Lucene search
This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2006-027.NASLHistoryFeb 01, 2006 - 12:00 a.m.
Mandrake Linux Security Advisory : gzip (MDKSA-2006:027)
2006-02-0100:00:00
This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.
www.tenable.com
11
Zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.
This was previously corrected in MDKSA-2005:092, however the fix was incomplete. These updated packages provide a more comprehensive fix to the problem.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Mandrake Linux Security Advisory MDKSA-2006:027.
# The text itself is copyright (C) Mandriva S.A.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(20832);
script_version("1.14");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2005-0758");
script_xref(name:"MDKSA", value:"2006:027");
script_name(english:"Mandrake Linux Security Advisory : gzip (MDKSA-2006:027)");
script_summary(english:"Checks rpm output for the updated package");
script_set_attribute(
attribute:"synopsis",
value:"The remote Mandrake Linux host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Zgrep in gzip before 1.3.5 does not properly sanitize arguments, which
allows local users to execute arbitrary commands via filenames that
are injected into a sed script.
This was previously corrected in MDKSA-2005:092, however the fix was
incomplete. These updated packages provide a more comprehensive fix to
the problem."
);
script_set_attribute(attribute:"solution", value:"Update the affected gzip package.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:gzip");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.1");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2006");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:mandrakesoft:mandrake_linux:le2005");
script_set_attribute(attribute:"patch_publication_date", value:"2006/01/30");
script_set_attribute(attribute:"plugin_publication_date", value:"2006/02/01");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.");
script_family(english:"Mandriva Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);
flag = 0;
if (rpm_check(release:"MDK10.1", reference:"gzip-1.2.4a-13.3.101mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.2", reference:"gzip-1.2.4a-14.2.102mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"gzip-1.2.4a-15.1.20060mdk", yank:"mdk")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mandriva | linux | gzip | p-cpe:/a:mandriva:linux:gzip |
| mandrakesoft | mandrake_linux | 10.1 | cpe:/o:mandrakesoft:mandrake_linux:10.1 |
| mandriva | linux | 2006 | cpe:/o:mandriva:linux:2006 |
| mandrakesoft | mandrake_linux | le2005 | x-cpe:/o:mandrakesoft:mandrake_linux:le2005 |
Related
nessus
nessus
Ubuntu 4.10 / 5.04 : gzip vulnerability (USN-158-1)
2006-01-15 00:00:00
Ubuntu 4.10 / 5.04 : bzip2 vulnerability (USN-161-1)
2006-01-15 00:00:00
Mandrake Linux Security Advisory : bzip2 (MDKSA-2006:026)
2006-02-01 00:00:00
ubuntu
ubuntu
bzip2 utility vulnerability
2005-08-05 00:00:00
gzip utility vulnerability
2005-08-01 00:00:00
securityvulns
securityvulns
[ MDKSA-2006:027 ] - Updated gzip packages fix zgrep vulnerabilities
2006-01-31 00:00:00
[ MDKSA-2006:026 ] - Updated bzip2 packages fix bzgrep vulnerabilities
2006-01-31 00:00:00
debiancve
debiancve
CVE-2005-0758
2005-05-13 04:00:00
ubuntucve
ubuntucve
CVE-2005-0758
2005-05-13 00:00:00
cve
cve
CVE-2005-0758
2005-05-13 04:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package gzip version 1.3.5-alt1
2005-05-19 00:00:00
Security fix for the ALT Linux 9 package gzip version 1.3.5-alt1
2005-05-19 00:00:00
redhat
redhat
(RHSA-2005:474) bzip2 security update
2005-06-16 00:00:00
(RHSA-2005:357) gzip security update
2005-06-13 00:00:00
centos
centos
gzip security update
2005-06-13 15:16:31
bzip2 security update
2005-06-16 21:06:50
gzip security update
2005-06-13 22:49:43
gentoo
gentoo
gzip: Multiple vulnerabilities
2005-05-09 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200505-05 (gzip)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200505-05 (gzip)
2008-09-24 00:00:00
Slackware: Security Advisory (SSA:2006-262-01)
2012-09-10 00:00:00
f5
f5
gzip vulnerabilities CAN-2005-0758, CAN-2005-0988, and CAN-2005-1228
2005-07-19 04:00:00
slackware
slackware
[slackware-security] gzip
2006-09-19 21:15:29
seebug
seebug
Mac OS X 2007-007更新修复多个安全漏洞
2007-08-02 00:00:00
Related for MANDRAKE_MDKSA-2006-027.NASL