Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 Tenable Network Security, Inc.GENTOO_GLSA-200709-15.NASL
HistorySep 25, 2007 - 12:00 a.m.

GLSA-200709-15 : BEA JRockit: Multiple vulnerabilities

2007-09-2500:00:00
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.
www.tenable.com
18
JSON

The remote host is affected by the vulnerability described in GLSA-200709-15 (BEA JRockit: Multiple vulnerabilities)

An integer overflow vulnerability exists in the embedded ICC profile     image parser (CVE-2007-2788), an unspecified vulnerability exists in     the font parsing implementation (CVE-2007-4381), and an error exists     when processing XSLT stylesheets contained in XSLT Transforms in XML     signatures (CVE-2007-3716), among other vulnerabilities.

Impact :

A remote attacker could trigger the integer overflow to execute     arbitrary code or crash the JVM through a specially crafted file. Also,     an attacker could perform unauthorized actions via an applet that     grants certain privileges to itself because of the font parsing     vulnerability. The error when processing XSLT stylesheets can be     exploited to execute arbitrary code. Other vulnerabilities could lead     to establishing restricted network connections to certain services,     Cross Site Scripting and Denial of Service attacks.

Workaround :

There is no known workaround at this time for all these     vulnerabilities.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Gentoo Linux Security Advisory GLSA 200709-15.
#
# The advisory text is Copyright (C) 2001-2016 Gentoo Foundation, Inc.
# and licensed under the Creative Commons - Attribution / Share Alike 
# license. See http://creativecommons.org/licenses/by-sa/3.0/
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(26117);
  script_version("1.20");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2007-2788", "CVE-2007-2789", "CVE-2007-3503", "CVE-2007-3698", "CVE-2007-3716", "CVE-2007-3922", "CVE-2007-4381");
  script_bugtraq_id(24004, 24846, 25054, 25340);
  script_xref(name:"GLSA", value:"200709-15");

  script_name(english:"GLSA-200709-15 : BEA JRockit: Multiple vulnerabilities");
  script_summary(english:"Checks for updated package(s) in /var/db/pkg");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Gentoo host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The remote host is affected by the vulnerability described in GLSA-200709-15
(BEA JRockit: Multiple vulnerabilities)

    An integer overflow vulnerability exists in the embedded ICC profile
    image parser (CVE-2007-2788), an unspecified vulnerability exists in
    the font parsing implementation (CVE-2007-4381), and an error exists
    when processing XSLT stylesheets contained in XSLT Transforms in XML
    signatures (CVE-2007-3716), among other vulnerabilities.
  
Impact :

    A remote attacker could trigger the integer overflow to execute
    arbitrary code or crash the JVM through a specially crafted file. Also,
    an attacker could perform unauthorized actions via an applet that
    grants certain privileges to itself because of the font parsing
    vulnerability. The error when processing XSLT stylesheets can be
    exploited to execute arbitrary code. Other vulnerabilities could lead
    to establishing restricted network connections to certain services,
    Cross Site Scripting and Denial of Service attacks.
  
Workaround :

    There is no known workaround at this time for all these
    vulnerabilities."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security.gentoo.org/glsa/200709-15"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"All BEA JRockit users should upgrade to the latest version:
    # emerge --sync
    # emerge --ask --oneshot --verbose '>=dev-java/jrockit-jdk-bin-1.5.0.11_p1'"
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(20, 189, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:jrockit-jdk-bin");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/09/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/09/25");
  script_set_attribute(attribute:"vuln_publication_date", value:"2007/05/16");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"Gentoo Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("qpkg.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Gentoo/release")) audit(AUDIT_OS_NOT, "Gentoo");
if (!get_kb_item("Host/Gentoo/qpkg-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;

if (qpkg_check(package:"dev-java/jrockit-jdk-bin", unaffected:make_list("ge 1.5.0.11_p1"), vulnerable:make_list("lt 1.5.0.11_p1"))) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = qpkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "BEA JRockit");
}
VendorProductVersionCPE
gentoolinuxjrockit-jdk-binp-cpe:/a:gentoo:linux:jrockit-jdk-bin
gentoolinuxcpe:/o:gentoo:linux

