Lucene search
This script is Copyright (C) 2006-2021 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS_RHSA-2005-387.NASLHistoryJul 03, 2006 - 12:00 a.m.
CentOS 3 / 4 : cvs (CESA-2005:387)
2006-07-0300:00:00
This script is Copyright (C) 2006-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.848 High
EPSS
Percentile
98.5%
An updated cvs package that fixes security bugs is now available.
This update has been rated as having moderate security impact by the Red Hat Security Response Team.
CVS (Concurrent Version System) is a version control system.
A buffer overflow bug was found in the way the CVS client processes version and author information. If a user can be tricked into connecting to a malicious CVS server, an attacker could execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0753 to this issue.
Additionally, a bug was found in which CVS freed an invalid pointer.
However, this issue does not appear to be exploitable.
All users of cvs should upgrade to this updated package, which includes a backported patch to correct these issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2005:387 and
# CentOS Errata and Security Advisory 2005:387 respectively.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(21817);
script_version("1.20");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");
script_cve_id("CVE-2005-0753");
script_xref(name:"RHSA", value:"2005:387");
script_name(english:"CentOS 3 / 4 : cvs (CESA-2005:387)");
script_summary(english:"Checks rpm output for the updated package");
script_set_attribute(
attribute:"synopsis",
value:"The remote CentOS host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"An updated cvs package that fixes security bugs is now available.
This update has been rated as having moderate security impact by the
Red Hat Security Response Team.
CVS (Concurrent Version System) is a version control system.
A buffer overflow bug was found in the way the CVS client processes
version and author information. If a user can be tricked into
connecting to a malicious CVS server, an attacker could execute
arbitrary code. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CVE-2005-0753 to this issue.
Additionally, a bug was found in which CVS freed an invalid pointer.
However, this issue does not appear to be exploitable.
All users of cvs should upgrade to this updated package, which
includes a backported patch to correct these issues."
);
# https://lists.centos.org/pipermail/centos-announce/2005-April/011594.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?4f3ebeb0"
);
# https://lists.centos.org/pipermail/centos-announce/2005-April/011595.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?25ca00d9"
);
# https://lists.centos.org/pipermail/centos-announce/2005-April/011596.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?213904f4"
);
# https://lists.centos.org/pipermail/centos-announce/2005-April/011597.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?e4f8fb56"
);
# https://lists.centos.org/pipermail/centos-announce/2005-April/011598.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?37d6a795"
);
script_set_attribute(attribute:"solution", value:"Update the affected cvs package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:cvs");
script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:3");
script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:4");
script_set_attribute(attribute:"vuln_publication_date", value:"2005/04/18");
script_set_attribute(attribute:"patch_publication_date", value:"2005/04/26");
script_set_attribute(attribute:"plugin_publication_date", value:"2006/07/03");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2006-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"CentOS Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^(3|4)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 3.x / 4.x", "CentOS " + os_ver);
if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);
flag = 0;
if (rpm_check(release:"CentOS-3", reference:"cvs-1.11.2-27")) flag++;
if (rpm_check(release:"CentOS-4", reference:"cvs-1.11.17-7.RHEL4")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "cvs");
}
Related
nessus
nessus
Ubuntu 4.10 / 5.04 : cvs vulnerability (USN-117-1)
2006-01-15 00:00:00
SUSE-SA:2005:024: cvs
2005-04-18 00:00:00
Fedora Core 3 : cvs-1.11.17-6.FC3 (2005-330)
2005-09-12 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-742-1)
2008-01-17 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-05:05.cvs.asc)
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200504-16 (CVS)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2005-0753
2005-04-21 04:00:00
checkpoint_advisories
checkpoint_advisories
CVS Annotate Command Revision String Buffer Overflow (CVE-2005-0753)
2009-11-15 00:00:00
slackware
slackware
CVS
2005-04-21 22:27:21
osv
osv
cvs - buffer overflow
2005-07-07 00:00:00
cve
cve
CVE-2005-0753
2005-04-21 04:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package cvs version 1.11.19-alt1
2005-04-06 00:00:00
redhat
redhat
(RHSA-2005:387) cvs security update
2005-04-25 00:00:00
centos
centos
cvs security update
2005-04-26 13:42:59
cvs security update
2005-04-26 22:37:03
ubuntu
ubuntu
cvs vulnerability
2005-05-04 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-05:05.cvs
2005-04-22 00:00:00
ubuntucve
ubuntucve
CVE-2005-0753
2005-04-18 00:00:00
debian
debian
[SECURITY] [DSA 742-1] New cvs packages fix arbitrary code execution
2005-07-07 21:04:16
[SECURITY] [DSA 742-1] New cvs packages fix arbitrary code execution
2005-07-07 21:04:16
debiancve
debiancve
CVE-2005-0753
2005-04-21 04:00:00
nvd
nvd
CVE-2005-0753
2005-04-18 04:00:00
gentoo
gentoo
CVS: Multiple vulnerabilities
2005-04-18 00:00:00
suse
suse
remote code execution in cvs
2005-04-18 14:31:00
securityvulns
securityvulns
[Full-disclosure] SUSE Security Announcement: cvs (SUSE-SA:2005:024)
2005-04-18 00:00:00
7.5 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.848 High
EPSS
Percentile
98.5%
Related for CENTOS_RHSA-2005-387.NASL