Vulners
Lucene search
MDKA-2007:027 : php-session
🗓️ 30 Apr 2007 00:00:00Reported by This script is Copyright (C) 2007-2011 Tenable Network Security, Inc.Type 
nessus🔗 www.tenable.com👁 11 Views
| Source | Link |
|---|---|
| mandriva | www.mandriva.com/security/advisories |
#%NASL_MIN_LEVEL 999999
# @DEPRECATED@
#
# This script has been deprecated as the associated patch is not
# currently a security fix.
#
# Disabled on 2012/09/06.
#
#
# (C) Tenable Network Security, Inc.
#
# This script was automatically generated from
# Mandrake Linux Security Advisory MDKA-2007:027.
#
if (!defined_func("bn_random")) exit(0);
include("compat.inc");
if (description)
{
script_id(25112);
script_version ("1.11");
script_cvs_date("Date: 2018/07/20 0:18:52");
script_name(english:"MDKA-2007:027 : php-session");
script_summary(english:"Checks for patch(es) in 'rpm -qa' output");
script_set_attribute(attribute:"synopsis", value:
"The remote Mandrake host is missing one or more security-related
patches.");
script_set_attribute(attribute:"description", value:
"The php-session package includes a cron setting to remove PHP
sessions that are no longer in use. Previously, it could expire the
session even if it was still in use. This update will prevent the
cron job from removing sessions that are still actively being used,
and will only expire after the last action done in the session is
older than the number of minutes defined in /var/lib/php/maxlifetime.");
script_set_attribute(attribute:"see_also", value:"http://www.mandriva.com/security/advisories?name=MDKA-2007:027");
script_set_attribute(attribute:"solution", value:"Update the affected package(s).");
script_set_attribute(attribute:"risk_factor", value:"High");
script_set_attribute(attribute:"patch_publication_date", value:"2007/04/23");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"plugin_publication_date", value: "2007/04/30");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Mandriva Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/Mandrake/release", "Host/Mandrake/rpm-list");
exit(0);
}
# Deprecated.
exit(0, "The associated patch is not currently a security fix.");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) exit(0, "Local checks are not enabled.");
if (!get_kb_item("Host/Mandrake/release")) exit(0, "The host is not running Mandrake Linux.");
if (!get_kb_item("Host/Mandrake/rpm-list")) exit(1, "Could not get the list of packages.");
flag = 0;
if (rpm_check(reference:"php-session-5.1.6-1.2mdv2007.0", release:"MDK2007.0", cpu:"i386", yank:"mdv")) flag++;
if (rpm_check(reference:"php-session-5.1.6-1.2mdv2007.0", release:"MDK2007.0", cpu:"x86_64", yank:"mdv")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
exit(0, "The host is not affected.");
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
07 Sep 2012 00:00Current
7.2High risk
Vulners AI Score7.2