HP-UX PHSS_31243 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)
2005-02-16T00:00:00
ID HPUX_PHSS_31243.NASL Type nessus Reporter This script is Copyright (C) 2005-2021 Tenable Network Security, Inc. Modified 2005-02-16T00:00:00
Description
s700_800 11.22 ObAM Patch :
A potential security vulnerability has been identified with System
Administration Manager (SAM) running on HP-UX that may allow local
unauthorized privileges.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and patch checks in this plugin were
# extracted from HP patch PHSS_31243. The text itself is
# copyright (C) Hewlett-Packard Development Company, L.P.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(16733);
script_version("1.11");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2004-1375");
script_xref(name:"HP", value:"emr_na-c00896487");
script_xref(name:"HP", value:"HPSBUX01104");
script_xref(name:"HP", value:"SSRT4699");
script_name(english:"HP-UX PHSS_31243 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)");
script_summary(english:"Checks for the patch in the swlist output");
script_set_attribute(
attribute:"synopsis",
value:"The remote HP-UX host is missing a security-related patch."
);
script_set_attribute(
attribute:"description",
value:
"s700_800 11.22 ObAM Patch :
A potential security vulnerability has been identified with System
Administration Manager (SAM) running on HP-UX that may allow local
unauthorized privileges."
);
# http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00896487
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?c12a1e08"
);
script_set_attribute(
attribute:"solution",
value:"Install patch PHSS_31243 or subsequent."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:hp:hp-ux");
script_set_attribute(attribute:"patch_publication_date", value:"2004/09/22");
script_set_attribute(attribute:"patch_modification_date", value:"2007/03/22");
script_set_attribute(attribute:"plugin_publication_date", value:"2005/02/16");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.");
script_family(english:"HP-UX Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/HP-UX/version", "Host/HP-UX/swlist");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("hpux.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/HP-UX/version")) audit(AUDIT_OS_NOT, "HP-UX");
if (!get_kb_item("Host/HP-UX/swlist")) audit(AUDIT_PACKAGE_LIST_MISSING);
if (!hpux_check_ctx(ctx:"11.22"))
{
exit(0, "The host is not affected since PHSS_31243 applies to a different OS release.");
}
patches = make_list("PHSS_31243");
foreach patch (patches)
{
if (hpux_installed(app:patch))
{
exit(0, "The host is not affected because patch "+patch+" is installed.");
}
}
flag = 0;
if (hpux_check_patch(app:"SystemAdmin.OBAM-RUN", version:"B.11.22")) flag++;
if (hpux_check_patch(app:"SystemAdmin.OBAM-RUN-IA", version:"B.11.22")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:hpux_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
{"id": "HPUX_PHSS_31243.NASL", "bulletinFamily": "scanner", "title": "HP-UX PHSS_31243 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)", "description": "s700_800 11.22 ObAM Patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.", "published": "2005-02-16T00:00:00", "modified": "2005-02-16T00:00:00", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}, "href": "https://www.tenable.com/plugins/nessus/16733", "reporter": "This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.", "references": ["http://www.nessus.org/u?c12a1e08"], "cvelist": ["CVE-2004-1375"], "type": "nessus", "lastseen": "2021-01-12T11:32:13", "edition": 23, "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2004-1375"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310835015"]}, {"type": "osvdb", "idList": ["OSVDB:12583"]}, {"type": "nessus", "idList": ["HPUX_PHCO_28125.NASL", "HPUX_PHSS_31240.NASL", "HPUX_PHCO_32549.NASL", "HPUX_PHSS_31817.NASL"]}], "modified": "2021-01-12T11:32:13", "rev": 2}, "score": {"value": 6.4, "vector": "NONE", "modified": "2021-01-12T11:32:13", "rev": 2}, "vulnersScore": 6.4}, "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and patch checks in this plugin were \n# extracted from HP patch PHSS_31243. The text itself is\n# copyright (C) Hewlett-Packard Development Company, L.P.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(16733);\n script_version(\"1.11\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2004-1375\");\n script_xref(name:\"HP\", value:\"emr_na-c00896487\");\n script_xref(name:\"HP\", value:\"HPSBUX01104\");\n script_xref(name:\"HP\", value:\"SSRT4699\");\n\n script_name(english:\"HP-UX PHSS_31243 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)\");\n script_summary(english:\"Checks for the patch in the swlist output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote HP-UX host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"s700_800 11.22 ObAM Patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.