Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-1677.NASL
HistoryDec 03, 2008 - 12:00 a.m.

Debian DSA-1677-1 : cupsys - integer overflow

2008-12-0300:00:00
This script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
JSON

An integer overflow has been discovered in the image validation code of cupsys, the Common UNIX Printing System. An attacker could trigger this bug by supplying a malicious graphic that could lead to the execution of arbitrary code.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-1677. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(35011);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2008-5286");
  script_bugtraq_id(32518);
  script_xref(name:"DSA", value:"1677");

  script_name(english:"Debian DSA-1677-1 : cupsys - integer overflow");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"An integer overflow has been discovered in the image validation code
of cupsys, the Common UNIX Printing System. An attacker could trigger
this bug by supplying a malicious graphic that could lead to the
execution of arbitrary code."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=507183"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2008/dsa-1677"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the cupsys packages.

For the stable distribution (etch) this problem has been fixed in
version 1.2.7-4etch6.

For testing distribution (lenny) this issue will be fixed soon."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(189);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:cupsys");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:4.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2008/12/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2008/12/03");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"4.0", prefix:"cupsys", reference:"1.2.7-4etch6")) flag++;
if (deb_check(release:"4.0", prefix:"cupsys-bsd", reference:"1.2.7-4etch6")) flag++;
if (deb_check(release:"4.0", prefix:"cupsys-client", reference:"1.2.7-4etch6")) flag++;
if (deb_check(release:"4.0", prefix:"cupsys-common", reference:"1.2.7-4etch6")) flag++;
if (deb_check(release:"4.0", prefix:"cupsys-dbg", reference:"1.2.7-4etch6")) flag++;
if (deb_check(release:"4.0", prefix:"libcupsimage2", reference:"1.2.7-4etch6")) flag++;
if (deb_check(release:"4.0", prefix:"libcupsimage2-dev", reference:"1.2.7-4etch6")) flag++;
if (deb_check(release:"4.0", prefix:"libcupsys2", reference:"1.2.7-4etch6")) flag++;
if (deb_check(release:"4.0", prefix:"libcupsys2-dev", reference:"1.2.7-4etch6")) flag++;
if (deb_check(release:"4.0", prefix:"libcupsys2-gnutls10", reference:"1.2.7-4etch6")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxcupsysp-cpe:/a:debian:debian_linux:cupsys
debiandebian_linux4.0cpe:/o:debian:debian_linux:4.0

Related

freebsd 1
openvas 34
checkpoint_advisories 1
ubuntucve 1
debian 1
centos 1
redhat 1
prion 1
debiancve 1
nessus 13
cve 1
oraclelinux 1
fedora 7
gentoo 1
ubuntu 1
securityvulns 1
freebsd
freebsd
cups -- potential buffer overflow in PNG reading code
2008-10-17 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1677-1)
2008-12-10 00:00:00
RedHat Update for cups RHSA-2008:1028-01
2009-03-06 00:00:00
Debian Security Advisory DSA 1677-1 (cupsys)
2008-12-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Apple CUPS PNG Filter Overly Large Image Height Integer Overflow (CVE-2008-5286)
2009-10-22 00:00:00
ubuntucve
ubuntucve
CVE-2008-5286
2008-12-01 00:00:00
debian
debian
[SECURITY] [DSA 1677-1] New CUPS packages fix arbitrary code execution
2008-12-02 21:17:21
centos
centos
cups security update
2008-12-15 16:56:30
redhat
redhat
(RHSA-2008:1028) Moderate: cups security update
2008-12-15 00:00:00
prion
prion
Integer overflow
2008-12-01 15:30:00
debiancve
debiancve
CVE-2008-5286
2008-12-01 15:30:00
nessus
nessus
FreeBSD : cups -- potential buffer overflow in PNG reading code (87106b67-be13-11dd-a578-0030843d3802)
2008-12-01 00:00:00
CentOS 3 : cups (CESA-2008:1028)
2008-12-16 00:00:00
openSUSE 10 Security Update : cups (cups-5838)
2009-01-14 00:00:00
cve
cve
CVE-2008-5286
2008-12-01 15:30:00
oraclelinux
oraclelinux
cups security update
2008-12-15 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: cups-1.3.9-4.fc10
2008-12-09 11:33:13
[SECURITY] Fedora 10 Update: cups-1.3.11-2.fc10
2009-12-02 04:49:04
[SECURITY] Fedora 10 Update: cups-1.3.11-4.fc10
2009-12-04 23:49:33
gentoo
gentoo
CUPS: Multiple vulnerabilities
2008-12-10 00:00:00
ubuntu
ubuntu
CUPS vulnerabilities
2009-01-12 00:00:00
securityvulns
securityvulns
CUPS integer overflow
2008-12-03 00:00:00
JSON
Related for DEBIAN_DSA-1677.NASL
freebsd1openvas34checkpoint_advisories1ubuntucve1debian1centos1redhat1prion1debiancve1nessus13cve1oraclelinux1fedora7gentoo1ubuntu1securityvulns1