Related

openvas 28
gentoo 4
nessus 39
redhat 10
suse 3
securityvulns 2
prion 14
cve 14
ubuntucve 7
seebug 1
checkpoint_advisories 1
cert 1
f5 2
ibm 1
openvas
openvas
Gentoo Security Advisory GLSA 200709-15 (jrockit-jdk-bin)
2008-09-24 00:00:00
SLES9: Security update for IBM Java2 JRE and SDK
2009-10-10 00:00:00
SLES9: Security update for IBM Java2 JRE and SDK
2009-10-10 00:00:00
gentoo
gentoo
BEA JRockit: Multiple vulnerabilities
2007-09-23 00:00:00
Sun JDK/JRE: Multiple vulnerabilities
2007-05-31 00:00:00
emul-linux-x86-java: Multiple vulnerabilities
2007-06-26 00:00:00
nessus
nessus
RHEL 4 / 5 : java-1.5.0-bea (RHSA-2007:0956)
2009-08-24 00:00:00
RHEL 4 : java-1.5.0-sun (RHSA-2007:0818)
2013-01-24 00:00:00
RHEL 4 : java-1.4.2-bea (RHSA-2007:1086)
2013-01-24 00:00:00
redhat
redhat
(RHSA-2007:0956) Moderate: java-1.5.0-bea security update
2007-10-16 00:00:00
(RHSA-2007:0818) Critical: java-1.5.0-sun security update
2007-08-06 00:00:00
(RHSA-2007:1086) Moderate: java-1.4.2-bea security update
2007-12-12 00:00:00
suse
suse
remote code execution in IBM Java
2007-10-18 17:55:07
remote code execution in IBM Java, Sun Java
2007-07-18 17:38:23
remote code execution in IBMJava2,IBMJava5,java-1_4_2-ibm,java-1_5_0-ibm
2008-04-25 14:46:33
securityvulns
securityvulns
Sun JRE / JDK multiple security vulnerabilities
2007-06-01 00:00:00
[ GLSA 200705-23 ] Sun JDK/JRE: Multiple vulnerabilities
2007-06-01 00:00:00
prion
prion
Design/Logic Flaw
2007-08-17 21:17:00
Security feature bypass
2007-07-21 00:30:00
Cross site scripting
2007-06-30 01:30:00
cve
cve
CVE-2007-4381
2007-08-17 21:17:00
CVE-2007-3503
2007-06-30 01:30:00
CVE-2007-3922
2007-07-21 00:30:00
ubuntucve
ubuntucve
CVE-2007-4381
2007-08-17 00:00:00
CVE-2007-3503
2007-06-30 00:00:00
CVE-2007-3922
2007-07-21 00:00:00
seebug
seebug
Sun JavaDoc工具跨站脚本漏洞
2007-09-03 00:00:00
checkpoint_advisories
checkpoint_advisories
Sun JDK Hard Coded Image in Java File (CVE-2007-2788)
2010-03-23 00:00:00
cert
cert
Java Runtime Environment Image Parsing Code buffer overflow vulnerability
2007-06-06 00:00:00
f5
f5
K16475 : Multiple Sun Java vulnerabilities
2015-04-21 00:00:00
SOL16475 - Multiple Sun Java vulnerabilities
2015-04-21 00:00:00
ibm
ibm
Security Bulletin: Cloud Pak for Security uses packages that are vulnerable to multiple CVEs
2023-03-08 18:05:21
JSON
Related for GENTOO_GLSA-200709-15.NASL
openvas28gentoo4nessus39redhat10suse3securityvulns2prion14cve14ubuntucve7seebug1checkpoint_advisories1cert1f52ibm1