Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 Tenable Network Security, Inc.GENTOO_GLSA-200706-08.NASL
HistoryJun 27, 2007 - 12:00 a.m.

GLSA-200706-08 : emul-linux-x86-java: Multiple vulnerabilities

2007-06-2700:00:00
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.
www.tenable.com
11
JSON

The remote host is affected by the vulnerability described in GLSA-200706-08 (emul-linux-x86-java: Multiple vulnerabilities)

Chris Evans of the Google Security Team has discovered an integer     overflow in the ICC parser, and another vulnerability in the BMP     parser. An unspecified vulnerability involving an 'incorrect use of     system classes' was reported by the Fujitsu security team.

Impact :

A remote attacker could entice a user to open a specially crafted     image, possibly resulting in the execution of arbitrary code with the     privileges of the user running Emul-linux-x86-java. They also could     entice a user to open a specially crafted BMP image, resulting in a     Denial of Service. Note that these vulnerabilities may also be     triggered by a tool processing image files automatically.

Workaround :

There is no known workaround at this time.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Gentoo Linux Security Advisory GLSA 200706-08.
#
# The advisory text is Copyright (C) 2001-2016 Gentoo Foundation, Inc.
# and licensed under the Creative Commons - Attribution / Share Alike 
# license. See http://creativecommons.org/licenses/by-sa/3.0/
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(25593);
  script_version("1.17");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2007-2435", "CVE-2007-2788", "CVE-2007-2789");
  script_xref(name:"GLSA", value:"200706-08");

  script_name(english:"GLSA-200706-08 : emul-linux-x86-java: Multiple vulnerabilities");
  script_summary(english:"Checks for updated package(s) in /var/db/pkg");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Gentoo host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The remote host is affected by the vulnerability described in GLSA-200706-08
(emul-linux-x86-java: Multiple vulnerabilities)

    Chris Evans of the Google Security Team has discovered an integer
    overflow in the ICC parser, and another vulnerability in the BMP
    parser. An unspecified vulnerability involving an 'incorrect use of
    system classes' was reported by the Fujitsu security team.
  
Impact :

    A remote attacker could entice a user to open a specially crafted
    image, possibly resulting in the execution of arbitrary code with the
    privileges of the user running Emul-linux-x86-java. They also could
    entice a user to open a specially crafted BMP image, resulting in a
    Denial of Service. Note that these vulnerabilities may also be
    triggered by a tool processing image files automatically.
  
Workaround :

    There is no known workaround at this time."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security.gentoo.org/glsa/200706-08"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"All Emul-linux-x86-java users should upgrade to the latest version:
    # emerge --sync
    # emerge --ask --oneshot --verbose '>=app-emulation/emul-linux-x86-java-1.5.0.11'"
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_cwe_id(189, 264, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:emul-linux-x86-java");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/06/26");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/06/27");
  script_set_attribute(attribute:"vuln_publication_date", value:"2007/05/01");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"Gentoo Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("qpkg.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Gentoo/release")) audit(AUDIT_OS_NOT, "Gentoo");
if (!get_kb_item("Host/Gentoo/qpkg-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;

if (qpkg_check(package:"app-emulation/emul-linux-x86-java", unaffected:make_list("ge 1.5.0.11", "rge 1.4.2.16", "rge 1.4.2.17", "rge 1.4.2.19"), vulnerable:make_list("lt 1.5.0.11"))) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = qpkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "emul-linux-x86-java");
}
VendorProductVersionCPE
gentoolinuxemul-linux-x86-javap-cpe:/a:gentoo:linux:emul-linux-x86-java
gentoolinuxcpe:/o:gentoo:linux

Related

securityvulns 2
openvas 14
gentoo 4
nessus 22
redhat 7
prion 6
checkpoint_advisories 1
cve 6
ubuntucve 3
jvn 1
cert 1
suse 2
securityvulns
securityvulns
[ GLSA 200705-23 ] Sun JDK/JRE: Multiple vulnerabilities
2007-06-01 00:00:00
Sun JRE / JDK multiple security vulnerabilities
2007-06-01 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200705-23 (sun-jdk,sun-jre-bin)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200706-08 (emul-linux-x86-java)
2008-09-24 00:00:00
SLES9: Security update for Java 2
2009-10-10 00:00:00
gentoo
gentoo
emul-linux-x86-java: Multiple vulnerabilities
2007-06-26 00:00:00
Sun JDK/JRE: Multiple vulnerabilities
2007-05-31 00:00:00
BEA JRockit: Multiple vulnerabilities
2007-09-23 00:00:00
nessus
nessus
GLSA-200705-23 : Sun JDK/JRE: Multiple vulnerabilities
2007-06-04 00:00:00
Sun Java JRE Image Parsing Vulnerabilities (102934) (Unix)
2013-02-22 00:00:00
Sun Java JRE Image Parsing Vulnerabilities (102934)
2007-06-02 00:00:00
redhat
redhat
(RHSA-2007:0817) Critical: java-1.4.2-ibm security update
2007-08-06 00:00:00
(RHSA-2007:0829) Critical: java-1.5.0-ibm security update
2007-08-07 00:00:00
(RHSA-2007:1086) Moderate: java-1.4.2-bea security update
2007-12-12 00:00:00
prion
prion
Code injection
2007-05-22 00:30:00
Integer overflow
2007-05-22 00:30:00
Design/Logic Flaw
2007-05-02 10:19:00
checkpoint_advisories
checkpoint_advisories
Sun JDK Hard Coded Image in Java File (CVE-2007-2788)
2010-03-23 00:00:00
cve
cve
CVE-2007-2789
2007-05-22 00:30:00
CVE-2007-2435
2007-05-02 10:19:00
CVE-2007-2788
2007-05-22 00:30:00
ubuntucve
ubuntucve
CVE-2007-2789
2007-05-22 00:00:00
CVE-2007-2435
2007-05-02 00:00:00
CVE-2009-3885
2009-11-09 00:00:00
jvn
jvn
JVN#44724673: Java Web Start vulnerable to execution of unauthorized system classes
2007-05-08 00:00:00
cert
cert
Java Runtime Environment Image Parsing Code buffer overflow vulnerability
2007-06-06 00:00:00
suse
suse
remote code execution in IBM Java
2007-10-18 17:55:07
remote code execution in IBM Java, Sun Java
2007-07-18 17:38:23
JSON
Related for GENTOO_GLSA-200706-08.NASL
securityvulns2openvas14gentoo4nessus22redhat7prion6checkpoint_advisories1cve6ubuntucve3jvn1cert1suse2