\"\n );\n # http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00896487\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c12a1e08\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Install patch PHSS_31243 or subsequent.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:hp:hp-ux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/22\");\n script_set_attribute(attribute:\"patch_modification_date\", value:\"2007/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2005/02/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.\");\n script_family(english:\"HP-UX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/HP-UX/version\", \"Host/HP-UX/swlist\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"hpux.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/HP-UX/version\")) audit(AUDIT_OS_NOT, \"HP-UX\");\nif (!get_kb_item(\"Host/HP-UX/swlist\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nif (!hpux_check_ctx(ctx:\"11.22\"))\n{\n exit(0, \"The host is not affected since PHSS_31243 applies to a different OS release.\");\n}\n\npatches = make_list(\"PHSS_31243\");\nforeach patch (patches)\n{\n if (hpux_installed(app:patch))\n {\n exit(0, \"The host is not affected because patch \"+patch+\" is installed.\");\n }\n}\n\n\nflag = 0;\nif (hpux_check_patch(app:\"SystemAdmin.OBAM-RUN\", version:\"B.11.22\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.OBAM-RUN-IA\", version:\"B.11.22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:hpux_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "HP-UX Local Security Checks", "pluginID": "16733", "cpe": ["cpe:/o:hp:hp-ux"], "scheme": null}
{"cve": [{"lastseen": "2020-10-03T11:33:40", "description": "Unknown vulnerability in System Administration Manager (SAM) in HP-UX B.11.00, B.11.11, B.11.22, and B.11.23 allows local users to gain privileges.", "edition": 3, "cvss3": {}, "published": "2004-12-23T05:00:00", "title": "CVE-2004-1375", "type": "cve", "cwe": ["NVD-CWE-Other"], "bulletinFamily": "NVD", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 3.9, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 4.6, "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "LOCAL", "authentication": "NONE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2004-1375"], "modified": "2017-10-11T01:29:00", "cpe": ["cpe:/o:hp:hp-ux:11.11", "cpe:/o:hp:hp-ux:11.22", "cpe:/o:hp:hp-ux:11.23", "cpe:/o:hp:hp-ux:11.4", "cpe:/o:hp:hp-ux:11.00"], "id": "CVE-2004-1375", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-1375", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}, "cpe23": ["cpe:2.3:o:hp:hp-ux:11.23:*:ia64_64-bit:*:*:*:*:*", "cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*", "cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*", "cpe:2.3:o:hp:hp-ux:11.4:*:*:*:*:*:*:*", "cpe:2.3:o:hp:hp-ux:11.22:*:*:*:*:*:*:*"]}], "openvas": [{"lastseen": "2018-04-11T11:44:20", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-1375"], "description": "Check for the Version of System Administration Manager (SAM)", "modified": "2018-04-11T00:00:00", "published": "2009-05-05T00:00:00", "id": "OPENVAS:1361412562310835015", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310835015", "type": "openvas", "title": "HP-UX Update for System Administration Manager (SAM) HPSBUX01104", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# HP-UX Update for System Administration Manager (SAM) HPSBUX01104\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"System Administration Manager (SAM) on\n HP-UX B.11.00, B.11.04, B.11.11, B.11.22, and B.11.23 running System \n Administration Manager (SAM).\";\ntag_insight = \"A potential security vulnerability has been identifiedwith HP-UX running \n System Administration Manager (SAM) that may allow a local user elevation of \n privilege.\";\ntag_impact = \"Local user elevation of privilege.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://www11.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c00896487-1\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.835015\");\n script_version(\"$Revision: 9430 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-11 03:54:49 +0200 (Wed, 11 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-05-05 12:14:23 +0200 (Tue, 05 May 2009)\");\n script_tag(name:\"cvss_base\", value:\"4.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n script_xref(name: \"HPSBUX\", value: \"01104\");\n script_name(\"HP-UX Update for System Administration Manager (SAM) HPSBUX01104\");\n script_cve_id(\"CVE-2004-1375\");\n script_tag(name:\"summary\", value:\"Check for the Version of System Administration Manager (SAM)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"HP-UX Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/hp_hp-ux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-hpux.