Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2005-2021 Tenable Network Security, Inc.FEDORA_2005-518.NASL
HistoryJul 06, 2005 - 12:00 a.m.

Fedora Core 4 : php-5.0.4-10.3 (2005-518)

2005-07-0600:00:00
This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.
www.tenable.com
18
JSON

This update includes the PEAR XML_RPC 1.3.1 package, which fixes a security issue in the XML_RPC server implementation. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-1921 to this issue.

The bundled version of shtool is also updated, to fix some temporary file handling races. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-1751 to this issue.

Bug fixes for the dom, ldap, and gd extensions are also included in this update.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2005-518.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(18625);
  script_version("1.17");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2005-1921");
  script_xref(name:"FEDORA", value:"2005-518");

  script_name(english:"Fedora Core 4 : php-5.0.4-10.3 (2005-518)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora Core host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update includes the PEAR XML_RPC 1.3.1 package, which fixes a
security issue in the XML_RPC server implementation. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
name CVE-2005-1921 to this issue.

The bundled version of shtool is also updated, to fix some temporary
file handling races. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CVE-2005-1751 to this issue.

Bug fixes for the dom, ldap, and gd extensions are also included in
this update.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # https://lists.fedoraproject.org/pipermail/announce/2005-July/001032.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?e5402118"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'PHP XML-RPC Arbitrary Code Execution');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-bcmath");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-dba");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-gd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-imap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-mbstring");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-ncurses");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-odbc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-pear");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-pgsql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-snmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-soap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-xml");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-xmlrpc");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:4");

  script_set_attribute(attribute:"patch_publication_date", value:"2005/07/05");
  script_set_attribute(attribute:"plugin_publication_date", value:"2005/07/06");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^4([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 4.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC4", reference:"php-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-bcmath-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-dba-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-debuginfo-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-devel-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-gd-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-imap-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-ldap-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-mbstring-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-mysql-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-ncurses-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-odbc-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-pear-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-pgsql-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-snmp-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-soap-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-xml-5.0.4-10.3")) flag++;
if (rpm_check(release:"FC4", reference:"php-xmlrpc-5.0.4-10.3")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "php / php-bcmath / php-dba / php-debuginfo / php-devel / php-gd / etc");
}
VendorProductVersionCPE
fedoraprojectfedoraphpp-cpe:/a:fedoraproject:fedora:php
fedoraprojectfedoraphp-bcmathp-cpe:/a:fedoraproject:fedora:php-bcmath
fedoraprojectfedoraphp-dbap-cpe:/a:fedoraproject:fedora:php-dba
fedoraprojectfedoraphp-debuginfop-cpe:/a:fedoraproject:fedora:php-debuginfo
fedoraprojectfedoraphp-develp-cpe:/a:fedoraproject:fedora:php-devel
fedoraprojectfedoraphp-gdp-cpe:/a:fedoraproject:fedora:php-gd
fedoraprojectfedoraphp-imapp-cpe:/a:fedoraproject:fedora:php-imap
fedoraprojectfedoraphp-ldapp-cpe:/a:fedoraproject:fedora:php-ldap
fedoraprojectfedoraphp-mbstringp-cpe:/a:fedoraproject:fedora:php-mbstring
fedoraprojectfedoraphp-mysqlp-cpe:/a:fedoraproject:fedora:php-mysql
Rows per page:
1-10 of 191

