From 9d0583f29b270cfc325167e1e3f57925358fa694 Mon Sep 17 00:00:00 2001 From: security tracker role Date: Thu, 11 May 2017 21:10:12 +0000 Subject: automatic update git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@51554 e39458fd-73e7-0310-bf30-c45bca0a0e42 --- data/CVE/2007.list | 80 +++++++++++++++++++++++++++--------------------------- 1 file changed, 40 insertions(+), 40 deletions(-) (limited to 'data/CVE/2007.list') diff --git a/data/CVE/2007.list b/data/CVE/2007.list index 93cec202a9..04e6dcd224 100644 --- a/data/CVE/2007.list +++ b/data/CVE/2007.list @@ -1213,7 +1213,7 @@ CVE-2007-6258 (Multiple stack-based buffer overflows in the legacy mod_jk2 2.0.3 CVE-2007-6257 RESERVED CVE-2007-6256 - RESERVED + REJECTED CVE-2007-6255 (Buffer overflow in the Microsoft HeartbeatCtl ActiveX control in ...) NOT-FOR-US: Microsoft HRTBEAT.OCX CVE-2007-6254 (Stack-based buffer overflow in the SAP Business Objects ...) @@ -1231,7 +1231,7 @@ CVE-2007-6249 (etc-update in Portage before 2.1.3.11 on Gentoo Linux relies on t CVE-2007-6248 RESERVED CVE-2007-6247 - RESERVED + REJECTED CVE-2007-6246 (Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up ...) - flashplugin-nonfree 9.0.115.0.1 [sarge] - flashplugin-nonfree (Contrib not supported) @@ -3362,15 +3362,15 @@ CVE-2007-5358 (Multiple buffer overflows in the voicemail functionality in Aster [sarge] - asterisk (Only Asterisk 1.4.x is affected) [etch] - asterisk (Only Asterisk 1.4.x is affected) CVE-2007-5357 - RESERVED + REJECTED CVE-2007-5356 - RESERVED + REJECTED CVE-2007-5355 (The Web Proxy Auto-Discovery (WPAD) feature in Microsoft Internet ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2007-5354 - RESERVED + REJECTED CVE-2007-5353 - RESERVED + REJECTED CVE-2007-5352 (Unspecified vulnerability in Local Security Authority Subsystem ...) NOT-FOR-US: Microsoft Windows CVE-2007-5351 (Unspecified vulnerability in Server Message Block Version 2 (SMBv2) ...) @@ -3378,19 +3378,19 @@ CVE-2007-5351 (Unspecified vulnerability in Server Message Block Version 2 (SMBv CVE-2007-5350 (Unspecified vulnerability in the Windows Advanced Local Procedure Call ...) NOT-FOR-US: Microsoft Vista CVE-2007-5349 - RESERVED + REJECTED CVE-2007-5348 (Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2007-5347 (Microsoft Internet Explorer 5.01 through 7 allows remote attackers to ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2007-5346 - RESERVED + REJECTED CVE-2007-5345 - RESERVED + REJECTED CVE-2007-5344 (Microsoft Internet Explorer 5.01 through 7 allows remote attackers to ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2007-5343 - RESERVED + REJECTED CVE-2007-5342 (The default catalina.policy in the JULI logging component in Apache ...) {DSA-1447-1} - tomcat5.5 5.5.25-4 (low; bug #458237) @@ -6794,7 +6794,7 @@ CVE-2007-3905 (SQL injection vulnerability in Zoph before 0.7.0.1 might allow re {DSA-1389-2 DSA-1389-1} - zoph 0.7.0.2-1 (bug #435711) CVE-2007-3904 - RESERVED + REJECTED CVE-2007-3903 (Microsoft Internet Explorer 6 and 7 allows remote attackers to execute ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2007-3902 (Use-after-free vulnerability in the CRecalcProperty function in ...) @@ -6802,7 +6802,7 @@ CVE-2007-3902 (Use-after-free vulnerability in the CRecalcProperty function in . CVE-2007-3901 (Stack-based buffer overflow in the DirectShow Synchronized Accessible ...) NOT-FOR-US: Microsoft DirectX CVE-2007-3900 - RESERVED + REJECTED CVE-2007-3899 (Unspecified vulnerability in Microsoft Word 2000 SP3, Word 2002 SP3, ...) NOT-FOR-US: Microsoft Word CVE-2007-3898 (The DNS server in Microsoft Windows 2000 Server SP4, and Server 2003 ...) @@ -6814,7 +6814,7 @@ CVE-2007-3896 (The URL handling in