Author: jmm-guest
Date: 2009-01-08 21:39:37 +0000 (Thu, 08 Jan 2009)
New Revision: 10901
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-01-08 21:33:54 UTC (rev 10900)
+++ data/CVE/list 2009-01-08 21:39:37 UTC (rev 10901)
@@ -41,11 +41,11 @@
CVE-2009-0049 (Belgian eID middleware (eidlib) 2.6.0 and earlier does not
properly ...)
- belpic <unfixed> (bug filed)
CVE-2009-0048 (OpenEvidence 1.0.6 and earlier does not properly check the
return ...)
- TODO: check
+ NOT-FOR-US: OpenEvidence
CVE-2009-0047 (Gale 0.99 and earlier does not properly check the return value
from ...)
- TODO: check
+ NOT-FOR-US: Gale
CVE-2009-0046 (Sun GridEngine 5.3 and earlier does not properly check the
return ...)
- TODO: check
+ NOT-FOR-US: Sun GridEngine
CVE-2009-0045
RESERVED
CVE-2009-0044
@@ -57,9 +57,9 @@
CVE-2009-0041
RESERVED
CVE-2008-5867 (Directory traversal vulnerability in Yerba SACphp 6.3 allows
remote ...)
- TODO: check
+ NOT-FOR-US: Yerba
CVE-2008-5866 (The Proxim Wireless Tsunami MP.11 2411 with firmware 3.0.3 has
public ...)
- TODO: check
+ NOT-FOR-US: Proxim Wireless Tsunami
CVE-2008-5865 (SQL injection vulnerability in the com_hbssearch component 1.0
in the ...)
TODO: check
CVE-2008-5864 (SQL injection vulnerability in the Top Hotel
(com_tophotelmodule) ...)
@@ -73,11 +73,11 @@
CVE-2008-5860 (Directory traversal vulnerability in backend/template.php in
...)
TODO: check
CVE-2008-5859 (SQL injection vulnerability in index.php in Constructr CMS
3.02.5 and ...)
- TODO: check
+ NOT-FOR-US: Constructr
CVE-2008-5858 (Multiple cross-site scripting (XSS) vulnerabilities in
KnowledgeTree ...)
- TODO: check
+ NOT-FOR-US: KnowledgeTree
CVE-2008-5857 (The DropDocuments plugin in KnowledgeTree before 3.5.4a allows
remote ...)
- TODO: check
+ NOT-FOR-US: KnowledgeTree
CVE-2008-5856 (Directory traversal vulnerability in scripts/export.php in
ClaSS ...)
TODO: check
CVE-2008-5855 (myPHPscripts Login Session 2.0 stores sensitive information
under the ...)
@@ -85,17 +85,17 @@
CVE-2008-5854 (Multiple cross-site scripting (XSS) vulnerabilities in
login.php in ...)
TODO: check
CVE-2008-5853 (Chilek Content Management System (aka ChiCoMaS) 2.0.4 and
earlier ...)
- TODO: check
+ NOT-FOR-US: ChoCoMaS
CVE-2008-5852 (Emefa Guestbook 3.0 stores sensitive information under the web
root ...)
- TODO: check
+ NOT-FOR-US: Emefa Guestbook
CVE-2008-5851 (SQL injection vulnerability in index.php in My PHP Baseball
Stats ...)
- TODO: check
+ NOT-FOR-US: My PHP Baseball Stats
CVE-2008-5850 (Unspecified vulnerability in the SmartCenter server for Check
Point ...)
TODO: check
CVE-2008-5849 (Check Point VPN-1 R55, R65, and other versions, when Port
Address ...)
- TODO: check
+ NOT-FOR-US: Check Point
CVE-2008-5848 (The Advantech ADAM-6000 module has 00000000 as its default
password, ...)
- TODO: check
+ NOT-FOR-US: Advantech ADAM-6000 module
CVE-2008-5847 (Constructr CMS 3.02.5 and earlier stores passwords in cleartext
in a ...)
NOT-FOR-US: Constructr CMS
CVE-2008-5846 (Six Apart Movable Type (MT) before 4.23 allows remote
authenticated ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