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"HPUX11.00\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"InternetSrvcs.INETSVCS-BOOT\", patch_list:['PHCO_28125'], rls:\"HPUX11.00\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"OS-Core.UX-CORE\", patch_list:['PHCO_28125'], rls:\"HPUX11.00\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"SystemAdmin.OBAM-RUN\", patch_list:['PHCO_28125'], rls:\"HPUX11.00\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"SystemAdmin.SAM\", patch_list:['PHCO_28125'], rls:\"HPUX11.00\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"HPUX11.22\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"SystemAdmin.OBAM-RUN\", patch_list:['PHSS_31243'], rls:\"HPUX11.22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"SystemAdmin.OBAM-RUN-IA\", patch_list:['PHSS_31243'], rls:\"HPUX11.22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"HPUX11.04\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"InternetSrvcs.INETSVCS-BOOT\", patch_list:['PHCO_32549'], rls:\"HPUX11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"OS-Core.UX-CORE\", patch_list:['PHCO_32549'], rls:\"HPUX11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"SystemAdmin.OBAM-RUN\", patch_list:['PHCO_32549'], rls:\"HPUX11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"SystemAdmin.SAM\", patch_list:['PHCO_32549'], rls:\"HPUX11.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"HPUX11.11\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"SystemAdmin.OBAM-RUN\", patch_list:['PHSS_31240'], rls:\"HPUX11.11\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"HPUX11.23\")\n{\n\n if ((res = ishpuxpkgvuln(pkg:\"SystemAdmin.OBAM-RUN\", patch_list:['PHSS_31817'], rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = ishpuxpkgvuln(pkg:\"SystemAdmin.OBAM-RUN-IA\", patch_list:['PHSS_31817'], rls:\"HPUX11.23\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:08", "bulletinFamily": "software", "cvelist": ["CVE-2004-1375"], "edition": 1, "description": "# No description provided by the source\n\n## References:\n[Vendor Specific Advisory URL](http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX01104)\n[Secunia Advisory ID:13655](https://secuniaresearch.flexerasoftware.com/advisories/13655/)\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-12/0390.html\nISS X-Force ID: 18674\n[CVE-2004-1375](https://vulners.com/cve/CVE-2004-1375)\nCIAC Advisory: P-085\nBugtraq ID: 12098\n", "modified": "2004-12-22T04:24:55", "published": "2004-12-22T04:24:55", "href": "https://vulners.com/osvdb/OSVDB:12583", "id": "OSVDB:12583", "type": "osvdb", "title": "HP-UX SAM Unspecified Local Privilege Escalation", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2021-01-12T11:32:02", "description": "s700_800 11.04 (VVOS) cumulative SAM/ObAM patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.", "edition": 23, "published": "2007-11-20T00:00:00", "title": "HP-UX PHCO_32549 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-1375"], "modified": "2007-11-20T00:00:00", "cpe": ["cpe:/o:hp:hp-ux"], "id": "HPUX_PHCO_32549.NASL", "href": "https://www.tenable.com/plugins/nessus/28268", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and patch checks in this plugin were \n# extracted from HP patch PHCO_32549. The text itself is\n# copyright (C) Hewlett-Packard Development Company, L.P.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(28268);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2004-1375\");\n script_xref(name:\"HP\", value:\"emr_na-c00896487\");\n script_xref(name:\"HP\", value:\"HPSBUX01104\");\n script_xref(name:\"HP\", value:\"SSRT4699\");\n\n script_name(english:\"HP-UX PHCO_32549 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)\");\n script_summary(english:\"Checks for the patch in the swlist output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote HP-UX host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"s700_800 11.04 (VVOS) cumulative SAM/ObAM patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.\"\n );\n # http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00896487\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c12a1e08\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Install patch PHCO_32549 or subsequent.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:hp:hp-ux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2005/01/20\");\n script_set_attribute(attribute:\"patch_modification_date\", value:\"2007/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/11/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.\");\n script_family(english:\"HP-UX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/HP-UX/version\", \"Host/HP-UX/swlist\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"hpux.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/HP-UX/version\")) audit(AUDIT_OS_NOT, \"HP-UX\");\nif (!get_kb_item(\"Host/HP-UX/swlist\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nif (!hpux_check_ctx(ctx:\"11.04\"))\n{\n exit(0, \"The host is not affected since PHCO_32549 applies to a different OS release.