Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2004-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2002-069.NASL
HistoryJul 31, 2004 - 12:00 a.m.

Mandrake Linux Security Advisory : gv (MDKSA-2002:069)

2004-07-3100:00:00
This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.
www.tenable.com
12
JSON

A buffer overflow was discovered in gv versions 3.5.8 and earlier by Zen Parse. The problem is triggered by scanning a file and can be exploited by an attacker sending a malformed PostScript or PDF file.
This would result in arbitrary code being executed with the privilege of the user viewing the file. ggv uses code derived from gv and has the same vulnerability. These updates provide patched versions of gv and ggv to fix the vulnerabilities.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2002:069. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(13969);
  script_version("1.19");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2002-0838");
  script_xref(name:"MDKSA", value:"2002:069");

  script_name(english:"Mandrake Linux Security Advisory : gv (MDKSA-2002:069)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A buffer overflow was discovered in gv versions 3.5.8 and earlier by
Zen Parse. The problem is triggered by scanning a file and can be
exploited by an attacker sending a malformed PostScript or PDF file.
This would result in arbitrary code being executed with the privilege
of the user viewing the file. ggv uses code derived from gv and has
the same vulnerability. These updates provide patched versions of gv
and ggv to fix the vulnerabilities."
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected ggv and / or gv packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:ggv");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:gv");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:8.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:8.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:8.2");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:9.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2002/10/21");
  script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/31");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK8.0", cpu:"i386", reference:"ggv-1.1.0-1.1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK8.0", cpu:"i386", reference:"gv-3.5.8-18.1mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK8.1", cpu:"i386", reference:"ggv-1.1.0-1.1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK8.1", cpu:"i386", reference:"gv-3.5.8-27.1mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK8.2", cpu:"i386", reference:"ggv-1.1.94-2.1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK8.2", cpu:"i386", reference:"gv-3.5.8-27.1mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK9.0", cpu:"i386", reference:"ggv-1.99.9-1.1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.0", cpu:"i386", reference:"gv-3.5.8-27.1mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxggvp-cpe:/a:mandriva:linux:ggv
mandrivalinuxgvp-cpe:/a:mandriva:linux:gv
mandrakesoftmandrake_linux8.0cpe:/o:mandrakesoft:mandrake_linux:8.0
mandrakesoftmandrake_linux8.1cpe:/o:mandrakesoft:mandrake_linux:8.1
mandrakesoftmandrake_linux8.2cpe:/o:mandrakesoft:mandrake_linux:8.2
mandrakesoftmandrake_linux9.0cpe:/o:mandrakesoft:mandrake_linux:9.0

Related

debian 6
openvas 8
debiancve 1
nessus 6
cert 1
osv 3
securityvulns 1
cvelist 1
redhat 1
cve 1
gentoo 1
redhatcve 1
debian
debian
[SECURITY] [DSA 176-1] New gv packages fix buffer overflow
2002-10-16 14:59:28
[SECURITY] [DSA 179-1] New gnome-gv packages fix buffer overflow
2002-10-18 00:00:00
[SECURITY] [DSA 182-1] New kghostview packages fix buffer overflow
2002-10-28 00:00:00
openvas
openvas
Debian Security Advisory DSA 182-1 (kdegraphics)
2008-01-17 00:00:00
Debian Security Advisory DSA 182-1 (kdegraphics)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200408-10 (gv)
2008-09-24 00:00:00
debiancve
debiancve
CVE-2002-0838
2002-10-10 04:00:00
nessus
nessus
Debian DSA-179-1 : gnome-gv - buffer overflow
2004-09-29 00:00:00
RHEL 2.1 : ggv (RHSA-2002:211)
2004-07-06 00:00:00
GLSA-200408-10 : gv: Exploitable Buffer Overflow
2004-08-30 00:00:00
cert
cert
gv contains buffer overflow in sscanf() function
2002-10-17 00:00:00
osv
osv
kdegraphics - buffer overflow
2002-10-28 00:00:00
gnome-gv - buffer overflow
2002-10-18 00:00:00
gv - buffer overflow
2002-10-16 00:00:00
securityvulns
securityvulns
KDE Security Advisory: KGhostview Arbitary Code Execution
2002-10-12 00:00:00
cvelist
cvelist
CVE-2002-0838
2002-10-01 04:00:00
redhat
redhat
(RHSA-2002:211) ggv security update
2003-02-06 00:00:00
cve
cve
CVE-2002-0838
2002-10-10 04:00:00
gentoo
gentoo
gv: Exploitable Buffer Overflow
2004-08-12 00:00:00
redhatcve
redhatcve
CVE-2004-1717
2015-10-30 10:26:18
JSON
Related for MANDRAKE_MDKSA-2002-069.NASL
debian6openvas8debiancve1nessus6cert1osv3securityvulns1cvelist1redhat1cve1gentoo1redhatcve1