Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2018 Tenable Network Security, Inc.ALA_ALAS-2013-170.NASL
HistorySep 04, 2013 - 12:00 a.m.

Amazon Linux AMI : cups (ALAS-2013-170)

2013-09-0400:00:00
This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.
www.tenable.com
14
JSON

It was discovered that CUPS administrative users (members of the SystemGroups groups) who are permitted to perform CUPS configuration changes via the CUPS web interface could manipulate the CUPS configuration to gain unintended privileges. Such users could read or write arbitrary files with the privileges of the CUPS daemon, possibly allowing them to run arbitrary code with root privileges.
(CVE-2012-5519)

After installing this update, the ability to change certain CUPS configuration directives remotely will be disabled by default. The newly introduced ConfigurationChangeRestriction directive can be used to enable the changing of the restricted directives remotely.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux AMI Security Advisory ALAS-2013-170.
#

include("compat.inc");

if (description)
{
  script_id(69729);
  script_version("1.7");
  script_cvs_date("Date: 2018/04/18 15:09:35");

  script_cve_id("CVE-2012-5519");
  script_xref(name:"ALAS", value:"2013-170");
  script_xref(name:"RHSA", value:"2013:0580");

  script_name(english:"Amazon Linux AMI : cups (ALAS-2013-170)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Amazon Linux AMI host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"It was discovered that CUPS administrative users (members of the
SystemGroups groups) who are permitted to perform CUPS configuration
changes via the CUPS web interface could manipulate the CUPS
configuration to gain unintended privileges. Such users could read or
write arbitrary files with the privileges of the CUPS daemon, possibly
allowing them to run arbitrary code with root privileges.
(CVE-2012-5519)

After installing this update, the ability to change certain CUPS
configuration directives remotely will be disabled by default. The
newly introduced ConfigurationChangeRestriction directive can be used
to enable the changing of the restricted directives remotely."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://alas.aws.amazon.com/ALAS-2013-170.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Run 'yum update cups' to update your system."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:cups");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:cups-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:cups-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:cups-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:cups-lpd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:cups-php");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2013/03/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/09/04");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.");
  script_family(english:"Amazon Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "A")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux AMI", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (rpm_check(release:"ALA", reference:"cups-1.4.2-50.18.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"cups-debuginfo-1.4.2-50.18.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"cups-devel-1.4.2-50.18.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"cups-libs-1.4.2-50.18.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"cups-lpd-1.4.2-50.18.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"cups-php-1.4.2-50.18.amzn1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "cups / cups-debuginfo / cups-devel / cups-libs / cups-lpd / etc");
}
VendorProductVersionCPE
amazonlinuxcupsp-cpe:/a:amazon:linux:cups
amazonlinuxcups-debuginfop-cpe:/a:amazon:linux:cups-debuginfo
amazonlinuxcups-develp-cpe:/a:amazon:linux:cups-devel
amazonlinuxcups-libsp-cpe:/a:amazon:linux:cups-libs
amazonlinuxcups-lpdp-cpe:/a:amazon:linux:cups-lpd
amazonlinuxcups-phpp-cpe:/a:amazon:linux:cups-php
amazonlinuxcpe:/o:amazon:linux

Related

openvas 25
nessus 18
redhat 1
ubuntucve 1
fedora 2
ubuntu 1
prion 1
debian 1
cvelist 1
debiancve 1
securityvulns 4
oraclelinux 1
centos 1
gentoo 1
amazon 1
veracode 1
osv 1
cve 1
suse 4
openvas
openvas
CentOS Update for cups CESA-2013:0580 centos5
2013-03-05 00:00:00
Debian: Security Advisory (DSA-2600-1)
2013-01-05 00:00:00
Mandriva Update for cups MDVSA-2012:179 (cups)
2012-12-14 00:00:00
nessus
nessus
RHEL 5 / 6 : cups (RHSA-2013:0580)
2013-03-01 00:00:00
Fedora 18 : cups-1.5.4-20.fc18 (2012-19301)
2013-01-14 00:00:00
SuSE 11.2 / 11.3 Security Update : CUPS (SAT Patch Numbers 8436 / 8437)
2013-11-12 00:00:00
redhat
redhat
(RHSA-2013:0580) Moderate: cups security update
2013-02-28 00:00:00
ubuntucve
ubuntucve
CVE-2012-5519
2012-11-19 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: cups-1.5.4-20.fc18
2013-01-12 01:01:29
[SECURITY] Fedora 17 Update: cups-1.5.4-18.fc17
2013-02-26 02:42:00
ubuntu
ubuntu
CUPS vulnerability
2012-12-05 00:00:00
prion
prion
Design/Logic Flaw
2012-11-20 00:55:00
debian
debian
[SECURITY] [DSA 2600-1] cups security update
2013-01-06 17:33:38
cvelist
cvelist
CVE-2012-5519
2012-11-20 00:00:00
debiancve
debiancve
CVE-2012-5519
2012-11-20 00:55:00
securityvulns
securityvulns
[USN-1654-1] CUPS vulnerability
2012-12-07 00:00:00
CUPS privilege escalation
2012-12-07 00:00:00
Apple Mac OS X multiple security vulnerabilities
2013-06-17 00:00:00
oraclelinux
oraclelinux
cups security update
2013-02-28 00:00:00
centos
centos
cups security update
2013-03-01 10:00:14
gentoo
gentoo
CUPS: Arbitrary file read/write
2014-04-07 00:00:00
amazon
amazon
Medium: cups
2013-03-14 22:04:00
veracode
veracode
Arbitrary File Write
2019-01-15 08:58:43
osv
osv
cups - privilege escalation
2013-01-06 00:00:00
cve
cve
CVE-2012-5519
2012-11-20 00:55:00
suse
suse
Security update for cups (critical)
2015-06-11 17:05:04
Security update for cups (critical)
2015-06-12 21:05:05
Security update for cups154 (critical)
2015-06-11 19:04:58
JSON
Related for ALA_ALAS-2013-170.NASL
openvas25nessus18redhat1ubuntucve1fedora2ubuntu1prion1debian1cvelist1debiancve1securityvulns4oraclelinux1centos1gentoo1amazon1veracode1osv1cve1suse4