Related

nessus 28
centos 1
redhat 1
debian 8
osv 2
openvas 36
securityvulns 4
ubuntucve 4
gentoo 7
packetstorm 1
patchstack 1
slackware 1
exploitpack 1
cve 5
freebsd 3
cert 1
ubuntu 2
checkpoint_advisories 1
suse 3
wpvulndb 1
exploitdb 1
debiancve 2
nessus
nessus
Fedora Core 3 : php-4.3.11-2.6 (2005-517)
2005-07-06 00:00:00
CentOS 3 / 4 : php (CESA-2005:564)
2006-07-03 00:00:00
RHEL 3 / 4 : php (RHSA-2005:564)
2005-07-08 00:00:00
centos
centos
php security update
2005-07-07 20:36:04
redhat
redhat
(RHSA-2005:564) php security update
2005-07-07 00:00:00
debian
debian
[SECURITY] [DSA 789-1] New PHP 4 packages fix several vulnerabilities
2005-08-29 15:31:06
[SECURITY] [DSA 789-1] New PHP 4 packages fix several vulnerabilities
2005-08-29 15:31:06
[SECURITY] [DSA 747-1] New egroupware packages fix remote command execution
2005-07-10 17:41:55
osv
osv
php4 - several
2005-08-29 00:00:00
drupal - arbitrary command execution
2005-07-10 00:00:00
openvas
openvas
Debian Security Advisory DSA 789-1 (php4)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-789-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200507-06 (Tikiwiki)
2008-09-24 00:00:00
securityvulns
securityvulns
[Full-disclosure] [ GLSA 200507-06 ] TikiWiki: Arbitrary command execution through XML-RPC
2005-07-07 00:00:00
Advisory 02/2005: Remote code execution in Serendipity
2005-06-30 00:00:00
Advisory 02/2005: Remote code execution in Serendipity
2005-07-01 00:00:00
ubuntucve
ubuntucve
CVE-2005-1921
2005-07-05 00:00:00
CVE-2005-1751
2005-05-25 00:00:00
CVE-2005-2498
2005-08-15 00:00:00
gentoo
gentoo
WordPress: Multiple vulnerabilities
2005-07-04 00:00:00
PEAR XML-RPC, phpxmlrpc: PHP script injection vulnerability
2005-07-03 00:00:00
PHP: Script injection through XML-RPC
2005-07-15 00:00:00
packetstorm
packetstorm
PHP XML-RPC Arbitrary Code Execution
2009-10-30 00:00:00
patchstack
patchstack
WordPress <= 1.3.0 - Eval Injection
2005-06-08 00:00:00
slackware
slackware
PHP
2005-07-11 17:25:23
exploitpack
exploitpack
PHPXMLRPC 1.1 - Remote Code Execution
2015-07-02 00:00:00
cve
cve
CVE-2005-1921
2005-07-05 04:00:00
CVE-2005-1759
2005-06-28 04:00:00
CVE-2005-1751
2005-05-25 04:00:00
freebsd
freebsd
pear-XML_RPC -- arbitrary remote code execution
2005-06-29 00:00:00
drupal -- PHP code execution vulnerabilities
2005-06-29 00:00:00
postnuke -- multiple vulnerabilities
2005-05-27 00:00:00
cert
cert
Multiple PHP XML-RPC implementations vulnerable to code injection
2005-07-06 00:00:00
ubuntu
ubuntu
PHP XMLRPC vulnerability
2005-07-05 00:00:00
PHP4 vulnerabilities
2005-08-21 00:00:00
checkpoint_advisories
checkpoint_advisories
LupperA XMLRPC Propagation Request Code Execution - Ver2 (CVE-2005-1921)
2015-03-26 00:00:00
suse
suse
remote code execution in php/pear XML::RPC
2005-07-08 15:32:35
remote code execution in php4, php5
2005-08-30 14:35:22
local command execution, authentication bypass, in apache2
2005-09-12 13:00:50
wpvulndb
wpvulndb
WordPress <= 1.5.1.2 - XMLRPC Eval Injection
2005-06-29 00:00:00
exploitdb
exploitdb
PHPXMLRPC &lt; 1.1 - Remote Code Execution
2015-07-02 00:00:00
debiancve
debiancve
CVE-2005-1751
2005-05-25 04:00:00
CVE-2005-1759
2005-06-28 04:00:00
JSON
Related for FEDORA_2005-518.NASL
nessus28centos1redhat1debian8osv2openvas36securityvulns4ubuntucve4gentoo7packetstorm1patchstack1slackware1exploitpack1cve5freebsd3cert1ubuntu2checkpoint_advisories1suse3wpvulndb1exploitdb1debiancve2