Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2006-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2006-155.NASL
HistoryDec 16, 2006 - 12:00 a.m.

Mandrake Linux Security Advisory : ImageMagick (MDKSA-2006:155)

2006-12-1600:00:00
This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.
www.tenable.com
14

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.463 Medium

EPSS

Percentile

97.4%

JSON

Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images. (CVE-2006-3743)

Multiple integer overflows in ImageMagick before 6.2.9 allows user-assisted attackers to execute arbitrary code via crafted Sun bitmap images that trigger heap-based buffer overflows.
(CVE-2006-3744)

Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via large (1) bytes_per_pixel, (2) columns, and (3) rows values, which trigger a heap-based buffer overflow. (CVE-2006-4144)

The updated packages have been patched to correct these issues.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2006:155. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(23899);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2006-3743", "CVE-2006-3744", "CVE-2006-4144", "CVE-2006-5868");
  script_xref(name:"MDKSA", value:"2006:155");

  script_name(english:"Mandrake Linux Security Advisory : ImageMagick (MDKSA-2006:155)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Multiple buffer overflows in ImageMagick before 6.2.9 allow
user-assisted attackers to execute arbitrary code via crafted XCF
images. (CVE-2006-3743)

Multiple integer overflows in ImageMagick before 6.2.9 allows
user-assisted attackers to execute arbitrary code via crafted Sun
bitmap images that trigger heap-based buffer overflows.
(CVE-2006-3744)

Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick
before 6.2.9 allows user-assisted attackers to cause a denial of
service (crash) and possibly execute arbitrary code via large (1)
bytes_per_pixel, (2) columns, and (3) rows values, which trigger a
heap-based buffer overflow. (CVE-2006-4144)

The updated packages have been patched to correct these issues."
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:ImageMagick");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:ImageMagick-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64Magick8.4.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64Magick8.4.2-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libMagick8.4.2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libMagick8.4.2-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:perl-Image-Magick");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2006");

  script_set_attribute(attribute:"patch_publication_date", value:"2006/08/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2006/12/16");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK2006.0", reference:"ImageMagick-6.2.4.3-1.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"ImageMagick-doc-6.2.4.3-1.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", cpu:"x86_64", reference:"lib64Magick8.4.2-6.2.4.3-1.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", cpu:"x86_64", reference:"lib64Magick8.4.2-devel-6.2.4.3-1.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", cpu:"i386", reference:"libMagick8.4.2-6.2.4.3-1.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", cpu:"i386", reference:"libMagick8.4.2-devel-6.2.4.3-1.2.20060mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK2006.0", reference:"perl-Image-Magick-6.2.4.3-1.2.20060mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuximagemagickp-cpe:/a:mandriva:linux:imagemagick
mandrivalinuximagemagick-docp-cpe:/a:mandriva:linux:imagemagick-doc
mandrivalinuxlib64magick8.4.2p-cpe:/a:mandriva:linux:lib64magick8.4.2
mandrivalinuxlib64magick8.4.2-develp-cpe:/a:mandriva:linux:lib64magick8.4.2-devel
mandrivalinuxlibmagick8.4.2p-cpe:/a:mandriva:linux:libmagick8.4.2
mandrivalinuxlibmagick8.4.2-develp-cpe:/a:mandriva:linux:libmagick8.4.2-devel
mandrivalinuxperl-image-magickp-cpe:/a:mandriva:linux:perl-image-magick
mandrivalinux2006cpe:/o:mandriva:linux:2006

Related

redhat 2
oraclelinux 2
nessus 22
centos 4
gentoo 1
openvas 15
suse 1
ubuntu 3
osv 2
debian 2
fedora 2
nvd 4
debiancve 4
ubuntucve 4
freebsd 1
cve 4
checkpoint_advisories 1
cvelist 4
redhat
redhat
(RHSA-2006:0633) ImageMagick security update
2006-08-24 00:00:00
(RHSA-2007:0015) Moderate: ImageMagick security update
2007-02-15 00:00:00
oraclelinux
oraclelinux
Moderate ImageMagick security update
2006-11-30 00:00:00
Moderate: ImageMagick security update
2007-02-15 00:00:00
nessus
nessus
Oracle Linux 4 : ImageMagick (ELSA-2006-0633)
2013-07-12 00:00:00
SuSE 10 Security Update : ImageMagick (ZYPP Patch Number 2048)
2007-12-13 00:00:00
RHEL 2.1 / 3 / 4 : ImageMagick (RHSA-2006:0633)
2006-08-30 00:00:00
centos
centos
ImageMagick security update
2006-08-27 23:17:16
ImageMagick security update
2006-08-24 12:57:17
ImageMagick security update
2007-02-18 23:20:12
gentoo
gentoo
ImageMagick: Multiple Vulnerabilities
2006-09-26 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200609-14 (Imagemagick)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200609-14 (Imagemagick)
2008-09-24 00:00:00
Ubuntu: Security Advisory (USN-340-1)
2022-08-26 00:00:00
suse
suse
code execution in ImageMagick
2006-09-08 13:55:45
ubuntu
ubuntu
imagemagick vulnerabilities
2006-09-06 00:00:00
imagemagick vulnerability
2006-08-17 00:00:00
ImageMagick vulnerability
2006-11-28 00:00:00
osv
osv
imagemagick
2006-09-04 00:00:00
imagemagick
2006-11-19 00:00:00
debian
debian
[SECURITY] [DSA 1168-1] New imagemagick packages fix arbitrary code execution
2006-09-04 23:17:21
[SECURITY] [DSA 1213-1] New imagemagick packages fix several vulnerabilities
2006-11-19 12:43:56
fedora
fedora
[SECURITY] Fedora Core 5 Update: ImageMagick-6.2.5.4-4.2.1.fc5.8
2007-04-17 12:53:26
[SECURITY] Fedora 7 Update: GraphicsMagick-1.1.8-2.fc7
2007-07-30 17:04:58
nvd
nvd
CVE-2006-4144
2006-08-15 23:04:00
CVE-2006-3744
2006-08-25 01:04:00
CVE-2006-3743
2006-08-25 01:04:00
debiancve
debiancve
CVE-2006-4144
2006-08-15 23:04:00
CVE-2006-3744
2006-08-25 01:04:00
CVE-2006-3743
2006-08-25 01:04:00
ubuntucve
ubuntucve
CVE-2006-4144
2006-08-15 00:00:00
CVE-2006-5868
2006-11-22 00:00:00
CVE-2006-3743
2006-08-25 00:00:00
freebsd
freebsd
ImageMagick -- SGI Image File heap overflow vulnerability
2006-11-14 00:00:00
cve
cve
CVE-2006-4144
2006-08-15 23:04:00
CVE-2006-3744
2006-08-25 01:04:00
CVE-2006-5868
2006-11-22 01:07:00
checkpoint_advisories
checkpoint_advisories
ImageMagick SGI File Handling Buffer Overflow (CVE-2006-4144)
2006-12-28 00:00:00
cvelist
cvelist
CVE-2006-4144
2006-08-15 23:00:00
CVE-2006-5868
2006-11-22 01:00:00
CVE-2006-3743
2006-08-25 01:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.463 Medium

EPSS

Percentile

97.4%

JSON
Related for MANDRAKE_MDKSA-2006-155.NASL
redhat2oraclelinux2nessus22centos4gentoo1openvas15suse1ubuntu3osv2debian2fedora2nvd4debiancve4ubuntucve4freebsd1cve4checkpoint_advisories1cvelist4