Lucene search
This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2004-047.NASLHistoryJul 31, 2004 - 12:00 a.m.
Mandrake Linux Security Advisory : kdelibs (MDKSA-2004:047)
2004-07-3100:00:00
This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.
www.tenable.com
13
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.171 Low
EPSS
Percentile
96.1%
A vulnerability in the Opera web browser was identified by iDEFENSE;
the same type of vulnerability exists in KDE. The telnet, rlogin, ssh, and mailto URI handlers do not check for ‘-’ at the beginning of the hostname passed, which makes it possible to pass an option to the programs started by the handlers. This can allow remote attackers to create or truncate arbitrary files.
The updated packages contain patches provided by the KDE team to fix this problem.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Mandrake Linux Security Advisory MDKSA-2004:047.
# The text itself is copyright (C) Mandriva S.A.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(14146);
script_version("1.18");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2004-0411");
script_xref(name:"MDKSA", value:"2004:047");
script_name(english:"Mandrake Linux Security Advisory : kdelibs (MDKSA-2004:047)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Mandrake Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"A vulnerability in the Opera web browser was identified by iDEFENSE;
the same type of vulnerability exists in KDE. The telnet, rlogin, ssh,
and mailto URI handlers do not check for '-' at the beginning of the
hostname passed, which makes it possible to pass an option to the
programs started by the handlers. This can allow remote attackers to
create or truncate arbitrary files.
The updated packages contain patches provided by the KDE team to fix
this problem."
);
script_set_attribute(
attribute:"see_also",
value:"https://www.securityfocus.com/archive/1/363225"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kdelibs-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64kdecore4");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64kdecore4-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libkdecore4");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libkdecore4-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.0");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:9.2");
script_set_attribute(attribute:"patch_publication_date", value:"2004/05/18");
script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/31");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.");
script_family(english:"Mandriva Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);
flag = 0;
if (rpm_check(release:"MDK10.0", reference:"kdelibs-common-3.2-36.2.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64kdecore4-3.2-36.2.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"amd64", reference:"lib64kdecore4-devel-3.2-36.2.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libkdecore4-3.2-36.2.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"libkdecore4-devel-3.2-36.2.100mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", reference:"kdelibs-common-3.1.3-35.2.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"amd64", reference:"lib64kdecore4-3.1.3-35.2.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"amd64", reference:"lib64kdecore4-devel-3.1.3-35.2.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"libkdecore4-3.1.3-35.2.92mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"libkdecore4-devel-3.1.3-35.2.92mdk", yank:"mdk")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mandriva | linux | kdelibs-common | p-cpe:/a:mandriva:linux:kdelibs-common |
| mandriva | linux | lib64kdecore4 | p-cpe:/a:mandriva:linux:lib64kdecore4 |
| mandriva | linux | lib64kdecore4-devel | p-cpe:/a:mandriva:linux:lib64kdecore4-devel |
| mandriva | linux | libkdecore4 | p-cpe:/a:mandriva:linux:libkdecore4 |
| mandriva | linux | libkdecore4-devel | p-cpe:/a:mandriva:linux:libkdecore4-devel |
| mandrakesoft | mandrake_linux | 10.0 | cpe:/o:mandrakesoft:mandrake_linux:10.0 |
| mandrakesoft | mandrake_linux | 9.2 | cpe:/o:mandrakesoft:mandrake_linux:9.2 |
Related
openvas
openvas
Slackware: Security Advisory (SSA:2004-238-01)
2012-09-10 00:00:00
Gentoo Security Advisory GLSA 200405-11 (kdelibs)
2008-09-24 00:00:00
Debian Security Advisory DSA 518-1 (kdelibs)
2008-01-17 00:00:00
nessus
nessus
FreeBSD : URI handler vulnerabilities in several browsers (197)
2004-07-06 00:00:00
FreeBSD : URI handler vulnerabilities in several browsers (df333ede-a8ce-11d8-9c6d-0020ed76ef5a)
2009-04-23 00:00:00
Fedora Core 2 : kdelibs-3.2.2-6 (2004-122)
2004-07-23 00:00:00
freebsd
freebsd
URI handler vulnerabilities in several browsers
2004-05-12 00:00:00
redhat
redhat
(RHSA-2004:222) kdelibs security update
2004-05-17 00:00:00
debian
debian
[SECURITY] [DSA 518-1] New kdelibs packages fix URI handler vulnerabilities
2004-06-14 13:29:31
[SECURITY] [DSA 518-1] New kdelibs packages fix URI handler vulnerabilities
2004-06-14 13:29:31
nvd
nvd
CVE-2004-0411
2004-07-07 04:00:00
securityvulns
securityvulns
KDE Security Advisory: URI Handler Vulnerabilities
2004-05-18 00:00:00
cve
cve
CVE-2004-0411
2004-07-07 04:00:00
slackware
slackware
kdelibs
2004-05-18 00:08:28
osv
osv
kdelibs - unsanitised input
2004-06-14 00:00:00
cvelist
cvelist
CVE-2004-0411
2004-05-20 04:00:00
gentoo
gentoo
KDE URI Handler Vulnerabilities
2004-05-19 00:00:00
checkpoint_advisories
checkpoint_advisories
suse
suse
remote file creation in kdelibs/kdelibs3
2004-05-26 11:35:37
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.171 Low
EPSS
Percentile
96.1%
Related for MANDRAKE_MDKSA-2004-047.NASL