Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2006-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2006-128.NASL
HistoryDec 16, 2006 - 12:00 a.m.

Mandrake Linux Security Advisory : wireshark (MDKSA-2006:128)

2006-12-1600:00:00
This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.
www.tenable.com
12
JSON

A number of vulnerabilities have been discovered in the Wireshark (formerly Ethereal) network analyzer. These issues have been corrected in Wireshark version 0.99.2 which is provided with this update.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2006:128. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(23879);
  script_version("1.17");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2006-3627", "CVE-2006-3628", "CVE-2006-3629", "CVE-2006-3630", "CVE-2006-3631", "CVE-2006-3632");
  script_bugtraq_id(19051);
  script_xref(name:"MDKSA", value:"2006:128");

  script_name(english:"Mandrake Linux Security Advisory : wireshark (MDKSA-2006:128)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A number of vulnerabilities have been discovered in the Wireshark
(formerly Ethereal) network analyzer. These issues have been corrected
in Wireshark version 0.99.2 which is provided with this update."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.wireshark.org/security/wnpa-sec-2006-01.html"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(119);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64wireshark0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libwireshark0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:tshark");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:wireshark");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:wireshark-tools");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2006");

  script_set_attribute(attribute:"patch_publication_date", value:"2006/07/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2006/12/16");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK2006.0", cpu:"x86_64", reference:"lib64wireshark0-0.99.2-0.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", cpu:"i386", reference:"libwireshark0-0.99.2-0.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"tshark-0.99.2-0.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"wireshark-0.99.2-0.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"wireshark-tools-0.99.2-0.2.20060mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxlib64wireshark0p-cpe:/a:mandriva:linux:lib64wireshark0
mandrivalinuxlibwireshark0p-cpe:/a:mandriva:linux:libwireshark0
mandrivalinuxtsharkp-cpe:/a:mandriva:linux:tshark
mandrivalinuxwiresharkp-cpe:/a:mandriva:linux:wireshark
mandrivalinuxwireshark-toolsp-cpe:/a:mandriva:linux:wireshark-tools
mandrivalinux2006cpe:/o:mandriva:linux:2006

Related

openvas 6
nessus 8
altlinux 1
centos 2
securityvulns 1
gentoo 1
redhat 1
osv 1
debian 1
oraclelinux 1
cve 6
debiancve 6
ubuntucve 6
openvas
openvas
Gentoo Security Advisory GLSA 200607-09 (wireshark ethereal)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200607-09 (wireshark ethereal)
2008-09-24 00:00:00
SLES9: Security update for ethereal
2009-10-10 00:00:00
nessus
nessus
RHEL 2.1 / 3 / 4 : wireshark (RHSA-2006:0602)
2006-08-21 00:00:00
SuSE 10 Security Update : ethereal (ZYPP Patch Number 1930)
2007-12-13 00:00:00
openSUSE 10 Security Update : ethereal (ethereal-1932)
2007-10-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package wireshark version 0.99.2-alt1
2006-07-18 00:00:00
centos
centos
wireshark security update
2006-08-16 19:29:57
wireshark security update
2006-08-16 23:38:08
securityvulns
securityvulns
[ MDKSA-2006:128 ] - Updated wireshark packages fix numerous vulnerabilities
2006-07-22 00:00:00
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2006-07-25 00:00:00
redhat
redhat
(RHSA-2006:0602) wireshark security update (was ethereal)
2006-08-16 00:00:00
osv
osv
ethereal - several
2006-07-28 00:00:00
debian
debian
[SECURITY] [DSA 1127-1] New ethereal packages fix several vulnerabilities
2006-07-28 05:41:07
oraclelinux
oraclelinux
Moderate wireshark security update
2006-12-07 00:00:00
cve
cve
CVE-2006-3629
2006-07-21 14:03:00
CVE-2006-3632
2006-07-21 14:03:00
CVE-2006-3631
2006-07-21 14:03:00
debiancve
debiancve
CVE-2006-3629
2006-07-21 14:03:00
CVE-2006-3632
2006-07-21 14:03:00
CVE-2006-3630
2006-07-21 14:03:00
ubuntucve
ubuntucve
CVE-2006-3631
2006-07-21 00:00:00
CVE-2006-3632
2006-07-21 00:00:00
CVE-2006-3629
2006-07-21 00:00:00
JSON
Related for MANDRAKE_MDKSA-2006-128.NASL
openvas6nessus8altlinux1centos2securityvulns1gentoo1redhat1osv1debian1oraclelinux1cve6debiancve6ubuntucve6