Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2005-2021 Tenable Network Security, Inc.FEDORA_2005-860.NASL
HistorySep 17, 2005 - 12:00 a.m.

Fedora Core 4 : openssh-4.2p1-fc4.1 (2005-860)

2005-09-1700:00:00
This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.
www.tenable.com
7
JSON

This security update fixes CVE-2005-2797 and CVE-2005-2798 and resolves a problem with X forwarding binding only on IPv6 address on certain circumstances. As it is an upgrade to a newer upstream release there is a small change in interoperability with ssh clients older than 3.5p1 if they are configured so they insist on compression. If interoperability with such clients is required, the ‘Compression’ option must be set to ‘yes’.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2005-860.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(19732);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_xref(name:"FEDORA", value:"2005-860");

  script_name(english:"Fedora Core 4 : openssh-4.2p1-fc4.1 (2005-860)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora Core host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This security update fixes CVE-2005-2797 and CVE-2005-2798 and
resolves a problem with X forwarding binding only on IPv6 address on
certain circumstances. As it is an upgrade to a newer upstream release
there is a small change in interoperability with ssh clients older
than 3.5p1 if they are configured so they insist on compression. If
interoperability with such clients is required, the 'Compression'
option must be set to 'yes'.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # https://lists.fedoraproject.org/pipermail/announce/2005-September/001368.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?8d38c5bb"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_attribute(attribute:"risk_factor", value:"High");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:openssh");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:openssh-askpass");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:openssh-askpass-gnome");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:openssh-clients");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:openssh-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:openssh-server");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:4");

  script_set_attribute(attribute:"patch_publication_date", value:"2005/09/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2005/09/17");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^4([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 4.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC4", reference:"openssh-4.2p1-fc4.1")) flag++;
if (rpm_check(release:"FC4", reference:"openssh-askpass-4.2p1-fc4.1")) flag++;
if (rpm_check(release:"FC4", reference:"openssh-askpass-gnome-4.2p1-fc4.1")) flag++;
if (rpm_check(release:"FC4", reference:"openssh-clients-4.2p1-fc4.1")) flag++;
if (rpm_check(release:"FC4", reference:"openssh-debuginfo-4.2p1-fc4.1")) flag++;
if (rpm_check(release:"FC4", reference:"openssh-server-4.2p1-fc4.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "openssh / openssh-askpass / openssh-askpass-gnome / openssh-clients / etc");
}
VendorProductVersionCPE
fedoraprojectfedoraopensshp-cpe:/a:fedoraproject:fedora:openssh
fedoraprojectfedoraopenssh-askpassp-cpe:/a:fedoraproject:fedora:openssh-askpass
fedoraprojectfedoraopenssh-askpass-gnomep-cpe:/a:fedoraproject:fedora:openssh-askpass-gnome
fedoraprojectfedoraopenssh-clientsp-cpe:/a:fedoraproject:fedora:openssh-clients
fedoraprojectfedoraopenssh-debuginfop-cpe:/a:fedoraproject:fedora:openssh-debuginfo
fedoraprojectfedoraopenssh-serverp-cpe:/a:fedoraproject:fedora:openssh-server
fedoraprojectfedora_core4cpe:/o:fedoraproject:fedora_core:4

Related

nessus 11
cve 2
openvas 4
debiancve 2
ubuntucve 2
ubuntu 1
f5 2
redhat 1
securityvulns 1
centos 1
nessus
nessus
OpenSSH < 4.2 Multiple Vulnerabilities
2019-08-21 00:00:00
OpenSSH < 4.2 Multiple Vulnerabilities
2005-09-07 00:00:00
Fedora Core 3 : openssh-3.9p1-8.0.3 (2005-858)
2005-09-17 00:00:00
cve
cve
CVE-2005-2797
2005-09-06 17:03:00
CVE-2005-2798
2005-09-06 17:03:00
openvas
openvas
SLES9: Security update for openssh,openssh-askpass
2009-10-10 00:00:00
SLES9: Security update for openssh,openssh-askpass
2009-10-10 00:00:00
OpenSSH 'sshd' GSSAPI Credential Disclosure Vulnerability
2011-11-16 00:00:00
debiancve
debiancve
CVE-2005-2797
2005-09-06 17:03:00
CVE-2005-2798
2005-09-06 17:03:00
ubuntucve
ubuntucve
CVE-2005-2797
2005-09-06 00:00:00
CVE-2005-2798
2005-09-06 00:00:00
ubuntu
ubuntu
SSH server vulnerability
2005-10-18 00:00:00
f5
f5
SOL5860 - GSSAPI authentication vulnerability in OpenSSH - CAN-2005-2798
2007-05-16 00:00:00
K5860 : GSSAPI authentication vulnerability in OpenSSH - CAN-2005-2798
2013-03-28 00:00:00
redhat
redhat
(RHSA-2005:527) openssh security update
2005-10-05 00:00:00
securityvulns
securityvulns
[security bulletin] HPSBUX02090 SSRT051058 rev.2 - HP-UX Secure Shell Remote Denial of Service &#40;DoS&#41;
2006-06-09 00:00:00
centos
centos
openssh security update
2005-10-05 16:16:35
JSON
Related for FEDORA_2005-860.NASL
nessus11cve2openvas4debiancve2ubuntucve2ubuntu1f52redhat1securityvulns1centos1