Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-1286.NASL
HistoryMay 03, 2007 - 12:00 a.m.

Debian DSA-1286-1 : linux-2.6 - several vulnerabilities

2007-05-0300:00:00
This script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
26

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.349

Percentile

97.2%

JSON

Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems :

  • CVE-2007-0005 Daniel Roethlisberger discovered two buffer overflows in the cm4040 driver for the Omnikey CardMan 4040 device. A local user or malicious device could exploit this to execute arbitrary code in kernel space.

  • CVE-2007-0958 Santosh Eraniose reported a vulnerability that allows local users to read otherwise unreadable files by triggering a core dump while using PT_INTERP. This is related to CVE-2004-1073.

  • CVE-2007-1357 Jean Delvare reported a vulnerability in the appletalk subsystem. Systems with the appletalk module loaded can be triggered to crash by other systems on the local network via a malformed frame.

  • CVE-2007-1592 Masayuki Nakagawa discovered that flow labels were inadvertently being shared between listening sockets and child sockets. This defect can be exploited by local users to cause a DoS (Oops).

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-1286. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(25153);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2007-0005", "CVE-2007-0958", "CVE-2007-1357", "CVE-2007-1592");
  script_bugtraq_id(23104);
  script_xref(name:"DSA", value:"1286");

  script_name(english:"Debian DSA-1286-1 : linux-2.6 - several vulnerabilities");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Several local and remote vulnerabilities have been discovered in the
Linux kernel that may lead to a denial of service or the execution of
arbitrary code. The Common Vulnerabilities and Exposures project
identifies the following problems :

  - CVE-2007-0005
    Daniel Roethlisberger discovered two buffer overflows in
    the cm4040 driver for the Omnikey CardMan 4040 device. A
    local user or malicious device could exploit this to
    execute arbitrary code in kernel space.

  - CVE-2007-0958
    Santosh Eraniose reported a vulnerability that allows
    local users to read otherwise unreadable files by
    triggering a core dump while using PT_INTERP. This is
    related to CVE-2004-1073.

  - CVE-2007-1357
    Jean Delvare reported a vulnerability in the appletalk
    subsystem. Systems with the appletalk module loaded can
    be triggered to crash by other systems on the local
    network via a malformed frame.

  - CVE-2007-1592
    Masayuki Nakagawa discovered that flow labels were
    inadvertently being shared between listening sockets and
    child sockets. This defect can be exploited by local
    users to cause a DoS (Oops)."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2007-0005"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2007-0958"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2004-1073"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2007-1357"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2007-1592"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2007/dsa-1286"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the kernel package immediately and reboot the machine. If you
have built a custom kernel from the kernel source package, you will
need to rebuild to take advantage of these fixes.

This problem has been fixed in the stable distribution in version
2.6.18.dfsg.1-12etch1.

The following matrix lists additional packages that were rebuilt for
compatibility with or to take advantage of this update :

                     Debian 4.0 (etch)  
  fai-kernels        1.17etch1          
  user-mode-linux    2.6.18-1um-2etch1  
Updated packages for the mips and mipsel architectures are not yet
available. They will be provided later."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(119);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:linux-2.6");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:4.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/05/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/05/03");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"4.0", prefix:"fai-kernels", reference:"1.17etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-doc-2.6.18", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-486", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-686-bigmem", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all-alpha", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all-arm", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all-hppa", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all-i386", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all-ia64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all-powerpc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all-s390", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-all-sparc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-alpha-generic", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-alpha-legacy", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-alpha-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-footbridge", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-iop32x", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-itanium", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-ixp4xx", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-k7", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-mckinley", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-parisc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-parisc-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-parisc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-parisc64-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-powerpc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-powerpc-miboot", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-powerpc-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-powerpc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-prep", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-rpc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-s390", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-s390x", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-s3c2410", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-sparc32", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-sparc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-sparc64-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-vserver", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-vserver-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-vserver-alpha", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-vserver-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-vserver-k7", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-vserver-powerpc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-vserver-powerpc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-vserver-s390x", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-vserver-sparc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-xen", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-xen-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-xen-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-xen-vserver", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-xen-vserver-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-headers-2.6.18-4-xen-vserver-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-486", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-686-bigmem", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-alpha-generic", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-alpha-legacy", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-alpha-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-footbridge", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-iop32x", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-itanium", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-ixp4xx", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-k7", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-mckinley", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-parisc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-parisc-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-parisc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-parisc64-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-powerpc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-powerpc-miboot", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-powerpc-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-powerpc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-prep", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-rpc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-s390", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-s390-tape", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-s390x", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-s3c2410", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-sparc32", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-sparc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-sparc64-smp", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-vserver-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-vserver-alpha", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-vserver-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-vserver-k7", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-vserver-powerpc", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-vserver-powerpc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-vserver-s390x", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-vserver-sparc64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-xen-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-xen-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-xen-vserver-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-image-2.6.18-4-xen-vserver-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-manual-2.6.18", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-modules-2.6.18-4-xen-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-modules-2.6.18-4-xen-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-modules-2.6.18-4-xen-vserver-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-modules-2.6.18-4-xen-vserver-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-patch-debian-2.6.18", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-source-2.6.18", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-support-2.6.18-4", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"linux-tree-2.6.18", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"user-mode-linux", reference:"2.6.18-1um-2etch1")) flag++;
if (deb_check(release:"4.0", prefix:"xen-linux-system-2.6.18-4-xen-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"xen-linux-system-2.6.18-4-xen-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"xen-linux-system-2.6.18-4-xen-vserver-686", reference:"2.6.18.dfsg.1-12etch1")) flag++;
if (deb_check(release:"4.0", prefix:"xen-linux-system-2.6.18-4-xen-vserver-amd64", reference:"2.6.18.dfsg.1-12etch1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxlinux-2.6p-cpe:/a:debian:debian_linux:linux-2.6
debiandebian_linux4.0cpe:/o:debian:debian_linux:4.0

