Author: federico-guest
Date: 2013-07-21 13:22:28 +0000 (Sun, 21 Jul 2013)
New Revision: 23025
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-07-21 11:35:36 UTC (rev 23024)
+++ data/CVE/list 2013-07-21 13:22:28 UTC (rev 23025)
@@ -5,9 +5,9 @@
CVE-2013-4876 (The Verizon Wireless Network Extender SCS-2U01 has a hardcoded
...)
NOT-FOR-US: Verizon Wireless Network Extender
CVE-2013-4875 (The Uboot bootloader on the Verizon Wireless Network Extender
SCS-2U01 ...)
- TODO: check
+ NOT-FOR-US: Verizon Wireless Network Extender SCS-2U01
CVE-2013-4874 (The Uboot bootloader on the Verizon Wireless Network Extender
...)
- TODO: check
+ NOT-FOR-US: Verizon Wireless Network Extender
CVE-2013-4873 (The Yahoo! Tumblr app before 3.4.1 for iOS sends cleartext ...)
NOT-FOR-US: iOS app
CVE-2013-4872 (Google Glass before XE6 does not properly restrict the
processing of ...)
@@ -199,7 +199,7 @@
CVE-2013-4779 (Cross-site scripting (XSS) vulnerability in core/handleTw.php
on the ...)
NOT-FOR-US: Siemens Enterprise OpenScape
CVE-2013-4778 (core/getLog.php on the Siemens Enterprise OpenScape Branch
appliance ...)
- TODO: check
+ NOT-FOR-US: Siemens Enterprise OpenScape
CVE-2013-4777
RESERVED
CVE-2013-4776
@@ -1908,7 +1908,7 @@
CVE-2013-4012
RESERVED
CVE-2013-4011 (Multiple unspecified vulnerabilities in the InfiniBand
subsystem in ...)
- TODO: check
+ NOT-FOR-US: IBM AIX
CVE-2013-4010
RESERVED
CVE-2013-4009
@@ -2277,25 +2277,25 @@
CVE-2013-3826
RESERVED
CVE-2013-3825 (Unspecified vulnerability in the Oracle Agile Product
Collaboration ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2013-3824 (Unspecified vulnerability in the Oracle Agile Collaboration
Framework ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2013-3823 (Unspecified vulnerability in the Oracle Agile PLM Framework
component ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2013-3822 (Unspecified vulnerability in the Oracle Agile PLM Framework
component ...)
- TODO: check
+ NOT-FOR-US: Oracle Supply Chain Products Suite
CVE-2013-3821 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-3820 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-3819 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-3818 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-3817
RESERVED
CVE-2013-3816 (Unspecified vulnerability in the Oracle Policy Automation
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Industry Applications
CVE-2013-3815
RESERVED
CVE-2013-3814
@@ -2339,7 +2339,7 @@
- mysql-5.1 <removed>
NOTE:
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
CVE-2013-3803 (Unspecified vulnerability in the Hyperion BI+ component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Hyperion
CVE-2013-3802 (Unspecified vulnerability in the MySQL Server component in
Oracle ...)
- mysql-5.5 <unfixed>
- mysql-5.1 <removed>
@@ -2349,7 +2349,7 @@
- mysql-5.1 <not-affected> (Only affects 5.5 and 5.6)
NOTE:
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
CVE-2013-3800 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-3799 (Unspecified vulnerability in Oracle Solaris 10 and 11, when
running on ...)
NOT-FOR-US: Oracle Solaris
CVE-2013-3798 (Unspecified vulnerability in the MySQL Server component in
Oracle ...)
@@ -2380,13 +2380,13 @@
- virtualbox <unfixed> (bug #715327)
NOTE: https://www.virtualbox.org/ticket/11863
CVE-2013-3791 (Unspecified vulnerability in Enterprise Manager (EM) Base
Platform ...)
- TODO: check
+ NOT-FOR-US: Oracle Enterprise Manager
CVE-2013-3790 (Unspecified vulnerability in the Core RDBMS component in Oracle
...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2013-3789 (Unspecified vulnerability in the Core RDBMS component in Oracle
...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2013-3788 (Unspecified vulnerability in the Oracle iSupplier Portal
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2013-3787 (Unspecified vulnerability in Oracle Solaris 10 and 11 allows
remote ...)
