook
CVE-2009-0463 (PHP remote file inclusion vulnerability in includes/header.php
in ...)
- TODO: check
+ NOT-FOR-US: Groone GLinks
CVE-2009-0462 (Multiple SQL injection vulnerabilities in
customer_login_check.asp in ...)
- TODO: check
+ NOT-FOR-US: ClickTech ClickCart
CVE-2009-0461 (Whole Hog Password Protect: Enhanced 1.x allows remote
attackers to ...)
- TODO: check
+ NOT-FOR-US: Whole Hog Password Protect
CVE-2009-0460 (Whole Hog Ware Support 1.x allows remote attackers to bypass
...)
- TODO: check
+ NOT-FOR-US: Whole Hog Ware Support
CVE-2009-0459 (Multiple SQL injection vulnerabilities in
admin/login_submit.php in ...)
- TODO: check
+ NOT-FOR-US: Whole Hog Password Protect
CVE-2009-0458 (Multiple SQL injection vulnerabilities in
admin/login_submit.php in ...)
- TODO: check
+ NOT-FOR-US: Whole Hog Ware Support
CVE-2009-0457 (Multiple directory traversal vulnerabilities in AJA Portal 1.2
allow ...)
- TODO: check
+ NOT-FOR-US: AJA Portal
CVE-2009-0456 (PHP remote file inclusion vulnerability in ...)
- TODO: check
+ NOT-FOR-US: patForms
CVE-2009-0455
RESERVED
CVE-2009-0454 (Multiple SQL injection vulnerabilities in DMXReady Online
Notebook ...)
- TODO: check
+ NOT-FOR-US: DMXReady Online Notebook Manager
CVE-2009-0453 (Online Grades 3.2.4 allows remote attackers to obtain
configuration ...)
- TODO: check
+ NOT-FOR-US: Online Grades
CVE-2009-0452 (Multiple SQL injection vulnerabilities in parents/login.php in
Online ...)
- TODO: check
+ NOT-FOR-US: Online Grades
CVE-2009-0451 (SQL injection vulnerability in Skalfa SkaLinks 1.5 allows
remote ...)
- TODO: check
+ NOT-FOR-US: Skalfa SkaLinks
CVE-2009-0450 (Stack-based buffer overflow in BlazeVideo HDTV Player 3.5 and
earlier ...)
- TODO: check
+ NOT-FOR-US: BlazeVideo
CVE-2009-0449 (Buffer overflow in klim5.sys in Kaspersky Anti-Virus for
Workstations ...)
- TODO: check
+ NOT-FOR-US: Kaspersky Anti-Virus
CVE-2009-0448 (Directory traversal vulnerability in
admin/modules/aa/preview.php in ...)
- TODO: check
+ NOT-FOR-US: Syntax Desktop
CVE-2009-0447 (Multiple SQL injection vulnerabilities in default.asp in
MyDesign ...)
- TODO: check
+ NOT-FOR-US: MyDesign Sayac
CVE-2009-0446 (SQL injection vulnerability in photo.php in WEBalbum 2.4b
allows ...)
- TODO: check
+ NOT-FOR-US: WEBalbum
CVE-2009-0445 (SQL injection vulnerability in index.php in Dreampics Gallery
Builder ...)
- TODO: check
+ NOT-FOR-US: Dreampics Gallery Builder
CVE-2009-0444 (Multiple PHP remote file inclusion vulnerabilities in GRBoard
1.8, ...)
- TODO: check
+ NOT-FOR-US: GRBoard
CVE-2009-0443 (Stack-based buffer overflow in Elecard AVC HD PLAYER 5.5.90116
allows ...)
- TODO: check
+ NOT-FOR-US: Elecard AVC HD PLAYER
CVE-2009-0442 (Directory traversal vulnerability in bbcode.php in PHPbbBook
1.3 and ...)
