Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2006-2021 and is owned by Tenable, Inc. or an Affiliate thereof.MANDRAKE_MDKSA-2005-225.NASL
HistoryJan 15, 2006 - 12:00 a.m.

Mandrake Linux Security Advisory : perl (MDKSA-2005:225)

2006-01-1500:00:00
This script is Copyright (C) 2006-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

51.7%

JSON

Jack Louis discovered a new way to exploit format string errors in the Perl programming language that could lead to the execution of arbitrary code.

The updated packages are patched to close the particular exploit vector in Perl itself, to mitigate the risk of format string programming errors, however it does not fix problems that may exist in particular pieces of software written in Perl.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2005:225. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(20456);
  script_version("1.19");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2005-3962");
  script_bugtraq_id(15629);
  script_xref(name:"MDKSA", value:"2005:225");

  script_name(english:"Mandrake Linux Security Advisory : perl (MDKSA-2005:225)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Jack Louis discovered a new way to exploit format string errors in the
Perl programming language that could lead to the execution of
arbitrary code.

The updated packages are patched to close the particular exploit
vector in Perl itself, to mitigate the risk of format string
programming errors, however it does not fix problems that may exist in
particular pieces of software written in Perl."
  );
  # http://www.dyadsecurity.com/perl-0002.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?a844180b"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:ND");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:perl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:perl-base");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:perl-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:perl-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:perl-suid");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2006");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:mandrakesoft:mandrake_linux:le2005");

  script_set_attribute(attribute:"patch_publication_date", value:"2005/12/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2006/01/15");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2006-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK10.1", reference:"perl-5.8.5-3.5.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"perl-base-5.8.5-3.5.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"perl-devel-5.8.5-3.5.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"perl-doc-5.8.5-3.5.101mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK10.2", reference:"perl-5.8.6-6.2.102mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.2", reference:"perl-base-5.8.6-6.2.102mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.2", reference:"perl-devel-5.8.6-6.2.102mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.2", reference:"perl-doc-5.8.6-6.2.102mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK2006.0", reference:"perl-5.8.7-3.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"perl-base-5.8.7-3.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"perl-devel-5.8.7-3.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"perl-doc-5.8.7-3.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"perl-suid-5.8.7-3.2.20060mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxperlp-cpe:/a:mandriva:linux:perl
mandrivalinuxperl-basep-cpe:/a:mandriva:linux:perl-base
mandrivalinuxperl-develp-cpe:/a:mandriva:linux:perl-devel
mandrivalinuxperl-docp-cpe:/a:mandriva:linux:perl-doc
mandrivalinuxperl-suidp-cpe:/a:mandriva:linux:perl-suid
mandrakesoftmandrake_linux10.1cpe:/o:mandrakesoft:mandrake_linux:10.1
mandrivalinux2006cpe:/o:mandriva:linux:2006
mandrakesoftmandrake_linuxle2005x-cpe:/o:mandrakesoft:mandrake_linux:le2005

Related

gentoo 1
centos 2
nessus 18
ubuntucve 1
f5 2
openvas 8
cvelist 2
nvd 2
cert 1
debian 2
ubuntu 2
cve 2
debiancve 1
suse 1
redhat 2
securityvulns 1
freebsd 1
seebug 2
gentoo
gentoo
Perl: Format string errors can lead to code execution
2005-12-07 00:00:00
centos
centos
perl security update
2005-12-21 02:54:22
perl security update
2005-12-20 23:33:21
nessus
nessus
Solaris 10 (x86) : 122082-01
2006-03-06 00:00:00
Debian DSA-943-1 : perl - integer overflow
2006-10-14 00:00:00
Ubuntu 4.10 / 5.04 / 5.10 : perl vulnerability (USN-222-2)
2006-01-21 00:00:00
ubuntucve
ubuntucve
CVE-2005-3962
2005-12-01 00:00:00
f5
f5
K5794 : Security Advisory: Perl integer sign error in format string processing - CVE-2005-3962
2013-03-28 00:00:00
SOL5794 - Security Advisory: Perl integer sign error in format string processing - CVE-2005-3962
2006-08-16 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200512-01 (Perl)
2008-09-24 00:00:00
SLES9: Security update for perl
2009-10-10 00:00:00
Gentoo Security Advisory GLSA 200512-01 (Perl)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2005-3962
2005-12-01 17:00:00
CVE-2005-4261
2005-12-15 11:00:00
nvd
nvd
CVE-2005-3962
2005-12-01 17:03:00
CVE-2005-4261
2005-12-15 11:03:00
cert
cert
Perl contains an integer sign error in format string processing
2005-12-06 00:00:00
debian
debian
[SECURITY] [DSA 943-1] New Perl packages fix arbitrary code execution
2006-01-16 15:23:36
[SECURITY] [DSA 943-1] New Perl packages fix arbitrary code execution
2006-01-16 15:23:36
ubuntu
ubuntu
Perl vulnerability
2005-12-02 00:00:00
Perl vulnerability
2005-12-13 00:00:00
cve
cve
CVE-2005-3962
2005-12-01 17:03:00
CVE-2005-4261
2005-12-15 11:03:00
debiancve
debiancve
CVE-2005-3962
2005-12-01 17:03:00
suse
suse
remote denial of service in perl
2005-12-20 15:04:10
redhat
redhat
(RHSA-2005:880) perl security update
2005-12-20 00:00:00
(RHSA-2005:881) perl security update
2005-12-20 00:00:00
securityvulns
securityvulns
[Full-disclosure] [SECURITY] [DSA 943-1] New Perl packages fix arbitrary code execution
2006-01-16 00:00:00
freebsd
freebsd
perl, webmin, usermin -- perl format string integer wrap vulnerability
2005-09-23 00:00:00
seebug
seebug
Perl格式串处理整数溢出漏洞
2006-11-30 00:00:00
Apple Mac OS X 2006-007存在多个安全漏洞
2006-11-29 00:00:00

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

51.7%

JSON
Related for MANDRAKE_MDKSA-2005-225.NASL
gentoo1centos2nessus18ubuntucve1f52openvas8cvelist2nvd2cert1debian2ubuntu2cve2debiancve1suse1redhat2securityvulns1freebsd1seebug2