Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS_RHSA-2006-0734.NASL
HistoryApr 23, 2009 - 12:00 a.m.

CentOS 3 / 4 : seamonkey (CESA-2006:0734)

2009-04-2300:00:00
This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.46 Medium

EPSS

Percentile

97.4%

JSON

Updated SeaMonkey packages that fix several security bugs are now available for Red Hat Enterprise Linux 2.1, 3, and 4.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

SeaMonkey is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor.

Several flaws were found in the way SeaMonkey processes certain malformed JavaScript code. A malicious web page could cause the execution of JavaScript code in such a way that could cause SeaMonkey to crash or execute arbitrary code as the user running SeaMonkey.
(CVE-2006-5463, CVE-2006-5747, CVE-2006-5748)

Several flaws were found in the way SeaMonkey renders web pages. A malicious web page could cause the browser to crash or possibly execute arbitrary code as the user running SeaMonkey. (CVE-2006-5464)

A flaw was found in the way SeaMonkey verifies RSA signatures. For RSA keys with exponent 3 it is possible for an attacker to forge a signature that would be incorrectly verified by the NSS library.
SeaMonkey as shipped trusts several root Certificate Authorities that use exponent 3. An attacker could have created a carefully crafted SSL certificate which be incorrectly trusted when their site was visited by a victim. This flaw was previously thought to be fixed in SeaMonkey 1.0.5, however Ulrich Kuehn discovered the fix was incomplete (CVE-2006-5462)

Users of SeaMonkey are advised to upgrade to these erratum packages, which contains SeaMonkey version 1.0.6 that corrects these issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2006:0734 and 
# CentOS Errata and Security Advisory 2006:0734 respectively.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(36309);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2006-5462", "CVE-2006-5463", "CVE-2006-5464", "CVE-2006-5747", "CVE-2006-5748");
  script_bugtraq_id(19849);
  script_xref(name:"RHSA", value:"2006:0734");

  script_name(english:"CentOS 3 / 4 : seamonkey (CESA-2006:0734)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote CentOS host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated SeaMonkey packages that fix several security bugs are now
available for Red Hat Enterprise Linux 2.1, 3, and 4.

This update has been rated as having critical security impact by the
Red Hat Security Response Team.

SeaMonkey is an open source Web browser, advanced email and newsgroup
client, IRC chat client, and HTML editor.

Several flaws were found in the way SeaMonkey processes certain
malformed JavaScript code. A malicious web page could cause the
execution of JavaScript code in such a way that could cause SeaMonkey
to crash or execute arbitrary code as the user running SeaMonkey.
(CVE-2006-5463, CVE-2006-5747, CVE-2006-5748)

Several flaws were found in the way SeaMonkey renders web pages. A
malicious web page could cause the browser to crash or possibly
execute arbitrary code as the user running SeaMonkey. (CVE-2006-5464)

A flaw was found in the way SeaMonkey verifies RSA signatures. For RSA
keys with exponent 3 it is possible for an attacker to forge a
signature that would be incorrectly verified by the NSS library.
SeaMonkey as shipped trusts several root Certificate Authorities that
use exponent 3. An attacker could have created a carefully crafted SSL
certificate which be incorrectly trusted when their site was visited
by a victim. This flaw was previously thought to be fixed in SeaMonkey
1.0.5, however Ulrich Kuehn discovered the fix was incomplete
(CVE-2006-5462)

Users of SeaMonkey are advised to upgrade to these erratum packages,
which contains SeaMonkey version 1.0.6 that corrects these issues."
  );
  # https://lists.centos.org/pipermail/centos-announce/2006-November/013368.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?24d0843d"
  );
  # https://lists.centos.org/pipermail/centos-announce/2006-November/013370.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?88f3a89f"
  );
  # https://lists.centos.org/pipermail/centos-announce/2006-November/013371.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?f058093a"
  );
  # https://lists.centos.org/pipermail/centos-announce/2006-November/013376.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?a862378d"
  );
  # https://lists.centos.org/pipermail/centos-announce/2006-November/013379.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?17514662"
  );
  # https://lists.centos.org/pipermail/centos-announce/2006-November/013380.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?b49bb343"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected seamonkey packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:devhelp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:devhelp-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey-chat");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey-dom-inspector");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey-js-debugger");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey-mail");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey-nspr");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey-nspr-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey-nss");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:seamonkey-nss-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:3");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:4");