Shell32.dll in the Windows shell in Microsoft CVE-2007-3895 (Buffer overflow in Microsoft DirectShow in Microsoft DirectX 7.0 ...) NOT-FOR-US: Microsoft DirectX CVE-2007-3894 - RESERVED + REJECTED CVE-2007-3893 (Unspecified vulnerability in Microsoft Internet Explorer 5.01 through ...) NOT-FOR-US: Internet Explorer CVE-2007-3892 (Microsoft Internet Explorer 5.01 through 7 allows remote attackers to ...) @@ -8878,7 +8878,7 @@ CVE-2007-3033 (Cross-site scripting (XSS) vulnerability in Windows Vista Feed .. CVE-2007-3032 (Unspecified vulnerability in Windows Vista Contacts Gadget in Windows ...) NOT-FOR-US: Microsoft CVE-2007-3031 - RESERVED + REJECTED CVE-2007-3030 (Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer allows ...) NOT-FOR-US: Microsoft Excel CVE-2007-3029 (Unspecified vulnerability in Microsoft Excel 2002 SP3 and 2003 SP2 ...) @@ -10826,7 +10826,7 @@ CVE-2007-2228 (rpcrt4.dll (aka the RPC runtime library) in Microsoft Windows XP CVE-2007-2227 (The MHTML protocol handler in Microsoft Outlook Express 6 and Windows ...) NOT-FOR-US: Microsoft CVE-2007-2226 - RESERVED + REJECTED CVE-2007-2225 (A component in Microsoft Outlook Express 6 and Windows Mail in Windows ...) NOT-FOR-US: Microsoft CVE-2007-2224 (Object linking and embedding (OLE) Automation, as used in Microsoft ...) @@ -10838,7 +10838,7 @@ CVE-2007-2222 (Multiple buffer overflows in the (1) ActiveListen (Xlisten.dll) a CVE-2007-2221 (Unspecified vulnerability in the mdsauth.dll COM object in Microsoft ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2007-2220 - RESERVED + REJECTED CVE-2007-2219 (Unspecified vulnerability in the Win32 API on Microsoft Windows 2000, ...) NOT-FOR-US: Microsoft CVE-2007-2218 (Unspecified vulnerability in the Windows Schannel Security Package for ...) @@ -10848,7 +10848,7 @@ CVE-2007-2217 (Kodak Image Viewer in Microsoft Windows 2000 SP4, and in some cas CVE-2007-2216 (The tblinf32.dll (aka vstlbinf.dll) ActiveX control for Internet ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2007-2215 - RESERVED + REJECTED CVE-2007-2214 (Unrestricted file upload vulnerability in includes/upload_file.php in ...) NOT-FOR-US: DmCMS CVE-2007-2213 (Unspecified vulnerability in the Initialize function in ...) @@ -11873,23 +11873,23 @@ CVE-2007-1762 (Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URL NOTE: will register URLs found in the wild and the used adresses will be NOTE: volatile anyway CVE-2007-1761 - RESERVED + REJECTED CVE-2007-1760 - RESERVED + REJECTED CVE-2007-1759 - RESERVED + REJECTED CVE-2007-1758 - RESERVED + REJECTED CVE-2007-1757 - RESERVED + REJECTED CVE-2007-1756 (Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, and Office ...) NOT-FOR-US: Microsoft Excel CVE-2007-1755 - RESERVED + REJECTED CVE-2007-1754 (PUBCONV.DLL in Microsoft Office Publisher 2007 does not properly clear ...) NOT-FOR-US: Microsoft Office CVE-2007-1753 - RESERVED + REJECTED CVE-2007-1752 REJECTED CVE-2007-1751 (Microsoft Internet Explorer 5.01, 6, and 7 allows remote attackers to ...) @@ -13209,13 +13209,13 @@ CVE-2007-1212 (Buffer overflow in the Graphics Device Interface (GDI) in Microso CVE-2007-1211 (Unspecified kernel GDI functions in Microsoft Windows 2000 SP4; XP ...) NOT-FOR-US: Microsoft Windows CVE-2007-1210 - RESERVED + REJECTED CVE-2007-1209 (Use-after-free vulnerability in the Client/Server Run-time Subsystem ...) NOT-FOR-US: Windows Vista CVE-2007-1208 - RESERVED + REJECTED CVE-2007-1207 - RESERVED + REJECTED CVE-2007-1206 (The Virtual DOS Machine (VDM) in the Windows Kernel in Microsoft ...) NOT-FOR-US: Microsoft Windows CVE-2007-1205 (Unspecified vulnerability in Microsoft Agent (msagent\agentsvr.exe) in ...) @@ -13708,13 +13708,13 @@ CVE-2007-0994 (A regression error in Mozilla Firefox 2.x before 2.0.0.2 and 1.x CVE-2007-0993 REJECTED CVE-2007-0992 - RESERVED + REJECTED CVE-2007-0991 - RESERVED + REJECTED CVE-2007-0990 - RESERVED + REJECTED CVE-2007-0989 - RESERVED + REJECTED CVE-2007-0988 (The zend_hash_init function in PHP 5 before 5.2.1 and PHP 4 before ...) {DSA-1264-1} [etch] - php4 6:4.4.4-8+etch1 @@ -13823,7 +13823,7 @@ CVE-2007-0943 (Unspecified vulnerability in Internet Explorer 5.01 and 6 SP1 all CVE-2007-0942 (Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on ...) NOT-FOR-US: Microsoft Internet Explorer CVE-2007-0941 - RESERVED + REJECTED CVE-2007-0940 (Unspecified vulnerability in the Cryptographic API Component Object ...) NOT-FOR-US: Microsoft CAPICOM CVE-2007-0939 (Cross-site scripting (XSS) vulnerability in Microsoft Content ...) @@ -13831,11 +13831,11 @@ CVE-2007-0939 (Cross-site scripting (XSS) vulnerability in Microsoft Content ... CVE-2007-0938 (Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2 does ...) NOT-FOR-US: Microsoft Content Management Server CVE-2007-0937 - RESERVED + REJECTED CVE-2007-0936 (Multiple unspecified vulnerabilities in Microsoft Visio 2002 allow ...) NOT-FOR-US: Microsoft CVE-2007-0935 - RESERVED + REJECTED CVE-2007-0934 (Unspecified vulnerability in Microsoft Visio 2002 allows remote ...) NOT-FOR-US: Microsoft CVE-2007-0933 (Buffer overflow in the wireless driver 6.0.0.18 for D-Link DWL-G650+ ...) @@ -14375,7 +14375,7 @@ CVE-2007-0729 (Apple File Protocol (AFP) Client in Apple Mac OS X 10.3.9 through CVE-2007-0728 (Unspecified vulnerability in Apple Mac OS X 10.3.9 and 10.4 through ...) NOT-FOR-US: Apple Mac CVE-2007-0727 - RESERVED + REJECTED CVE-2007-0726 (The SSH key generation process in OpenSSH in Apple Mac OS X 10.3.9 and ...) NOT-FOR-US: Apple OpenSSH CVE-2007-0725 (Buffer overflow in the AirPortDriver module for AirPort in Apple Mac ...) @@ -15526,7 +15526,7 @@ CVE-2007-0214 (The HTML Help ActiveX control (Hhctrl.ocx) in Microsoft Windows 2 CVE-2007-0213 (Microsoft Exchange Server 2000 SP3, 2003 SP1 and SP2, and 2007 does ...) NOT-FOR-US: Microsoft CVE-2007-0212 - RESERVED + REJECTED CVE-2007-0211 (The hardware detection functionality in the Windows Shell in Microsoft ...) NOT-FOR-US: Microsoft CVE-2007-0210 (The Window Image Acquisition (WIA) Service in Microsoft Windows XP SP2 ...) @@ -15536,7 +15536,7 @@ CVE-2007-0209 (Microsoft Word in Office 2000 SP3, XP SP3, Office 2003 SP2, Works CVE-2007-0208 (Microsoft Word in Office 2000 SP3, XP SP3, Office 2003 SP2, Works ...) NOT-FOR-US: Microsoft CVE-2007-0207 - RESERVED + REJECTED CVE-2007-0206 (Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) ...) NOT-FOR-US: OpenView Network Node Manager CVE-2007-XXXX [udev wrong permissions on raid devices] @@ -15926,9 +15926,9 @@ CVE-2007-0039 (The Exchange Collaboration Data Objects (EXCDO) functionality in CVE-2007-0038 (Stack-based buffer overflow in the animated cursor code in Microsoft ...) NOT-FOR-US: Microsoft CVE-2007-0037 - RESERVED + REJECTED CVE-2007-0036 - RESERVED + REJECTED CVE-2007-0035 (Word (or Word Viewer) in Microsoft Office 2000 SP3, XP SP3, 2003 SP2, ...) NOT-FOR-US: Microsoft Word CVE-2007-0034 (Buffer overflow in the Advanced Search (Finder.exe) feature of ...) @@ -15936,7 +15936,7 @@ CVE-2007-0034 (Buffer overflow in the Advanced Search (Finder.exe) feature of .. CVE-2007-0033 (Microsoft Outlook 2002 and 2003 allows user-assisted remote attackers to ...) NOT-FOR-US: Microsoft Outlook CVE-2007-0032 - RESERVED + REJECTED CVE-2007-0031 (Heap-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, ...) NOT-FOR-US: Microsoft Excel CVE-2007-0030 (Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X ...) -- cgit v1.2.3