\");\n}\n\npatches = make_list(\"PHCO_32549\");\nforeach patch (patches)\n{\n if (hpux_installed(app:patch))\n {\n exit(0, \"The host is not affected because patch \"+patch+\" is installed.\");\n }\n}\n\n\nflag = 0;\nif (hpux_check_patch(app:\"InternetSrvcs.INETSVCS-BOOT\", version:\"B.11.04\")) flag++;\nif (hpux_check_patch(app:\"OS-Core.UX-CORE\", version:\"B.11.04\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.OBAM-RUN\", version:\"B.11.04\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.SAM\", version:\"B.11.04\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.SAM-ENG-A-MAN\", version:\"B.11.04\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.SAM-HELP\", version:\"B.11.04\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:hpux_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-12T11:32:13", "description": "s700_800 11.11 ObAM Cumulative Patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.", "edition": 23, "published": "2005-02-16T00:00:00", "title": "HP-UX PHSS_31240 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-1375"], "modified": "2005-02-16T00:00:00", "cpe": ["cpe:/o:hp:hp-ux"], "id": "HPUX_PHSS_31240.NASL", "href": "https://www.tenable.com/plugins/nessus/16734", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and patch checks in this plugin were \n# extracted from HP patch PHSS_31240. The text itself is\n# copyright (C) Hewlett-Packard Development Company, L.P.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(16734);\n script_version(\"1.11\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2004-1375\");\n script_xref(name:\"HP\", value:\"emr_na-c00896487\");\n script_xref(name:\"HP\", value:\"HPSBUX01104\");\n script_xref(name:\"HP\", value:\"SSRT4699\");\n\n script_name(english:\"HP-UX PHSS_31240 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)\");\n script_summary(english:\"Checks for the patch in the swlist output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote HP-UX host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"s700_800 11.11 ObAM Cumulative Patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.\"\n );\n # http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00896487\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c12a1e08\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Install patch PHSS_31240 or subsequent.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:hp:hp-ux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/22\");\n script_set_attribute(attribute:\"patch_modification_date\", value:\"2007/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2005/02/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.\");\n script_family(english:\"HP-UX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/HP-UX/version\", \"Host/HP-UX/swlist\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"hpux.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/HP-UX/version\")) audit(AUDIT_OS_NOT, \"HP-UX\");\nif (!get_kb_item(\"Host/HP-UX/swlist\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nif (!hpux_check_ctx(ctx:\"11.11\"))\n{\n exit(0, \"The host is not affected since PHSS_31240 applies to a different OS release.\");\n}\n\npatches = make_list(\"PHSS_31240\");\nforeach patch (patches)\n{\n if (hpux_installed(app:patch))\n {\n exit(0, \"The host is not affected because patch \"+patch+\" is installed.\");\n }\n}\n\n\nflag = 0;\nif (hpux_check_patch(app:\"SystemAdmin.OBAM-RUN\", version:\"B.11.11\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:hpux_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-12T11:32:02", "description": "s700_800 11.00 cumulative SAM/ObAM patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.", "edition": 23, "published": "2005-02-16T00:00:00", "title": "HP-UX PHCO_28125 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-1375"], "modified": "2005-02-16T00:00:00", "cpe": ["cpe:/o:hp:hp-ux"], "id": "HPUX_PHCO_28125.NASL", "href": "https://www.tenable.com/plugins/nessus/17085", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and patch checks in this plugin were \n# extracted from HP patch PHCO_28125. The text itself is\n# copyright (C) Hewlett-Packard Development Company, L.P.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(17085);\n script_version(\"1.12\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2004-1375\");\n script_xref(name:\"HP\", value:\"emr_na-c00896487\");\n script_xref(name:\"HP\", value:\"HPSBUX01104\");\n script_xref(name:\"HP\", value:\"SSRT4699\");\n\n script_name(english:\"HP-UX PHCO_28125 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)\");\n script_summary(english:\"Checks for the patch in the swlist output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote HP-UX host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"s700_800 11.00 cumulative SAM/ObAM patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.