  script_set_attribute(attribute:"vuln_publication_date", value:"2006/11/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2006/11/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/04/23");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"CentOS Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^(3|4)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 3.x / 4.x", "CentOS " + os_ver);

if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);


flag = 0;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-1.0.6-0.1.el3.centos3")) flag++;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-chat-1.0.6-0.1.el3.centos3")) flag++;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-devel-1.0.6-0.1.el3.centos3")) flag++;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-dom-inspector-1.0.6-0.1.el3.centos3")) flag++;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-js-debugger-1.0.6-0.1.el3.centos3")) flag++;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-mail-1.0.6-0.1.el3.centos3")) flag++;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-nspr-1.0.6-0.1.el3.centos3")) flag++;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-nspr-devel-1.0.6-0.1.el3.centos3")) flag++;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-nss-1.0.6-0.1.el3.centos3")) flag++;
if (rpm_check(release:"CentOS-3", reference:"seamonkey-nss-devel-1.0.6-0.1.el3.centos3")) flag++;

if (rpm_check(release:"CentOS-4", cpu:"i386", reference:"devhelp-0.10-0.5.el4")) flag++;
if (rpm_check(release:"CentOS-4", cpu:"x86_64", reference:"devhelp-0.10-0.5.el4")) flag++;
if (rpm_check(release:"CentOS-4", cpu:"i386", reference:"devhelp-devel-0.10-0.5.el4")) flag++;
if (rpm_check(release:"CentOS-4", cpu:"x86_64", reference:"devhelp-devel-0.10-0.5.el4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-1.0.6-0.1.el4.centos4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-chat-1.0.6-0.1.el4.centos4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-devel-1.0.6-0.1.el4.centos4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-dom-inspector-1.0.6-0.1.el4.centos4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-js-debugger-1.0.6-0.1.el4.centos4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-mail-1.0.6-0.1.el4.centos4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-nspr-1.0.6-0.1.el4.centos4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-nspr-devel-1.0.6-0.1.el4.centos4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-nss-1.0.6-0.1.el4.centos4")) flag++;
if (rpm_check(release:"CentOS-4", reference:"seamonkey-nss-devel-1.0.6-0.1.el4.centos4")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "devhelp / devhelp-devel / seamonkey / seamonkey-chat / etc");
}
VendorProductVersionCPE
centoscentosdevhelpp-cpe:/a:centos:centos:devhelp
centoscentosdevhelp-develp-cpe:/a:centos:centos:devhelp-devel
centoscentosseamonkeyp-cpe:/a:centos:centos:seamonkey
centoscentosseamonkey-chatp-cpe:/a:centos:centos:seamonkey-chat
centoscentosseamonkey-develp-cpe:/a:centos:centos:seamonkey-devel
centoscentosseamonkey-dom-inspectorp-cpe:/a:centos:centos:seamonkey-dom-inspector
centoscentosseamonkey-js-debuggerp-cpe:/a:centos:centos:seamonkey-js-debugger
centoscentosseamonkey-mailp-cpe:/a:centos:centos:seamonkey-mail
centoscentosseamonkey-nsprp-cpe:/a:centos:centos:seamonkey-nspr
centoscentosseamonkey-nspr-develp-cpe:/a:centos:centos:seamonkey-nspr-devel
Rows per page:
1-10 of 141

