Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2005-2021 Tenable Network Security, Inc.FEDORA_2005-105.NASL
HistoryFeb 02, 2005 - 12:00 a.m.

Fedora Core 2 : squid-2.5.STABLE7-1.FC2.1 (2005-105)

2005-02-0200:00:00
This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.
www.tenable.com
13

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.97 High

EPSS

Percentile

99.7%

JSON

  • Tue Feb 01 2005 Jay Fenlason <fenlason at redhat.com> 7:2.5.STABLE7-1.FC2.1

    • Add more upstream patches, including fixes for bz#146783 Correct handling of oversized reply headers bz#146778 CVE-2005-0211 Buffer overflow in WCCP recvfrom() call

    • Thu Jan 20 2005 Jay Fenlason <fenlason at redhat.com> 7:2.5.STABLE7-1.FC2

    • Upgrade to 2.5.STABLE7 and 18 upstream patches.

      • This includes fixes for CVE-2005-0094 CVE-2005-0095 CVE-2004-0096 and CVE-2004-0097. This closes bz#145543 and bz#141938

    • This obsoletes Ulrich Drepper’s -nonbl patch.

      • Add a triggerin on samba-common to make /var/cache/samba/winbindd_privileged accessible so that ntlm_auth will work. This fixes bz#103726

    • Mon Oct 18 2004 Jay Fenlason <fenlason at redhat.com> 7:2.5.STABLE6-3

    • include patch from Ulrich Drepper <drepper at redhat.com> to stop problems with O_NONBLOCK. This closes #136049

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2005-105.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(16288);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_xref(name:"FEDORA", value:"2005-105");

  script_name(english:"Fedora Core 2 : squid-2.5.STABLE7-1.FC2.1 (2005-105)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora Core host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - Tue Feb 01 2005 Jay Fenlason <fenlason at redhat.com>
    7:2.5.STABLE7-1.FC2.1

  - Add more upstream patches, including fixes for bz#146783
    Correct handling of oversized reply headers bz#146778
    CVE-2005-0211 Buffer overflow in WCCP recvfrom() call

  - Thu Jan 20 2005 Jay Fenlason <fenlason at redhat.com>
    7:2.5.STABLE7-1.FC2

  - Upgrade to 2.5.STABLE7 and 18 upstream patches.

    - This includes fixes for CVE-2005-0094 CVE-2005-0095
      CVE-2004-0096 and CVE-2004-0097. This closes bz#145543
      and bz#141938

  - This obsoletes Ulrich Drepper's -nonbl patch.

    - Add a triggerin on samba-common to make
      /var/cache/samba/winbindd_privileged accessible so
      that ntlm_auth will work. This fixes bz#103726

  - Mon Oct 18 2004 Jay Fenlason <fenlason at redhat.com>
    7:2.5.STABLE6-3

  - include patch from Ulrich Drepper <drepper at
    redhat.com> to stop problems with O_NONBLOCK. This
    closes #136049

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # https://lists.fedoraproject.org/pipermail/announce/2005-February/000663.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?fd25ce23"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected squid and / or squid-debuginfo packages."
  );
  script_set_attribute(attribute:"risk_factor", value:"High");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:squid");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:squid-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:2");

  script_set_attribute(attribute:"patch_publication_date", value:"2005/02/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2005/02/02");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^2([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 2.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC2", reference:"squid-2.5.STABLE7-1.FC2.1")) flag++;
if (rpm_check(release:"FC2", reference:"squid-debuginfo-2.5.STABLE7-1.FC2.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "squid / squid-debuginfo");
}
VendorProductVersionCPE
fedoraprojectfedorasquidp-cpe:/a:fedoraproject:fedora:squid
fedoraprojectfedorasquid-debuginfop-cpe:/a:fedoraproject:fedora:squid-debuginfo
fedoraprojectfedora_core2cpe:/o:fedoraproject:fedora_core:2

