Lucene search
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2019-2563.NASLHistoryDec 19, 2019 - 12:00 a.m.
EulerOS 2.0 SP3 : coreutils (EulerOS-SA-2019-2563)
2019-12-1900:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
20
1.9 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:N/I:P/A:N
4.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N
5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
According to the version of the coreutils package installed, the EulerOS installation on the remote host is affected by the following vulnerability :
- In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does not prevent replacement of a plain file with a symlink during use of the POSIX ‘-R -L’ options, which allows local users to modify the ownership of arbitrary files by leveraging a race condition.(CVE-2017-18018)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(132280);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/03");
script_cve_id("CVE-2017-18018");
script_name(english:"EulerOS 2.0 SP3 : coreutils (EulerOS-SA-2019-2563)");
script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing a security update.");
script_set_attribute(attribute:"description", value:
"According to the version of the coreutils package installed, the
EulerOS installation on the remote host is affected by the following
vulnerability :
- In GNU Coreutils through 8.29, chown-core.c in chown
and chgrp does not prevent replacement of a plain file
with a symlink during use of the POSIX '-R -L' options,
which allows local users to modify the ownership of
arbitrary files by leveraging a race
condition.(CVE-2017-18018)
Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
# https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2019-2563
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?21517c79");
script_set_attribute(attribute:"solution", value:
"Update the affected coreutils package.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-18018");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"patch_publication_date", value:"2019/12/18");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/12/19");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:coreutils");
script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Huawei Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
script_exclude_keys("Host/EulerOS/uvp_version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");
sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(3)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP3");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP3", "EulerOS UVP " + uvp);
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);
flag = 0;
pkgs = ["coreutils-8.22-12.1.h5"];
foreach (pkg in pkgs)
if (rpm_check(release:"EulerOS-2.0", sp:"3", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_NOTE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "coreutils");
}
Related
nessus
nessus
EulerOS Virtualization for ARM 64 3.0.2.0 : coreutils (EulerOS-SA-2020-1194)
2020-03-13 00:00:00
Fedora 27 : coreutils (2018-669520d2ba)
2018-01-31 00:00:00
EulerOS Virtualization for ARM 64 3.0.3.0 : coreutils (EulerOS-SA-2019-2333)
2019-12-03 00:00:00
ubuntucve
ubuntucve
CVE-2017-18018
2018-01-04 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for coreutils (EulerOS-SA-2020-1484)
2020-04-16 00:00:00
Huawei EulerOS: Security Advisory for coreutils (EulerOS-SA-2019-2333)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for coreutils (EulerOS-SA-2020-1194)
2020-03-13 00:00:00
redhatcve
redhatcve
CVE-2017-18018
2018-01-08 15:19:55
broadcom
broadcom
osv
osv
CVE-2017-18018
2018-01-04 04:29:00
alpinelinux
alpinelinux
CVE-2017-18018
2018-01-04 04:29:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1814
2021-07-02 16:35:05
cve
cve
CVE-2017-18018
2018-01-04 04:29:00
cvelist
cvelist
CVE-2017-18018
2018-01-04 04:00:00
nvd
nvd
CVE-2017-18018
2018-01-04 04:29:00
debiancve
debiancve
CVE-2017-18018
2018-01-04 04:29:00
fedora
fedora
[SECURITY] Fedora 27 Update: coreutils-8.27-19.fc27
2018-01-30 18:12:25
prion
prion
Race condition
2018-01-04 04:29:00
mageia
mageia
Updated coreutils packages fix security vulnerabilities
2019-01-09 00:50:23
ibm
ibm
avleonov
avleonov
1.9 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:N/I:P/A:N
4.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N
5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for EULEROS_SA-2019-2563.NASL