Related

nessus 41
centos 4
openvas 20
gentoo 3
redhat 3
ubuntu 2
oraclelinux 3
suse 1
debian 4
osv 3
mozilla 3
ubuntucve 6
cert 5
cvelist 6
nvd 6
debiancve 6
cve 6
veracode 5
nessus
nessus
RHEL 4 : firefox (RHSA-2006:0733)
2006-11-20 00:00:00
GLSA-200612-07 : Mozilla Firefox: Multiple vulnerabilities
2006-12-14 00:00:00
openSUSE 10 Security Update : MozillaFirefox (MozillaFirefox-2251)
2007-10-17 00:00:00
centos
centos
firefox security update
2006-11-09 21:11:25
devhelp, seamonkey security update
2006-11-09 02:25:34
thunderbird security update
2006-11-09 21:51:03
openvas
openvas
Gentoo Security Advisory GLSA 200612-07 (mozilla-firefox)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200612-07 (mozilla-firefox)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200612-06 (mozilla-thunderbird)
2008-09-24 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2006-12-10 00:00:00
Mozilla Thunderbird: Multiple vulnerabilities
2006-12-10 00:00:00
SeaMonkey: Multiple vulnerabilities
2006-12-10 00:00:00
redhat
redhat
(RHSA-2006:0735) Critical: thunderbird security update
2006-11-08 00:00:00
(RHSA-2006:0734) Critical: seamonkey security update
2006-11-08 00:00:00
(RHSA-2006:0733) Critical: firefox security update
2006-11-07 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2006-11-21 00:00:00
Firefox vulnerabilities
2006-11-21 00:00:00
oraclelinux
oraclelinux
Critical firefox security update
2006-12-07 00:00:00
Critical seamonkey security update
2006-12-07 00:00:00
Critical thunderbird security update
2006-12-07 00:00:00
suse
suse
remote denial of service in MozillaFirefox,MozillaThunderbird,seamonkey
2006-11-16 19:09:31
debian
debian
[SECURITY] [DSA 1225-1] New Mozilla Firefox packages fix several vulnerabilities
2006-12-03 16:35:28
[SECURITY] [DSA 1224-1] New Mozilla packages fix several vulnerabilities
2006-12-03 15:30:39
[SECURITY] [DSA 1227-1] New Mozilla Thunderbird packages fix several vulnerabilities
2006-12-04 08:14:59
osv
osv
mozilla-firefox
2006-12-03 00:00:00
mozilla
2006-12-03 00:00:00
mozilla-thunderbird
2006-12-04 00:00:00
mozilla
mozilla
Crashes with evidence of memory corruption (rv:1.8.0.8) — Mozilla
2006-11-07 00:00:00
Running Script can be recompiled — Mozilla
2006-11-07 00:00:00
RSA Signature Forgery (variant) — Mozilla
2006-11-07 00:00:00
ubuntucve
ubuntucve
CVE-2006-5463
2006-11-08 00:00:00
CVE-2006-5747
2006-11-08 00:00:00
CVE-2006-5748
2006-11-08 00:00:00
cert
cert
Mozilla products allow execution of arbitrary JavaScript
2006-11-08 00:00:00
Mozilla products vulnerable to memory corruption
2006-11-08 00:00:00
Mozilla XML.prototype.hasOwnProperty() method memory corruption vulnerability
2006-11-08 00:00:00
cvelist
cvelist
CVE-2006-5463
2006-11-08 22:00:00
CVE-2006-5747
2006-11-08 21:00:00
CVE-2006-5748
2006-11-08 21:00:00
nvd
nvd
CVE-2006-5463
2006-11-08 22:07:00
CVE-2006-5748
2006-11-08 21:07:00
CVE-2006-5747
2006-11-08 21:07:00
debiancve
debiancve
CVE-2006-5463
2006-11-08 22:07:00
CVE-2006-5748
2006-11-08 21:07:00
CVE-2006-5747
2006-11-08 21:07:00
cve
cve
CVE-2006-5463
2006-11-08 22:07:00
CVE-2006-5748
2006-11-08 21:07:00
CVE-2006-5747
2006-11-08 21:07:00
veracode
veracode
Remote Code Execution (RCE)
2020-04-10 00:12:15
Denial Of Service (DoS)
2020-04-10 00:12:17
Denial Of Service (DoS)
2020-04-10 00:12:16

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.46 Medium

EPSS

Percentile

97.4%

JSON
Related for CENTOS_RHSA-2006-0734.NASL
nessus41centos4openvas20gentoo3redhat3ubuntu2oraclelinux3suse1debian4osv3mozilla3ubuntucve6cert5cvelist6nvd6debiancve6cve6veracode5