Related

nessus 26
debian 5
openvas 30
osv 2
ubuntu 2
securityvulns 1
gentoo 3
freebsd 4
redhat 4
nvd 6
cve 6
ubuntucve 5
cvelist 6
checkpoint_advisories 3
debiancve 4
suse 1
cert 2
prion 1
cisco 1
nessus
nessus
Fedora Core 3 : squid-2.5.STABLE7-1.FC3.1 (2005-106)
2005-02-02 00:00:00
Mandrake Linux Security Advisory : squid (MDKSA-2005:014)
2005-01-25 00:00:00
Debian DSA-651-1 : squid - buffer overflow, integer overflow
2005-01-25 00:00:00
debian
debian
[SECURITY] [DSA 651-1] New squid packages fix denial of service
2005-01-20 17:06:36
[SECURITY] [DSA 651-1] New squid packages fix denial of service
2005-01-20 17:06:36
[SECURITY] [DSA 448-1] New pwlib packages fix multiple vulnerabilities
2004-02-23 03:38:26
openvas
openvas
Debian Security Advisory DSA 651-1 (squid)
2008-01-17 00:00:00
Debian Security Advisory DSA 651-1 (squid)
2008-01-17 00:00:00
SLES9: Security update for squid
2009-10-10 00:00:00
osv
osv
squid - buffer overflow, integer overflow
2005-01-20 00:00:00
squid - several
2005-02-04 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2005-01-21 00:00:00
Squid vulnerabilities
2005-02-08 00:00:00
securityvulns
securityvulns
[RHSA-2004:048-01] Updated PWLib packages fix protocol security issues
2004-02-16 00:00:00
gentoo
gentoo
Multiple Vulnerabilities in pwlib
2004-04-09 00:00:00
Squid: Multiple vulnerabilities
2005-01-16 00:00:00
Squid: Multiple vulnerabilities
2005-02-02 00:00:00
freebsd
freebsd
Vulnerabilities in H.323 implementations
2004-01-13 00:00:00
squid -- buffer overflow vulnerability in gopherToHTML
2005-01-11 00:00:00
squid -- denial of service with forged WCCP messages
2005-01-07 00:00:00
redhat
redhat
(RHSA-2004:047) pwlib security update
2004-02-18 00:00:00
(RHSA-2005:061) squid security update
2005-02-11 00:00:00
(RHSA-2005:060) squid security update
2005-02-15 00:00:00
nvd
nvd
CVE-2004-0097
2004-03-03 05:00:00
CVE-2005-0095
2005-01-15 05:00:00
CVE-2005-0094
2005-01-15 05:00:00
cve
cve
CVE-2004-0097
2004-03-03 05:00:00
CVE-2005-0095
2005-01-19 05:00:00
CVE-2005-0094
2005-01-19 05:00:00
ubuntucve
ubuntucve
CVE-2004-0097
2004-03-03 00:00:00
CVE-2005-0094
2005-01-15 00:00:00
CVE-2005-0095
2005-01-15 00:00:00
cvelist
cvelist
CVE-2004-0097
2004-02-19 05:00:00
CVE-2005-0095
2005-01-19 05:00:00
CVE-2005-0094
2005-01-19 05:00:00
checkpoint_advisories
checkpoint_advisories
Squid WCCP Message Parsing Denial Of Service (CVE-2005-0095)
2009-10-26 00:00:00
Squid Gopher Protocol Handling Buffer Overflow (CVE-2005-0094)
2009-12-15 00:00:00
Squid WCCP Message Receive Buffer Overflow (CVE-2005-0211)
2011-04-27 00:00:00
debiancve
debiancve
CVE-2005-0211
2005-05-02 04:00:00
CVE-2005-0095
2005-01-19 05:00:00
CVE-2005-0094
2005-01-19 05:00:00
suse
suse
remote command execution in squid
2005-02-10 15:13:39
cert
cert
Squid vulnerable to buffer overflow via an overly long WCCP message
2005-02-04 00:00:00
mod_python vulnerable to information disclosure via crafted URL
2005-02-21 00:00:00
prion
prion
Buffer overflow
2011-09-06 15:55:00
cisco
cisco
Vulnerabilities in H.323 Message Processing
2004-01-13 12:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.97 High

EPSS

Percentile

99.7%

JSON
Related for FEDORA_2005-105.NASL
nessus26debian5openvas30osv2ubuntu2securityvulns1gentoo3freebsd4redhat4nvd6cve6ubuntucve5cvelist6checkpoint_advisories3debiancve4suse1cert2prion1cisco1