From f6a48d3dcc8c44cca5aeb78873f5ca07e16cd73a Mon Sep 17 00:00:00 2001 From: Yves-Alexis Perez Date: Tue, 3 Jan 2012 22:15:27 +0000 Subject: fix NOTE: not-for-us by using correct NOT-FOR-US tag note: there's a check needed for Monkey for an old 2002 CVE git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@18017 e39458fd-73e7-0310-bf30-c45bca0a0e42 --- data/CVE/2002.list | 54 +++++++++++++++++++++++++++--------------------------- 1 file changed, 27 insertions(+), 27 deletions(-) (limited to 'data/CVE/2002.list') diff --git a/data/CVE/2002.list b/data/CVE/2002.list index db54eff047..4b27b1f9e7 100644 --- a/data/CVE/2002.list +++ b/data/CVE/2002.list @@ -486,7 +486,7 @@ CVE-2002-2202 (Outlook Express 6.0 does not delete messages from dbx files, even CVE-2002-2201 (The Printer Administration module for Webmin 0.990 and earlier allows ...) - webmin 1.000 (high) CVE-2002-2200 (Benjamin Lefevre Dobermann FORUM 0.5 and earlier allows remote ...) - NOTE: not-for-us (Benjamin Lefevre Dobermann FORUM) + NOT-FOR-US: (Benjamin Lefevre Dobermann FORUM) CVE-2002-2199 (The default aide.conf file in Advanced Intrusion Detection Environment ...) NOTE: freebsd misconfiguration CVE-2002-2198 (Buffer overflow in ZMailer before 2.99.51_1 allows remote attackers to ...) @@ -1210,59 +1210,59 @@ CVE-2002-1856 (HP Application Server 8.0, when running on Windows, allows remote CVE-2002-1855 (Macromedia JRun 3.0 through 4.0, when running on Windows, allows ...) NOT-FOR-US: Macromedia JRun CVE-2002-1854 (Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to ...) - NOTE: not-for-us + NOT-FOR-US: rlaj whois.cgi CVE-2002-1853 (Cross-site scripting (XSS) vulnerability in MyNewsGroups 0.4 and 0.4.1 ...) - NOTE: not-for-us + NOT-FOR-US: MyNewsGroups CVE-2002-1852 (Cross-site scripting (XSS) vulnerability in Monkey 0.5.0 allows remote ...) - NOTE: not-for-us + TODO: check, monkey 0.9.3 is in Debian, not sure if vulnerable code is present CVE-2002-1851 (Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute ...) - NOTE: not-for-us + NOT-FOR-US: WS_FTP Pro CVE-2002-1850 (mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly ...) - apache2 2.0.42-1 CVE-2002-1849 (ParaChat Server 4.0 does not log users off if the browser's back ...) - NOTE: not-for-us + NOT-FOR-US: ParaChat CVE-2002-1848 (TightVNC before 1.2.4 running on Windows stores unencrypted passwords ...) - NOTE: not-for-us + NOT-FOR-US: TightVNC on Windows only CVE-2002-1847 (Buffer overflow in mplay32.exe of Microsoft Windows Media Player (WMP) ...) - NOTE: not-for-us + NOT-FOR-US: Microsoft Windows Media Player CVE-2002-1846 (Yet Another Bulletin Board (YaBB) 1.40 and 1.41 does not require a ...) - NOTE: not-for-us + NOT-FOR-US: YaBB CVE-2002-1845 (Cross-site scripting (XSS) vulnerability in index.php in Yet Another ...) - NOTE: not-for-us + NOT-FOR-US: YaBB CVE-2002-1844 (Microsoft Windows Media Player (WMP) 6.3, when installed on Solaris, ...) - NOTE: not-for-us + NOT-FOR-US: Microsoft Windows Media Player CVE-2002-1843 (Perlbot 1.9.2 allows remote attackers to execute arbitrary commands ...) - NOTE: not-for-us + NOT-FOR-US: Perlbot CVE-2002-1842 (Perlbot 1.0 beta allows remote attackers to execute arbitrary commands ...) - NOTE: not-for-us + NOT-FOR-US: Perlbot CVE-2002-1841 (The document management module in NOLA 1.1.1 and 1.1.2 does not ...) - NOTE: not-for-us + NOT-FOR-US: Nogusta NOLA CVE-2002-1840 (irssi IRC client 0.8.4, when downloaded after 14-March-2002, could ...) - NOTE: not-for-us + NOT-FOR-US: some irssi tarballs contained a backdoor CVE-2002-1839 (Trend Micro InterScan VirusWall for Windows NT 3.52 does not record ...) - NOTE: not-for-us + NOT-FOR-US: Trend Micro InterScan VirusWall (Windows NT 3.52) CVE-2002-1838 (Charities.cron 1.0.2 through 1.6.0 allows local users to write to ...) - NOTE: not-for-us + NOT-FOR-US: Charities.cron CVE-2002-1837 (The getAlbumToDisplay function in idsShared.pm for Image Display ...) - NOTE: not-for-us + NOT-FOR-US: Image Display System CVE-2002-1836 (The default configuration of Xerox DocuTech 6110 and DocuTech 6115 ...) - NOTE: not-for-us + NOT-FOR-US: Xerox Docutech CVE-2002-1835 (The default configuration of Xerox DocuTech 6110 and DocuTech 6115 ...) - NOTE: not-for-us + NOT-FOR-US: Xerox Docutech CVE-2002-1834 (The default configuration of Xerox DocuTech 6110 and DocuTech 6115 ...) - NOTE: not-for-us + NOT-FOR-US: Xerox Docutech CVE-2002-1833 (The default configurations for DocuTech 6110 and DocuTech 6115 have a ...) - NOTE: not-for-us + NOT-FOR-US: Xerox Docutech CVE-2002-1832 (Unknown vulnerability in the "ipopts decode" functionality in ...) - NOTE: not-for-us + NOT-FOR-US: Firestorm IDS CVE-2002-1831 (Microsoft MSN Messenger Service 1.0 through 4.6 allows remote ...) - NOTE: not-for-us + NOT-FOR-US: Microsoft MSN Messenger Service CVE-2002-1830 (Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to ...) - NOTE: not-for-us + NOT-FOR-US: Open Bulletin Board CVE-2002-1829 (Cross-site scripting (XSS) vulnerability in codeparse.php in Open ...) - NOTE: not-for-us + NOT-FOR-US: Open Bulletin Board CVE-2002-1828 (Savant Webserver 3.1 allows remote attackers to cause a denial of ...) - NOTE: not-for-us + NOT-FOR-US: Savant Webserver CVE-2002-1827 (Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of ...) - sendmail 8.12-4 CVE-2002-1826 (grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass ...) -- cgit v1.2.3