Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.FREEBSD_PKG_4E306850811F11DE8A67000C29A67389.NASL
HistoryAug 05, 2009 - 12:00 a.m.

FreeBSD : silc-client -- Format string vulnerability (4e306850-811f-11de-8a67-000c29a67389)

2009-08-0500:00:00
This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.098 Low

EPSS

Percentile

94.9%

JSON

SILC changelog reports :

An unspecified format string vulnerability exists in silc-client.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from the FreeBSD VuXML database :
#
# Copyright 2003-2018 Jacques Vidrine and contributors
#
# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,
# HTML, PDF, PostScript, RTF and so forth) with or without modification,
# are permitted provided that the following conditions are met:
# 1. Redistributions of source code (VuXML) must retain the above
#    copyright notice, this list of conditions and the following
#    disclaimer as the first lines of this file unmodified.
# 2. Redistributions in compiled form (transformed to other DTDs,
#    published online in any format, converted to PDF, PostScript,
#    RTF and other formats) must reproduce the above copyright
#    notice, this list of conditions and the following disclaimer
#    in the documentation and/or other materials provided with the
#    distribution.
# 
# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS "AS IS"
# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS
# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT
# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,
# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(40486);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2009-3051");

  script_name(english:"FreeBSD : silc-client -- Format string vulnerability (4e306850-811f-11de-8a67-000c29a67389)");
  script_summary(english:"Checks for updated packages in pkg_info output");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote FreeBSD host is missing one or more security-related
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"SILC changelog reports :

An unspecified format string vulnerability exists in silc-client."
  );
  # http://silcnet.org/docs/changelog/SILC%20Client%201.1.8
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?f8bad6b9"
  );
  # https://vuxml.freebsd.org/freebsd/4e306850-811f-11de-8a67-000c29a67389.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?45ba11e0"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_cwe_id(134);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:silc-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:freebsd:freebsd:silc-irssi-client");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:freebsd:freebsd");

  script_set_attribute(attribute:"vuln_publication_date", value:"2009/07/31");
  script_set_attribute(attribute:"patch_publication_date", value:"2009/08/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/08/05");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"FreeBSD Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/FreeBSD/release", "Host/FreeBSD/pkg_info");

  exit(0);
}


include("audit.inc");
include("freebsd_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/FreeBSD/release")) audit(AUDIT_OS_NOT, "FreeBSD");
if (!get_kb_item("Host/FreeBSD/pkg_info")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;

if (pkg_test(save_report:TRUE, pkg:"silc-client<1.1.8")) flag++;
if (pkg_test(save_report:TRUE, pkg:"silc-irssi-client<1.1.8")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:pkg_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
freebsdfreebsdsilc-clientp-cpe:/a:freebsd:freebsd:silc-client
freebsdfreebsdsilc-irssi-clientp-cpe:/a:freebsd:freebsd:silc-irssi-client
freebsdfreebsdcpe:/o:freebsd:freebsd

Related

openvas 20
nvd 1
nessus 9
ubuntucve 1
freebsd 2
cvelist 1
securityvulns 2
prion 1
cve 1
debian 2
gentoo 1
osv 1
openvas
openvas
FreeBSD Ports: silc-toolkit
2009-09-15 00:00:00
SILC Client Nickname Field Format String Vulnerability
2009-09-29 00:00:00
FreeBSD Ports: silc-client, silc-irssi-client
2009-08-17 00:00:00
nvd
nvd
CVE-2009-3051
2009-09-10 18:30:00
nessus
nessus
FreeBSD : silc-toolkit -- Format string vulnerabilities (24aa9970-9ccd-11de-af10-000c29a67389)
2009-09-09 00:00:00
Mandriva Linux Security Advisory : silc-toolkit (MDVSA-2009:235)
2010-07-30 00:00:00
openSUSE Security Update : silc-toolkit (silc-toolkit-1280)
2009-09-17 00:00:00
ubuntucve
ubuntucve
CVE-2009-3051
2009-09-10 00:00:00
freebsd
freebsd
silc-client -- Format string vulnerability
2009-07-31 00:00:00
silc-toolkit -- Format string vulnerabilities
2009-08-07 00:00:00
cvelist
cvelist
CVE-2009-3051
2009-09-10 18:00:00
securityvulns
securityvulns
silc format string vulnerability
2009-09-04 00:00:00
[SECURITY] [DSA 1879-1] New silc-client/silc-toolkit packages fix arbitrary code execution
2009-09-04 00:00:00
prion
prion
Format string
2009-09-10 18:30:00
cve
cve
CVE-2009-3051
2009-09-10 18:30:00
debian
debian
[Backports-security-announce] Security update for silc-client/silc-toolkit
2009-09-20 13:08:11
[SECURITY] [DSA 1879-1] New silc-client/silc-toolkit packages fix arbitrary code execution
2009-09-04 15:18:33
gentoo
gentoo
SILC: Multiple vulnerabilities
2010-06-01 00:00:00
osv
osv
silc-client silc-toolkit - arbitrary code execution
2009-09-04 00:00:00

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.098 Low

EPSS

Percentile

94.9%

JSON
Related for FREEBSD_PKG_4E306850811F11DE8A67000C29A67389.NASL
openvas20nvd1nessus9ubuntucve1freebsd2cvelist1securityvulns2prion1cve1debian2gentoo1osv1