\"\n );\n # http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00896487\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c12a1e08\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Install patch PHCO_28125 or subsequent.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:hp:hp-ux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/12/06\");\n script_set_attribute(attribute:\"patch_modification_date\", value:\"2007/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2005/02/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.\");\n script_family(english:\"HP-UX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/HP-UX/version\", \"Host/HP-UX/swlist\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"hpux.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/HP-UX/version\")) audit(AUDIT_OS_NOT, \"HP-UX\");\nif (!get_kb_item(\"Host/HP-UX/swlist\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nif (!hpux_check_ctx(ctx:\"11.00\"))\n{\n exit(0, \"The host is not affected since PHCO_28125 applies to a different OS release.\");\n}\n\npatches = make_list(\"PHCO_28125\", \"PHCO_31879\");\nforeach patch (patches)\n{\n if (hpux_installed(app:patch))\n {\n exit(0, \"The host is not affected because patch \"+patch+\" is installed.\");\n }\n}\n\n\nflag = 0;\nif (hpux_check_patch(app:\"InternetSrvcs.INETSVCS-BOOT\", version:\"B.11.00\")) flag++;\nif (hpux_check_patch(app:\"OS-Core.UX-CORE\", version:\"B.11.00\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.OBAM-RUN\", version:\"B.11.00\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.SAM\", version:\"B.11.00\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.SAM-ENG-A-MAN\", version:\"B.11.00\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.SAM-HELP\", version:\"B.11.00\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:hpux_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-12T11:32:13", "description": "s700_800 11.23 ObAM Patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.", "edition": 23, "published": "2005-02-16T00:00:00", "title": "HP-UX PHSS_31817 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2004-1375"], "modified": "2005-02-16T00:00:00", "cpe": ["cpe:/o:hp:hp-ux"], "id": "HPUX_PHSS_31817.NASL", "href": "https://www.tenable.com/plugins/nessus/16652", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and patch checks in this plugin were \n# extracted from HP patch PHSS_31817. The text itself is\n# copyright (C) Hewlett-Packard Development Company, L.P.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(16652);\n script_version(\"1.12\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/11\");\n\n script_cve_id(\"CVE-2004-1375\");\n script_xref(name:\"HP\", value:\"emr_na-c00896487\");\n script_xref(name:\"HP\", value:\"HPSBUX01104\");\n script_xref(name:\"HP\", value:\"SSRT4699\");\n\n script_name(english:\"HP-UX PHSS_31817 : HP-UX Running System Administration Manager (SAM), Local Elevation of Privilege (HPSBUX01104 SSRT4699 rev.3)\");\n script_summary(english:\"Checks for the patch in the swlist output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote HP-UX host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"s700_800 11.23 ObAM Patch : \n\nA potential security vulnerability has been identified with System\nAdministration Manager (SAM) running on HP-UX that may allow local\nunauthorized privileges.\"\n );\n # http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00896487\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c12a1e08\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Install patch PHSS_31817 or subsequent.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:hp:hp-ux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2004/09/22\");\n script_set_attribute(attribute:\"patch_modification_date\", value:\"2007/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2005/02/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.\");\n script_family(english:\"HP-UX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/HP-UX/version\", \"Host/HP-UX/swlist\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"hpux.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/HP-UX/version\")) audit(AUDIT_OS_NOT, \"HP-UX\");\nif (!get_kb_item(\"Host/HP-UX/swlist\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nif (!hpux_check_ctx(ctx:\"11.23\"))\n{\n exit(0, \"The host is not affected since PHSS_31817 applies to a different OS release.\");\n}\n\npatches = make_list(\"PHSS_31817\", \"PHSS_32674\");\nforeach patch (patches)\n{\n if (hpux_installed(app:patch))\n {\n exit(0, \"The host is not affected because patch \"+patch+\" is installed.\");\n }\n}\n\n\nflag = 0;\nif (hpux_check_patch(app:\"SystemAdmin.OBAM-RUN\", version:\"B.11.23\")) flag++;\nif (hpux_check_patch(app:\"SystemAdmin.OBAM-RUN-IA\", version:\"B.11.23\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:hpux_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.6, "vector": "AV:L/AC:L/Au:N/C:P/I:P/A:P"}}]}
