Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.MANDRAKE_MDKSA-2007-157.NASL
HistoryApr 23, 2009 - 12:00 a.m.

Mandrake Linux Security Advisory : kdelibs (MDKSA-2007:157)

2009-04-2300:00:00
This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
JSON

The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments, which allows remote attackers to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags within a comment in a title tag, a related issue to CVE-2007-0478. Also affects kdelibs 3.5.6, as per KDE official advisory.

Updated packages have been patched to prevent this.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2007:157. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(36567);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2007-0537");
  script_bugtraq_id(22428);
  script_xref(name:"MDKSA", value:"2007:157");

  script_name(english:"Mandrake Linux Security Advisory : kdelibs (MDKSA-2007:157)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not
properly parse HTML comments, which allows remote attackers to conduct
cross-site scripting (XSS) attacks and bypass some XSS protection
schemes by embedding certain HTML tags within a comment in a title
tag, a related issue to CVE-2007-0478. Also affects kdelibs 3.5.6, as
per KDE official advisory.

Updated packages have been patched to prevent this."
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(79);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kdelibs-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kdelibs-devel-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64kdecore4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64kdecore4-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libkdecore4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libkdecore4-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2007.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/08/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/04/23");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK2007.1", reference:"kdelibs-common-3.5.6-11.1mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"kdelibs-devel-doc-3.5.6-11.1mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"x86_64", reference:"lib64kdecore4-3.5.6-11.1mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"x86_64", reference:"lib64kdecore4-devel-3.5.6-11.1mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"i386", reference:"libkdecore4-3.5.6-11.1mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", cpu:"i386", reference:"libkdecore4-devel-3.5.6-11.1mdv2007.1", yank:"mdv")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
  else security_note(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxkdelibs-commonp-cpe:/a:mandriva:linux:kdelibs-common
mandrivalinuxkdelibs-devel-docp-cpe:/a:mandriva:linux:kdelibs-devel-doc
mandrivalinuxlib64kdecore4p-cpe:/a:mandriva:linux:lib64kdecore4
mandrivalinuxlib64kdecore4-develp-cpe:/a:mandriva:linux:lib64kdecore4-devel
mandrivalinuxlibkdecore4p-cpe:/a:mandriva:linux:libkdecore4
mandrivalinuxlibkdecore4-develp-cpe:/a:mandriva:linux:libkdecore4-devel
mandrivalinux2007.1cpe:/o:mandriva:linux:2007.1

Related

openvas 9
securityvulns 1
gentoo 1
cve 2
nessus 10
ubuntucve 1
prion 2
veracode 1
ubuntu 1
redhat 1
centos 1
oraclelinux 1
seebug 1
openvas
openvas
Gentoo Security Advisory GLSA 200703-10 (kdelibs)
2008-09-24 00:00:00
Mandriva Update for kdelibs MDKSA-2007:031 (kdelibs)
2009-04-09 00:00:00
Mandriva Update for kdelibs MDKSA-2007:031 (kdelibs)
2009-04-09 00:00:00
securityvulns
securityvulns
Apple Safari / Konqueror SCRIPT tag filtering bypass
2007-01-24 00:00:00
gentoo
gentoo
KHTML: Cross-site scripting (XSS) vulnerability
2007-03-10 00:00:00
cve
cve
CVE-2007-0537
2007-01-29 16:28:00
CVE-2007-0478
2007-01-25 00:28:00
nessus
nessus
Mandrake Linux Security Advisory : kdelibs (MDKSA-2007:031)
2007-02-18 00:00:00
GLSA-200703-10 : KHTML: XSS (XSS) vulnerability
2007-03-12 00:00:00
Ubuntu 5.10 / 6.06 LTS / 6.10 : kdelibs vulnerability (USN-420-1)
2007-11-10 00:00:00
ubuntucve
ubuntucve
CVE-2007-0537
2007-01-29 00:00:00
prion
prion
Cross site scripting
2007-01-29 16:28:00
Cross site scripting
2007-01-25 00:28:00
veracode
veracode
Cross-site Scripting (XSS)
2020-04-10 00:18:44
ubuntu
ubuntu
KDE library vulnerability
2007-02-06 00:00:00
redhat
redhat
(RHSA-2007:0909) Moderate: kdelibs security update
2007-10-08 00:00:00
centos
centos
kdelibs security update
2007-10-08 18:49:50
oraclelinux
oraclelinux
Moderate: kdelibs security update
2007-10-08 00:00:00
seebug
seebug
Mac OS X 2007-007更新修复多个安全漏洞
2007-08-02 00:00:00
JSON
Related for MANDRAKE_MDKSA-2007-157.NASL
openvas9securityvulns1gentoo1cve2nessus10ubuntucve1prion2veracode1ubuntu1redhat1centos1oraclelinux1seebug1