Author: federico-guest
Date: 2010-09-02 19:30:28 +0000 (Thu, 02 Sep 2010)
New Revision: 15254
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-09-01 21:14:36 UTC (rev 15253)
+++ data/CVE/list 2010-09-02 19:30:28 UTC (rev 15254)
@@ -9,27 +9,27 @@
CVE-2010-3198
RESERVED
CVE-2010-3197 (IBM DB2 9.7 before FP2 does not perform the expected access
control on ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2010-3196 (IBM DB2 9.7 before FP2, when AUTO_REVAL is IMMEDIATE, allows
remote ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2010-3195 (Unspecified vulnerability in IBM DB2 9.1 before FP9, 9.5 before
FP6, ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2010-3194 (The DB2DART program in IBM DB2 9.1 before FP9, 9.5 before FP6,
and 9.7 ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2010-3193 (Unspecified vulnerability in the DB2STST program in IBM DB2 9.1
before ...)
- TODO: check
+ NOT-FOR-US: IBM DB2
CVE-2010-3192
RESERVED
CVE-2010-3191 (Untrusted search path vulnerability in Adobe Captivate
5.0.0.596, and ...)
- TODO: check
+ NOT-FOR-US: Adobe Captivate
CVE-2010-3190 (Untrusted search path vulnerability in ATL MFC Trace Tool ...)
- TODO: check
+ NOT-FOR-US: ATL MFC Trace Tool
CVE-2010-3189 (The extSetOwner function in the UfProxyBrowserCtrl ActiveX
control ...)
- TODO: check
+ NOT-FOR-US: Trend Micro Internet Security Pro
CVE-2010-3188 (SQL injection vulnerability in search.aspx in BugTracker.NET
3.4.3 and ...)
- TODO: check
+ NOT-FOR-US: BugTracker.NET
CVE-2010-3187 (Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows
remote ...)
- TODO: check
+ NOT-FOR-US: IBM AIX
CVE-2010-3186 (IBM WebSphere Application Server (WAS) 7.x before 7.0.0.13, and
...)
TODO: check
CVE-2010-3185
@@ -414,7 +414,7 @@
CVE-2010-3036
RESERVED
CVE-2010-3035 (Cisco IOS XR 3.4.0 through 3.9.1, when BGP is enabled, does not
...)
- TODO: check
+ NOT-FOR-US: Cisco IOS XR
CVE-2010-3034
RESERVED
CVE-2010-3033
@@ -476,11 +476,11 @@
CVE-2010-3003
RESERVED
CVE-2010-3002 (Unspecified vulnerability in RealNetworks RealPlayer 11.0
through 11.1 ...)
- TODO: check
+ NOT-FOR-US: RealPlayer
CVE-2010-3001 (Unspecified vulnerability in an ActiveX control in the Internet
...)
- TODO: check
+ NOT-FOR-US: Internet Explorer
CVE-2010-3000 (Multiple integer overflows in the ParseKnownType function in
...)
- TODO: check
+ NOT-FOR-US: RealPlayer
CVE-2010-2999
RESERVED
CVE-2010-2998
@@ -488,7 +488,7 @@
CVE-2010-2997
RESERVED
CVE-2010-2996 (Array index error in RealNetworks RealPlayer 11.0 through 11.1
on ...)
- TODO: check
+ NOT-FOR-US: RealPlayer
CVE-2010-2991 (The IICAClient interface in the ICAClient library in the ICA
Client ...)
NOT-FOR-US: Citrix ICA Client
CVE-2010-2990 (Citrix Online Plug-in for Windows for XenApp & XenDesktop
before 11.2, ...)
@@ -1250,7 +1250,7 @@
NOTE:
http://git.gnome.org/browse/vte/commit/?id=58bc3a942f198a1a8788553ca72c19d7c1702b74
NOTE:
http://git.gnome.org/browse/vte/commit/?id=8b971a7b2c59902914ecbbc3915c45dd21530a91
CVE-2010-2712 (Unspecified vulnerability in Software Distributor (sd) in HP
HP-UX ...)
- TODO: check
+ NOT-FOR-US: Software Distributor in HP HP-UX
CVE-2010-2711 (Unspecified vulnerability in the HP MagCloud app before 1.0.5
for the ...)
NOT-FOR-US: HP MagCloud app
CVE-2010-2710 (Unspecified vulnerability in HP OpenView Network Node Manager
(OV NNM) ...)
@@ -1853,7 +1853,7 @@
CVE-2010-2475
RESERVED
CVE-2010-2474 (JBoss Enterprise Service Bus (ESB) before 4.7 CP02 in JBoss
Enterprise ...)
- TODO: check
+ NOT-FOR-US: JBoss Enterprise
CVE-2010-2470 (Install/Filesystem.pm in Bugzilla 3.5.1 through 3.6.1 and 3.7
through ...)
- bugzilla <not-affected> (Only affects 3.5 to 3.7)
CVE-2010-2476 [syscp open_basedir bypassing]
@@ -2094,7 +2094,7 @@
CVE-2010-2364 (Cross-site scripting (XSS) vulnerability in Free CGI Moo moobbs
before ...)
TODO: check
CVE-2010-2363 (The IPv6 Unicast Reverse Path Forwarding (RPF) implementation
on the ...)
- TODO: check
+ NOT-FOR-US: SEIL/X1, SEIL/X2, and SEIL/B1 routers
CVE-2010-2362 (Winny 2.0b7.1 and earlier does not properly process node
information, ...)
NOT-FOR-US: Winny
CVE-2010-2361 (Winny 2.0b7.1 and earlier does not properly process BBS
information, ...)
@@ -3510,7 +3510,7 @@
CVE-2010-1819
RESERVED
CVE-2010-1818 (The IPersistPropertyBag2::Read function in QTPlugin.ocx in
Apple ...)
- TODO: check
+ NOT-FOR-US: QuickTime
CVE-2010-1817
RESERVED
CVE-2010-1816
@@ -8677,9 +8677,9 @@
CVE-2010-0118 (Bournal before 1.4.1 allows local users to overwrite arbitrary
files ...)
NOT-FOR-US: Bournal
CVE-2010-0117 (RealNetworks RealPlayer 11.0 through 11.1 and RealPlayer SP 1.0
...)
- TODO: check
+ NOT-FOR-US: RealPlayer
CVE-2010-0116 (Integer overflow in RealNetworks RealPlayer 11.0 through 11.1
and ...)
- TODO: check
+ NOT-FOR-US: RealPlayer
CVE-2009-4585 (UranyumSoft Listing Service stores sensitive information under
the web ...)
NOT-FOR-US: UranyumSoft Listing Service
CVE-2009-4584 (admin.php in dB Masters Multimedia Links Directory 3.1.3 allows
remote ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