- TODO: check
+ NOT-FOR-US: PHPbbBook
CVE-2009-0441 (PHP remote file inclusion vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Technote
CVE-2009-0440
RESERVED
CVE-2009-0439
@@ -228,7 +228,7 @@
CVE-2008-6046 (SQL injection vulnerability in ADbNewsSender before 1.5.2
allows ...)
NOT-FOR-US: ADbNewsSender
CVE-2009-0417 (Cross-site scripting (XSS) vulnerability in the ...)
- TODO: check
+ NOT-FOR-US: Agavi
CVE-2009-0416 (The SSL certificate setup program (genSslCert.sh) in Standards
Based ...)
NOT-FOR-US: sblim-sfcb
CVE-2009-0415 (Untrusted search path vulnerability in trickle 1.07 allows
local users ...)
@@ -320,9 +320,9 @@
CVE-2009-0377 (SQL injection vulnerability in the beamospetition
(com_beamospetition) ...)
NOT-FOR-US: Joomla
CVE-2009-0376 (A DLL file in RealNetworks RealPlayer 11 allows remote
attackers to ...)
- TODO: check
+ NOT-FOR-US: RealPlayer
CVE-2009-0375 (A DLL file in RealNetworks RealPlayer 11 allows remote
attackers to ...)
- TODO: check
+ NOT-FOR-US: RealPlayer
CVE-2009-0374 (** DISPUTED ** ...)
NOT-FOR-US: Google Chrome
CVE-2009-0373 (SQL injection vulnerability in the ElearningForce Flash
Magazine ...)
@@ -993,15 +993,15 @@
CVE-2009-0215
RESERVED
CVE-2009-0214 (Unspecified vulnerability in the WebFGServer application in
AREVA ...)
- TODO: check
+ NOT-FOR-US: WebFGServer
CVE-2009-0213 (Unspecified vulnerability in the NETIO application in AREVA ...)
- TODO: check
+ NOT-FOR-US: AREVA e-terrahabitat
CVE-2009-0212 (Unspecified vulnerability in the WebFGServer application in
AREVA ...)
- TODO: check
+ NOT-FOR-US: AREVA e-terrahabitat
CVE-2009-0211 (Unspecified vulnerability in the WebFGServer application in
AREVA ...)
- TODO: check
+ NOT-FOR-US: AREVA e-terrahabitat
CVE-2009-0210 (Buffer overflow in the MLF application in AREVA e-terrahabitat
5.7 and ...)
- TODO: check
+ NOT-FOR-US: AREVA e-terrahabitat
CVE-2009-0209
RESERVED
CVE-2009-0208
@@ -1009,7 +1009,7 @@
CVE-2009-0207
RESERVED
CVE-2009-0206 (Unspecified vulnerability in NFS in HP ONCplus B.11.31.05 and
earlier ...)
- TODO: check
+ NOT-FOR-US: HP ONCplus
CVE-2009-0205
RESERVED
CVE-2009-0204 (Cross-site scripting (XSS) vulnerability in HP Select Access
6.1 and ...)
@@ -1101,9 +1101,9 @@
CVE-2009-0171 (The Sun SPARC Enterprise M4000 and M5000 Server, within a
certain ...)
NOT-FOR-US: Sun SPARC Enterprise M4000 and M5000 Server
CVE-2009-0170 (Sun Java System Access Manager 6.3 2005Q1, 7 2005Q4, and 7.1
allows ...)
- TODO: check
+ NOT-FOR-US: Sun Java System Access Manager
CVE-2009-0169 (Sun Java System Access Manager 7.1 allows remote authenticated
...)
- TODO: check
+ NOT-FOR-US: Sun Java System Access Manager
CVE-2009-0168 (Unspecified vulnerability in ppdmgr in Sun Solaris 10 and
OpenSolaris ...)
NOT-FOR-US: ppdmgr in Sun Solaris 10 and OpenSolaris
CVE-2009-0167 (Unspecified vulnerability in lpadmin in Sun Solaris 10 and
OpenSolaris ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
