Lucene search
This script is Copyright (C) 2018-2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-4267.NASLHistoryAug 09, 2018 - 12:00 a.m.
Debian DSA-4267-1 : kamailio - security update
2018-08-0900:00:00
This script is Copyright (C) 2018-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.626
Percentile
97.9%
Henning Westerholt discovered a flaw related to the To header processing in kamailio, a very fast, dynamic and configurable SIP server. Missing input validation in the build_res_buf_from_sip_req function could result in denial of service and potentially the execution of arbitrary code.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DSA-4267. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('compat.inc');
if (description)
{
script_id(111594);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/08/23");
script_cve_id("CVE-2018-14767");
script_xref(name:"DSA", value:"4267");
script_name(english:"Debian DSA-4267-1 : kamailio - security update");
script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security-related update.");
script_set_attribute(attribute:"description", value:
"Henning Westerholt discovered a flaw related to the To header
processing in kamailio, a very fast, dynamic and configurable SIP
server. Missing input validation in the build_res_buf_from_sip_req
function could result in denial of service and potentially the
execution of arbitrary code.");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/kamailio");
script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/stretch/kamailio");
script_set_attribute(attribute:"see_also", value:"https://www.debian.org/security/2018/dsa-4267");
script_set_attribute(attribute:"solution", value:
"Upgrade the kamailio packages.
For the stable distribution (stretch), this problem has been fixed in
version 4.4.4-2+deb9u2.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-14767");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"patch_publication_date", value:"2018/08/08");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/08/09");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:kamailio");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:9.0");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Debian Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2018-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"9.0", prefix:"kamailio", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-autheph-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-berkeley-bin", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-berkeley-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-carrierroute-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-cnxcc-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-cpl-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-dbg", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-erlang-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-extra-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-geoip-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-ims-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-java-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-json-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-kazoo-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-ldap-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-lua-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-memcached-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-mono-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-mysql-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-outbound-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-perl-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-postgres-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-presence-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-purple-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-python-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-radius-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-redis-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-sctp-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-snmpstats-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-sqlite-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-tls-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-unixodbc-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-utils-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-websocket-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-xml-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (deb_check(release:"9.0", prefix:"kamailio-xmpp-modules", reference:"4.4.4-2+deb9u2")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
Related
debian
debian
[SECURITY] [DSA 4267-1] kamailio security update
2018-08-08 20:12:05
[SECURITY] [DSA 4267-1] kamailio security update
2018-08-08 20:12:05
[SECURITY] [DLA 1471-1] kamailio security update
2018-08-19 21:28:22
debiancve
debiancve
CVE-2018-14767
2018-07-31 06:29:00
openvas
openvas
Debian: Security Advisory (DSA-4267-1)
2018-08-07 00:00:00
Debian: Security Advisory (DLA-1471-1)
2018-08-25 00:00:00
Kamailio < 5.0.7 & 5.1.x < 5.1.4 Multiple DoS Vulnerabilities
2018-04-03 00:00:00
cve
cve
CVE-2018-14767
2018-07-31 06:29:00
nvd
nvd
CVE-2018-14767
2018-07-31 06:29:00
veracode
veracode
Arbitrary Code Execution
2020-05-10 23:20:59
osv
osv
CVE-2018-14767
2018-07-31 06:29:00
kamailio - security update
2018-08-08 00:00:00
kamailio - security update
2018-08-19 00:00:00
cvelist
cvelist
CVE-2018-14767
2018-07-31 06:00:00
alpinelinux
alpinelinux
CVE-2018-14767
2018-07-31 06:29:00
prion
prion
Input validation
2018-07-31 06:29:00
checkpoint_advisories
checkpoint_advisories
Kamailio SIP Server Out of Bounds Read (CVE-2018-14767)
2022-11-28 00:00:00
nessus
nessus
Debian DLA-1471-1 : kamailio security update
2018-08-20 00:00:00
ubuntucve
ubuntucve
CVE-2018-14767
2018-07-31 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.626
Percentile
97.9%
Related for DEBIAN_DSA-4267.NASL