Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2004-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2003-105.NASL
HistoryJul 31, 2004 - 12:00 a.m.

Mandrake Linux Security Advisory : hylafax (MDKSA-2003:105)

2004-07-3100:00:00
This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.
www.tenable.com
10
JSON

During a code review of the hfaxd server, part of the hylafax package, the SuSE Security Team discovered a format bug condition that allows remote attackers to execute arbitrary code as the root user. Updated packages have been patched to correct the problem.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2003:105. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(14087);
  script_version("1.18");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2003-0886");
  script_xref(name:"MDKSA", value:"2003:105");

  script_name(english:"Mandrake Linux Security Advisory : hylafax (MDKSA-2003:105)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"During a code review of the hfaxd server, part of the hylafax package,
the SuSE Security Team discovered a format bug condition that allows
remote attackers to execute arbitrary code as the root user. Updated
packages have been patched to correct the problem."
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:hylafax");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:hylafax-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:hylafax-server");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libhylafax4.1.1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libhylafax4.1.1-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:9.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:9.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:9.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2003/11/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/31");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK9.0", cpu:"i386", reference:"hylafax-4.1.3-5.1.90mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.0", cpu:"i386", reference:"hylafax-client-4.1.3-5.1.90mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.0", cpu:"i386", reference:"hylafax-server-4.1.3-5.1.90mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.0", cpu:"i386", reference:"libhylafax4.1.1-4.1.3-5.1.90mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.0", cpu:"i386", reference:"libhylafax4.1.1-devel-4.1.3-5.1.90mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"hylafax-4.1.5-1.1.91mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"hylafax-client-4.1.5-1.1.91mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"hylafax-server-4.1.5-1.1.91mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"libhylafax4.1.1-4.1.5-1.1.91mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"libhylafax4.1.1-devel-4.1.5-1.1.91mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"hylafax-4.1.6-3.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"hylafax-client-4.1.6-3.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"hylafax-server-4.1.6-3.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"libhylafax4.1.1-4.1.6-3.1.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"libhylafax4.1.1-devel-4.1.6-3.1.92mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxhylafaxp-cpe:/a:mandriva:linux:hylafax
mandrivalinuxhylafax-clientp-cpe:/a:mandriva:linux:hylafax-client
mandrivalinuxhylafax-serverp-cpe:/a:mandriva:linux:hylafax-server
mandrivalinuxlibhylafax4.1.1p-cpe:/a:mandriva:linux:libhylafax4.1.1
mandrivalinuxlibhylafax4.1.1-develp-cpe:/a:mandriva:linux:libhylafax4.1.1-devel
mandrakesoftmandrake_linux9.0cpe:/o:mandrakesoft:mandrake_linux:9.0
mandrakesoftmandrake_linux9.1cpe:/o:mandrakesoft:mandrake_linux:9.1
mandrakesoftmandrake_linux9.2cpe:/o:mandrakesoft:mandrake_linux:9.2

Related

gentoo 1
openvas 4
cvelist 1
debian 2
osv 1
debiancve 1
nessus 2
cve 1
securityvulns 1
suse 1
gentoo
gentoo
HylaFAX: Remote code exploit in hylafax
2003-11-10 00:00:00
openvas
openvas
Debian Security Advisory DSA 401-1 (hylafax)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200311-03 (HylaFAX)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200311-03 (HylaFAX)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2003-0886
2003-11-12 05:00:00
debian
debian
[SECURITY] [DSA 401-1] New hylafax packages fix remote root exploit
2003-11-17 08:07:05
[SECURITY] [DSA 401-1] New hylafax packages fix remote root exploit
2003-11-17 00:00:00
osv
osv
hylafax - format strings
2003-11-17 00:00:00
debiancve
debiancve
CVE-2003-0886
2003-12-01 05:00:00
nessus
nessus
SuSE-SA:2003:045: hylafax
2004-07-25 00:00:00
Debian DSA-401-1 : hylafax - format strings
2004-09-29 00:00:00
cve
cve
CVE-2003-0886
2003-12-01 05:00:00
securityvulns
securityvulns
SUSE Security Announcement: hylafax (SuSE-SA:2003:045)
2003-11-13 00:00:00
suse
suse
remote code execution in hylafax
2003-11-10 14:45:25
JSON
Related for MANDRAKE_MDKSA-2003-105.NASL
gentoo1openvas4cvelist1debian2osv1debiancve1nessus2cve1securityvulns1suse1