NOT-FOR-US: Oracle Solaris
CVE-2013-3786 (Unspecified vulnerability in Oracle Solaris 9, 10, and 11
allows local ...)
@@ -2394,67 +2394,67 @@
CVE-2013-3785
RESERVED
CVE-2013-3784 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-3783 (Unspecified vulnerability in the MySQL Server component in
Oracle ...)
- mysql-5.5 <unfixed>
- mysql-5.1 <not-affected> (Only affects 5.5)
NOTE:
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
CVE-2013-3782 (Unspecified vulnerability in the Secure Global Desktop
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Virtualization
CVE-2013-3781 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2013-3780 (Unspecified vulnerability in the PeopleSoft Enterprise Portal
...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-3779 (Unspecified vulnerability in the Secure Global Desktop
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Virtualization
CVE-2013-3778 (Unspecified vulnerability in the Oracle Applications Technology
Stack ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2013-3777 (Unspecified vulnerability in the Oracle Application Object
Library ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2013-3776 (Unspecified vulnerability in the Oracle Outside In Technology
...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2013-3775 (Unspecified vulnerability in the Oracle iLearning component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle iLearning
CVE-2013-3774 (Unspecified vulnerability in the Network Layer component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2013-3773 (Unspecified vulnerability in the SPARC Enterprise M Series
Servers ...)
- TODO: check
+ NOT-FOR-US: Oracle and Sun Systems Products Suite
CVE-2013-3772 (Unspecified vulnerability in the Oracle WebCenter Content
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2013-3771 (Unspecified vulnerability in the Oracle executable component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2013-3770 (Unspecified vulnerability in the Oracle WebCenter Content
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2013-3769 (Unspecified vulnerability in the Oracle WebCenter Content
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2013-3768 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-3767 (Unspecified vulnerability in the Oracle Application Object
Library ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite Access Gate
CVE-2013-3766
RESERVED
CVE-2013-3765 (Unspecified vulnerability in Oracle Solaris 11 allows local
users to ...)
NOT-FOR-US: Oracle Solaris
CVE-2013-3764 (Unspecified vulnerability in the Oracle Endeca Server component
in ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2013-3763 (Unspecified vulnerability in the Oracle Endeca Server component
in ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2013-3762
RESERVED
CVE-2013-3761 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products Portal
CVE-2013-3760 (Unspecified vulnerability in the Oracle executable component in
Oracle ...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2013-3759 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
- TODO: check
+ NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-3758 (Unspecified vulnerability in the Enterprise Manager (EM) Base
Platform ...)
- TODO: check
+ NOT-FOR-US: Oracle Enterprise Manager
CVE-2013-3757 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
allows ...)
NOT-FOR-US: Oracle Solaris
CVE-2013-3756 (Unspecified vulnerability in the Oracle Landed Cost Management
...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2013-3755 (Unspecified vulnerability in the Oracle Access Manager
component in ...)
- TODO: check
+ NOT-FOR-US: Oracle Fusion Middleware
CVE-2013-3754 (Unspecified vulnerability in the Solaris Cluster component in
Oracle ...)
NOT-FOR-US: Solaris
CVE-2013-3753 (Unspecified vulnerability in Oracle Solaris 11 allows remote
attackers ...)
@@ -2462,15 +2462,15 @@
CVE-2013-3752 (Unspecified vulnerability in Oracle Solaris 11 allows remote
attackers ...)
NOT-FOR-US: Oracle Solaris
CVE-2013-3751 (Unspecified vulnerability in the XML Parser component in Oracle
...)
- TODO: check
+ NOT-FOR-US: Oracle Database Server
CVE-2013-3750 (Unspecified vulnerability in Oracle Solaris 11 allows local
users to ...)
NOT-FOR-US: Oracle Solaris
CVE-2013-3749 (Unspecified vulnerability in the Oracle Application Object
Library ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2013-3748 (Unspecified vulnerability in Oracle Solaris 11 allows remote
attackers ...)
