Author: frolic-guest
Date: 2007-03-27 14:08:55 +0000 (Tue, 27 Mar 2007)
New Revision: 5594
Modified:
data/CVE/list
Log:
Some NFUs fixed.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-03-27 03:44:36 UTC (rev 5593)
+++ data/CVE/list 2007-03-27 14:08:55 UTC (rev 5594)
@@ -157,7 +157,7 @@
CVE-2006-7172 (Multiple SQL injection vulnerabilities in php-stats.recphp.php
in ...)
NOT-FOR-US: PHP-Stats
CVE-2003-1322 (Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in
MERCUR ...)
- TODO: check
+ NOT-FOR-US: MERCUR IMAPD
CVE-2007-1561 (Asterisk before 1.2.17 and 1.4.x before 1.4.2 allows remote
attackers ...)
- asterisk <unfixed> (bug #415466; medium)
NOTE:
http://voipsa.org/pipermail/voipsec_voipsa.org/2007-March/002275.html
@@ -174,7 +174,7 @@
CVE-2007-1513 (PHP remote file inclusion vulnerability in comanda.php in GraFX
...)
NOT-FOR-US: WebSite Builder
CVE-2007-1512 (Stack-based buffer overflow in the AfxOleSetEditMenu function
in the ...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows
CVE-2007-1511 (Buffer overflow in FrontBase Relational Database Server 4.2.7
and ...)
NOT-FOR-US: FrontBase Relational Database Server
CVE-2007-1510 (SQL injection vulnerability in post.php in Particle Blogger
1.0.0 ...)
@@ -203,7 +203,7 @@
CVE-2007-1500 (The Linux Security Auditing Tool (LSAT) allows local users to
...)
NOT-FOR-US: Linux Security Auditing Tool
CVE-2007-1499 (Cross-site scripting (XSS) vulnerability in Microsoft Internet
...)
- TODO: check
+ NOT-FOR-US: Internet Explorer
CVE-2007-1498 (Multiple stack-based buffer overflows in the
SiteManager.SiteMgr.1 ...)
NOT-FOR-US: SiteManager.SiteMgr.1 ActiveX control
CVE-2007-1497 (nf_conntrack in netfilter in the Linux kernel before 2.6.20.3
does not ...)
@@ -217,7 +217,7 @@
CVE-2007-1493 (nukesentinel.php in NukeSentinel 2.5.06 and earlier uses a
permissive ...)
NOT-FOR-US: NukeSentinel
CVE-2007-1492 (winmm.dll in Microsoft Windows XP allows user-assisted remote
...)
- TODO: check
+ NOT-FOR-US: Microsoft Windows XP
CVE-2007-1491 (Apache Tomcat in Avaya S87XX, S8500, and S8300 before CM 3.1.3,
and ...)
NOT-FOR-US: Avaya S87XX
CVE-2007-1490 (Unspecified maintenance web pages in Avaya S87XX, S8500, and
S8300 ...)
@@ -352,7 +352,7 @@
CVE-2005-4833 (IBM WebSphere Application Server (WAS) 6.0 before 20050201,
when ...)
NOT-FOR-US: IBM WebSphere Application Server
CVE-2003-1321 (Buffer overflow in Avant Browser 8.02 allows remote attackers
to cause ...)
- TODO: check
+ NOT-FOR-US: Avant Browser
CVE-2007-1437 (Unspecified vulnerability in LedgerSMB before 1.1.5 and
SQL-Ledger ...)
- sql-ledger <unfixed> (bug #409703)
CVE-2007-1436 (Unspecified vulnerability in admin.pl in SQL-Ledger before
2.6.26 and ...)
@@ -744,7 +744,7 @@
CVE-2007-1279
RESERVED
CVE-2007-1278 (Unspecified vulnerability in the IIS connector in Adobe JRun
4.0 ...)
- TODO: check
+ NOT-FOR-US: Adobe JRun and Coldfusion
CVE-2007-1277 (WordPress 2.1.1, as downloaded from some official distribution
sites ...)
- wordpress <not-affected> (orig.tar.gz not compromised)
CVE-2007-1276 (Multiple cross-site scripting (XSS) vulnerabilities in
chooser.cgi in ...)
@@ -2419,7 +2419,7 @@
CVE-2007-0724 (The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4
through ...)
NOT-FOR-US: Apple Mac
CVE-2007-0723 (Unspecified vulnerability in the authentication feature for ...)
- TODO: check
+ NOT-FOR-US: Mac OS X
CVE-2007-0722 (Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through
10.4.8 ...)
NOT-FOR-US: Apple Mac
CVE-2007-0721 (Unspecified vulnerability in diskimages-helper in Apple Mac OS
X ...)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
