Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-2847.NASL
HistoryJan 21, 2014 - 12:00 a.m.

Debian DSA-2847-1 : drupal7 - several vulnerabilities

2014-01-2100:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
JSON

Multiple vulnerabilities have been discovered in Drupal, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following issues :

  • CVE-2014-1475 Christian Mainka and Vladislav Mladenov reported a vulnerability in the OpenID module that allows a malicious user to log in as other users on the site, including administrators, and hijack their accounts.

  • CVE-2014-1476 Matt Vance and Damien Tournoud reported an access bypass vulnerability in the taxonomy module. Under certain circumstances, unpublished content can appear on listing pages provided by the taxonomy module and will be visible to users who should not have permission to see it.

These fixes require extra updates to the database which can be done from the administration pages. Furthermore this update introduces a new security hardening element for the form API. Please refer to the upstream advisory at drupal.org/SA-CORE-2014-001 for further information.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-2847. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(72046);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2014-1475", "CVE-2014-1476");
  script_bugtraq_id(64973);
  script_xref(name:"DSA", value:"2847");

  script_name(english:"Debian DSA-2847-1 : drupal7 - several vulnerabilities");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Multiple vulnerabilities have been discovered in Drupal, a
fully-featured content management framework. The Common
Vulnerabilities and Exposures project identifies the following issues
:

  - CVE-2014-1475
    Christian Mainka and Vladislav Mladenov reported a
    vulnerability in the OpenID module that allows a
    malicious user to log in as other users on the site,
    including administrators, and hijack their accounts.

  - CVE-2014-1476
    Matt Vance and Damien Tournoud reported an access bypass
    vulnerability in the taxonomy module. Under certain
    circumstances, unpublished content can appear on listing
    pages provided by the taxonomy module and will be
    visible to users who should not have permission to see
    it.

These fixes require extra updates to the database which can be done
from the administration pages. Furthermore this update introduces a
new security hardening element for the form API. Please refer to the
upstream advisory at drupal.org/SA-CORE-2014-001 for further
information."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2014-1475"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2014-1476"
  );
  # https://drupal.org/SA-CORE-2014-001
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?45df5ae9"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/wheezy/drupal7"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2014/dsa-2847"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the drupal7 packages.

For the stable distribution (wheezy), these problems have been fixed
in version 7.14-2+deb7u2."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:drupal7");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:7.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2014/01/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/01/21");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"7.0", prefix:"drupal7", reference:"7.14-2+deb7u2")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxdrupal7p-cpe:/a:debian:debian_linux:drupal7
debiandebian_linux7.0cpe:/o:debian:debian_linux:7.0

Related

securityvulns 2
debian 4
nessus 4
openvas 5
osv 1
drupal 1
mageia 1
prion 2
cvelist 2
debiancve 2
ubuntucve 2
cve 2
securityvulns
securityvulns
[SECURITY] [DSA 2847-1] drupal7 security update
2014-02-03 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2014-02-03 00:00:00
debian
debian
[SECURITY] [DSA 2847-1] drupal7 security update
2014-01-20 22:40:29
[SECURITY] [DSA 2847-1] drupal7 security update
2014-01-20 22:40:48
[SECURITY] [DSA 2851-1] drupal6 security update
2014-02-02 20:03:49
nessus
nessus
Mandriva Linux Security Advisory : drupal (MDVSA-2014:031)
2014-02-16 00:00:00
Drupal 7.x < 7.26 Multiple Vulnerabilities
2014-01-23 00:00:00
Debian DSA-2851-1 : drupal6 - impersonation
2014-02-03 00:00:00
openvas
openvas
Debian Security Advisory DSA 2847-1 (drupal7 - several vulnerabilities)
2014-01-20 00:00:00
Debian: Security Advisory (DSA-2847-1)
2014-01-19 00:00:00
Mageia: Security Advisory (MGASA-2014-0031)
2022-01-28 00:00:00
osv
osv
drupal7 - several
2014-01-20 00:00:00
drupal
drupal
SA-CORE-2014-001 - Drupal core - Multiple vulnerabilities
2014-01-15 00:00:00
mageia
mageia
Updated drupal package fixes security vulnerabilities
2014-01-31 20:43:58
prion
prion
Design/Logic Flaw
2014-01-24 18:55:00
Code injection
2014-01-24 18:55:00
cvelist
cvelist
CVE-2014-1475
2014-01-24 18:00:00
CVE-2014-1476
2014-01-24 18:00:00
debiancve
debiancve
CVE-2014-1475
2014-01-24 18:55:00
CVE-2014-1476
2014-01-24 18:55:00
ubuntucve
ubuntucve
CVE-2014-1475
2014-01-24 00:00:00
CVE-2014-1476
2014-01-24 00:00:00
cve
cve
CVE-2014-1475
2014-01-24 18:55:00
CVE-2014-1476
2014-01-24 18:55:00
JSON
Related for DEBIAN_DSA-2847.NASL
securityvulns2debian4nessus4openvas5osv1drupal1mageia1prion2cvelist2debiancve2ubuntucve2cve2