NOT-FOR-US: Oracle Solaris
CVE-2013-3747 (Unspecified vulnerability in the Oracle Applications Technology
Stack ...)
- TODO: check
+ NOT-FOR-US: Oracle E-Business Suite
CVE-2013-3746 (Unspecified vulnerability in the Solaris Cluster component in
Oracle ...)
NOT-FOR-US: Solaris
CVE-2013-3745 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
allows ...)
@@ -2676,7 +2676,7 @@
CVE-2013-3666 (The LG Hidden Menu component for Android on the LG Optimus G
E973 ...)
NOT-FOR-US: LG Hidden Menu
CVE-2013-3665 (Unspecified vulnerability in Autodesk AutoCAD through 2014,
AutoCAD LT ...)
- TODO: check
+ NOT-FOR-US: AutoCAD
CVE-2013-3664
RESERVED
CVE-2013-3663
@@ -3189,7 +3189,7 @@
CVE-2013-3437
RESERVED
CVE-2013-3436 (The default configuration of the Group Encrypted Transport VPN
(GET ...)
- TODO: check
+ NOT-FOR-US: Cisco IOS
CVE-2013-3435
RESERVED
CVE-2013-3434 (Untrusted search path vulnerability in Cisco Unified
Communications ...)
@@ -3221,7 +3221,7 @@
CVE-2013-3421 (Cross-site scripting (XSS) vulnerability in the Help index page
in ...)
NOT-FOR-US: Cisco
CVE-2013-3420 (Cross-site request forgery (CSRF) vulnerability in the web
framework ...)
- TODO: check
+ NOT-FOR-US: Cisco Identity Services Engine
CVE-2013-3419 (Cross-site scripting (XSS) vulnerability in Cisco Unified
MeetingPlace ...)
NOT-FOR-US: Cisco
CVE-2013-3418 (Cisco Unified Communications Domain Manager does not properly
allocate ...)
@@ -5827,7 +5827,7 @@
CVE-2013-2352 (LeftHand OS (aka SAN iQ) 10.5 and earlier on HP StoreVirtual
Storage ...)
NOT-FOR-US: HP
CVE-2013-2351 (Unspecified vulnerability in HP Network Node Manager i (NNMi)
9.00, ...)
- TODO: check
+ NOT-FOR-US: HP Network Node Manager
CVE-2013-2350
RESERVED
CVE-2013-2349
@@ -8275,7 +8275,7 @@
CVE-2013-1607
RESERVED
CVE-2013-1606 (Buffer overflow in the ubnt-streamer RTSP service on the
Ubiquiti UBNT ...)
- TODO: check
+ NOT-FOR-US: Ubiquiti UBNT AirCam
CVE-2013-1605
RESERVED
CVE-2013-1604
@@ -9533,7 +9533,7 @@
CVE-2013-1088 (Cross-site request forgery (CSRF) vulnerability in Novell
iManager 2.7 ...)
NOT-FOR-US: Novell iManager
CVE-2013-1087 (Cross-site scripting (XSS) vulnerability in the client in
Novell ...)
- TODO: check
+ NOT-FOR-US: Novell GroupWise
CVE-2013-1086 (Cross-site scripting (XSS) vulnerability in WebAccess in Novell
...)
NOT-FOR-US: Novell GroupWise
CVE-2013-1085 (Stack-based buffer overflow in the nim: protocol handler in
Novell ...)
@@ -11546,7 +11546,7 @@
CVE-2012-6350 (Cross-site scripting (XSS) vulnerability in the Web component
in IBM ...)
NOT-FOR-US: IBM Cognos TM1
CVE-2012-6349 (Buffer overflow in the .mdb parser in Autonomy KeyView IDOL, as
used ...)
- TODO: check
+ NOT-FOR-US: IBM Notes
CVE-2012-6348 (Centrify Deployment Manager 2.1.0.283, as distributed in
Centrify ...)
NOT-FOR-US: Centrify
CVE-2012-6347
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
