Lucene search
This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.MANDRIVA_MDVSA-2009-008.NASLHistoryApr 23, 2009 - 12:00 a.m.
Mandriva Linux Security Advisory : qemu (MDVSA-2009:008)
2009-04-2300:00:00
This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
Security vulnerabilities have been discovered and corrected in VNC server of qemu version 0.9.1 and earlier, which could lead to denial-of-service attacks (CVE-2008-2382), and make it easier for remote crackers to guess the VNC password (CVE-2008-5714).
The updated packages have been patched to prevent this.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Mandriva Linux Security Advisory MDVSA-2009:008.
# The text itself is copyright (C) Mandriva S.A.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(36993);
script_version("1.18");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2008-2382", "CVE-2008-5714");
script_bugtraq_id(32910);
script_xref(name:"MDVSA", value:"2009:008");
script_name(english:"Mandriva Linux Security Advisory : qemu (MDVSA-2009:008)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Mandriva Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"Security vulnerabilities have been discovered and corrected in VNC
server of qemu version 0.9.1 and earlier, which could lead to
denial-of-service attacks (CVE-2008-2382), and make it easier for
remote crackers to guess the VNC password (CVE-2008-5714).
The updated packages have been patched to prevent this."
);
script_set_attribute(
attribute:"solution",
value:"Update the affected dkms-kqemu, qemu and / or qemu-img packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_cwe_id(189, 399);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:dkms-kqemu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:qemu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:qemu-img");
script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2009.0");
script_set_attribute(attribute:"patch_publication_date", value:"2009/01/14");
script_set_attribute(attribute:"plugin_publication_date", value:"2009/04/23");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Mandriva Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);
flag = 0;
if (rpm_check(release:"MDK2009.0", reference:"dkms-kqemu-1.4.0-0.pre1.0.1mdv2009.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2009.0", reference:"qemu-0.9.1-0.r5137.1.1mdv2009.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2009.0", reference:"qemu-img-0.9.1-0.r5137.1.1mdv2009.0", yank:"mdv")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
Related
openvas
openvas
Mandrake Security Advisory MDVSA-2009:008 (qemu)
2009-01-20 00:00:00
Mandrake Security Advisory MDVSA-2009:009 (kvm)
2009-01-20 00:00:00
Mandrake Security Advisory MDVSA-2009:008 (qemu)
2009-01-20 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : kvm (MDVSA-2009:009)
2009-04-23 00:00:00
openSUSE Security Update : kvm (kvm-412)
2009-07-21 00:00:00
openSUSE Security Update : kvm (kvm-412)
2009-07-21 00:00:00
cve
cve
CVE-2008-2382
2008-12-24 18:29:00
CVE-2008-5714
2008-12-24 18:29:00
debiancve
debiancve
CVE-2008-2382
2008-12-24 18:29:00
CVE-2008-5714
2008-12-24 18:29:00
prion
prion
Code injection
2008-12-24 18:29:00
Code injection
2008-12-24 18:29:00
ubuntucve
ubuntucve
CVE-2008-2382
2008-12-24 00:00:00
CVE-2008-5714
2008-12-24 00:00:00
ubuntu
ubuntu
KVM regression
2009-05-13 00:00:00
KVM vulnerabilities
2009-05-12 00:00:00
xterm vulnerabilities
2009-01-06 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1907-1] New kvm packages fix several vulnerabilities
2009-10-13 00:00:00
kvm privilege escalation
2009-10-13 00:00:00
debian
debian
[SECURITY] [DSA 1907-1] New kvm packages fix several vulnerabilities
2009-10-13 08:30:55
fedora
fedora
[SECURITY] Fedora 10 Update: kvm-74-10.fc10
2008-12-24 18:47:06
[SECURITY] Fedora 9 Update: kvm-65-15.fc9
2008-12-24 12:58:24
[SECURITY] Fedora 9 Update: kvm-65-15.fc9
2008-12-24 18:40:58
osv
osv
kvm - several vulnerabilities
2009-10-13 00:00:00
Related for MANDRIVA_MDVSA-2009-008.NASL