Related

openvas 44
debian 9
osv 8
cve 5
securityvulns 7
cvelist 5
prion 4
nvd 5
ubuntucve 4
nessus 37
redhat 12
suse 5
fedora 6
veracode 3
exploitpack 2
packetstorm 1
seebug 2
exploitdb 2
oraclelinux 2
ubuntu 4
centos 6
openvas
openvas
Debian Security Advisory DSA 1286-1 (linux-2.6)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1286-1)
2008-01-17 00:00:00
Mandriva Update for kernel MDKSA-2007:078 (kernel)
2009-04-09 00:00:00
debian
debian
[SECURITY] [DSA 1286-1] New Linux 2.6.18 packages fix several vulnerabilities
2007-05-02 19:37:39
[SECURITY] [DSA 1304-1] New Linux kernel 2.6.8 packages fix several vulnerabilities
2007-06-16 10:57:02
[SECURITY] [DSA 1503-2] New Linux kernel 2.4.27 packages fix several issues
2008-03-06 07:47:54
osv
osv
linux-2.6
2007-05-02 00:00:00
kernel-source-2.6.8 - several
2007-06-16 00:00:00
kernelimage-2.4.27 - several issues
2008-02-22 00:00:00
cve
cve
CVE-2007-0958
2007-02-15 18:28:00
CVE-2007-1357
2007-04-11 00:19:00
CVE-2004-1073
2005-01-10 05:00:00
securityvulns
securityvulns
Linux kernel privilege escalation
2007-02-18 00:00:00
Linux AppleTalk DoS
2007-04-19 00:00:00
Linux IPv6 socket double memory free vulnerability
2007-03-29 00:00:00
cvelist
cvelist
CVE-2007-0958
2007-02-15 18:00:00
CVE-2007-1357
2007-04-11 00:00:00
CVE-2004-1073
2004-12-01 05:00:00
prion
prion
Design/Logic Flaw
2007-02-15 18:28:00
Code injection
2007-04-11 00:19:00
Double free
2007-03-22 19:19:00
nvd
nvd
CVE-2007-0958
2007-02-15 18:28:00
CVE-2004-1073
2005-01-10 05:00:00
CVE-2007-1357
2007-04-11 00:19:00
ubuntucve
ubuntucve
CVE-2007-0958
2007-02-15 00:00:00
CVE-2007-1357
2007-04-11 00:00:00
CVE-2007-1592
2007-03-22 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : kernel (MDKSA-2007:078)
2007-04-05 00:00:00
RHEL 5 : kernel (RHSA-2007:0099)
2007-05-25 00:00:00
openSUSE 10 Security Update : kernel (kernel-3128)
2007-10-17 00:00:00
redhat
redhat
(RHSA-2007:0099) Important: kernel security and bug fix update
2007-03-14 00:00:00
(RHSA-2007:0436) Important: Updated kernel packages for Red Hat Enterprise Linux 3 Update 9
2007-06-11 13:45:45
(RHSA-2007:0673) Important: kernel security update
2007-08-08 00:00:00
suse
suse
remote denial of service in kernel
2007-05-03 18:12:20
remote denial of service in kernel
2007-05-10 11:16:32
remote denial of service in kernel
2007-07-09 14:31:09
fedora
fedora
[SECURITY] Fedora Core 6 Update: kernel-2.6.20-1.2944.fc6
2007-04-13 19:55:49
[SECURITY] Fedora Core 5 Update: kernel-2.6.20-1.2312.fc5
2007-04-13 19:42:37
[SECURITY] Fedora Core 6 Update: kernel-2.6.20-1.2925.fc6
2007-03-14 20:19:42
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:18:27
Information Disclosure
2020-04-10 00:13:46
Arbitrary Code Execution
2020-04-10 00:13:43
exploitpack
exploitpack
Linux Omnikey Cardman 4040 Driver - Local Buffer Overflow (PoC)
2007-03-09 00:00:00
Man Command - -H Flag Local Buffer Overflow
2007-04-06 00:00:00
packetstorm
packetstorm
csa-driver.txt
2007-03-13 00:00:00
seebug
seebug
Linux Omnikey Cardman 4040 driver Local Buffer Overflow Exploit PoC
2007-03-09 00:00:00
Man Command -H Flag Local Buffer Overflow Vulnerability
2014-07-01 00:00:00
exploitdb
exploitdb
Linux Omnikey Cardman 4040 Driver - Local Buffer Overflow (PoC)
2007-03-09 00:00:00
Man Command - -H Flag Local Buffer Overflow
2007-04-06 00:00:00
oraclelinux
oraclelinux
Important: kernel security and bug fix update
2007-06-26 00:00:00
Important: kernel security update
2007-06-26 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2007-05-24 00:00:00
Linux kernel vulnerabilities
2007-04-11 00:00:00
Linux kernel vulnerabilities
2007-07-18 00:00:00
centos
centos
gdb, kernel security update
2007-06-11 22:34:46
kernel security update
2007-08-09 04:54:35
kernel security update
2007-05-20 02:21:06

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

EPSS

0.349

Percentile

97.2%

JSON
Related for DEBIAN_DSA-1286.NASL
openvas44debian9osv8cve5securityvulns7cvelist5prion4nvd5ubuntucve4nessus37redhat12suse5fedora6veracode3exploitpack2packetstorm1seebug2exploitdb2oraclelinux2ubuntu4centos6